Skip to content
← Back to home

Privacy Policy

Cesto (‘we’, ‘us’, or ‘our’), explains how we collect, use, store, and share personal details when using our services (‘Services’). This includes when you:

Questions or concerns? This privacy policy will help you understand rights and choices. If you disagree with our policies, please do not use our Services. Contact us at bandwagonto@proton.me with any questions.

Key Points Summary

This summary highlights key points from our privacy policy. For more details, use the sections below to find specifics.

1. What Details Do We Collect?

Personal Details You Provide to Us

In Short: We collect personal details you share with us.

We gather details you voluntarily provide when you show interest in our company, products, and services, participate in activities on our platform, or contact us directly.

Personal Details You Provide:

Sensitive Details: We do not collect sensitive personal data.

Social Media Login Data: If you register using social media accounts like Facebook or X, we collect public profile details from the social media provider as described in our section on social logins.

Ensure the details you provide are accurate and up to date. Notify us of any changes.

Details We Collect Automatically

In Short: We collect some details automatically when you use our services.

When you visit or use our services, we automatically gather certain details. This does not reveal identity but may include:

This is used for security, operations, and reporting. We also collect data through cookies and similar technologies.

Types Collected:

Details Collected from Other Sources

In Short: We may collect data from public sources and third parties.

We may obtain details from public databases, marketing partners, social media platforms, and other external sources. This includes mailing addresses, job titles, email addresses, phone numbers, intent data, IP addresses, social media profiles and URLs, and custom profiles for targeted advertising.

2. How Do We Use Collected Data?

In Short: We use collected data to provide and improve our services, communicate with users, ensure security and prevent fraud, and comply with legal requirements. We may also use it for other purposes with consent.

3. What Legal Bases Do We Rely On to Use Collected Data?

In Short: We only use personal details when necessary and when we have a valid legal reason under applicable law, such as consent, to fulfill a contract, to comply with laws, to protect rights, or for legitimate business interests.

4. When and With Whom Do We Share Personal Details?

In Short: We share details in specific situations and with the following types of third parties.

Vendors, Consultants, and Service Providers: We share data with third parties who perform services for us or on our behalf, including ad networks, affiliate marketing programs, data analytics services, performance monitoring tools, product engineering and design tools, sales and marketing tools, testing tools, and user account registration and authentication services.

Business Transfers: We may share or transfer data during negotiations or in connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business.

5. Do We Use Cookies and Other Tracking Technologies?

In Short: Yes, we use cookies and other tracking technologies to collect and store details.

We use cookies and similar technologies (like web beacons and pixels) to collect details when you interact with our Services. These technologies help us keep our Services secure, fix bugs, save preferences, and support basic site functions.

We also use these technologies to analyze how our Services are used and to show relevant ads. Our partners may use these technologies to gather details about interests and show relevant ads on our Services and other websites.

Google Analytics: We may share details with Google Analytics to analyze and track usage. You can opt-out through Ads Settings or Mobile Choice.

6. How Do We Handle Social Logins?

In Short: If you choose to log in using a social media account, we may access certain details from that account.

You can register and log in using social media account details (like Facebook or X). When you do this, we receive some profile details from the social media provider, including name, email address, and profile picture, as well as other details you choose to make public.

We only use received details for purposes described in this privacy notice. We do not control, and are not responsible for, how social media providers use collected data. Review their privacy policies to understand how they handle data and how to adjust privacy settings on their platforms.

7. Is Collected Data Transferred Internationally?

In Short: Yes, we may transfer, store, and process collected data in other countries.

Our servers are in the United States. If you access our services from outside the U.S., collected data may be transferred to, stored, and processed in the U.S. and other countries where we or our service providers operate.

If you are in the European Economic Area (EEA), United Kingdom (UK), or Switzerland, data protection laws may differ. We will take all necessary steps to protect personal details according to this privacy notice and applicable laws. European Commission’s Standard Contractual Clauses are used to protect data when transferring it within our group or to third-party providers.

8. How Long Do We Keep Collected Data?

In Short: We keep collected data as long as needed to fulfill the purposes outlined in this privacy notice, unless a longer retention period is required by law.

We retain personal details only for as long as necessary to meet the purposes set in this privacy notice, such as for tax or legal requirements. When we no longer need personal details, we will delete or anonymize them. If this is not possible (for example, because data is stored in backup archives), we will securely store and isolate it from further processing until deletion is possible.

9. How Do We Keep Collected Data Safe?

In Short: We aim to protect personal details through a system of organizational and technical security measures.

We use technical and organizational measures to protect collected data. However, no method of electronic transmission or storage is 100% secure, so we cannot guarantee complete security. Unauthorized access, hacking, and other security breaches can still occur. Access our services at your own risk.

10. Do We Collect Details from Minors?

In Short: We do not knowingly collect data from or market to children under 18 years old.

We do not intentionally collect or sell details from individuals under 18. By using our services, you confirm that you are at least 18 or have parental consent. If we learn that we have collected data from individuals under 18 without proper consent, we will delete it. If you become aware of any such data, contact us at bandwagonto@proton.me.

11. What Are User Privacy Rights?

In Short: Depending on location, users may have certain rights regarding personal details.

In some regions, like the EEA, UK, and Switzerland, data protection laws grant rights that may include:

These rights can be exercised by contacting us using the details provided in the “How Can You Contact Us?” section. We will consider and act upon requests in line with applicable data protection laws.

If you believe we are unlawfully processing personal details, you have the right to complain to a local data protection authority.

Withdrawing Consent: If we rely on consent to process personal details, it can be withdrawn at any time by contacting us.

Opting out of marketing and promotional communications: You can unsubscribe from marketing emails at any time by clicking the unsubscribe link in emails, replying ‘STOP’ to SMS messages, or contacting us at bandwagonto@proton.me. Service-related messages for administrative purposes may still be sent.

Cookies and similar technologies: Most web browsers accept cookies by default. Browser settings can be adjusted to remove or reject cookies, which might affect the availability and functionality of our services.

12. Controls for Do-Not-Track Features

Most web browsers and some mobile apps include a Do-Not-Track (‘DNT’) feature to signal privacy preferences. Currently, no standard for recognizing and implementing DNT signals exists. We do not respond to DNT signals or any other mechanism that automatically communicates a choice not to be tracked online. If a standard is adopted, we will update this privacy notice accordingly.

13. Do We Make Updates to This Notice?

In Short: Yes, we will update this notice as needed to stay compliant with relevant laws.

We may update this privacy notice occasionally. The updated version will be indicated by a revised date at the top. If we make material changes, we will notify through prominent postings or direct notifications. We encourage frequent review to stay informed on how we protect collected data.

14. How Can You Contact Us About This Notice?

If you have questions or comments about this notice, email us at bandwagonto@proton.me.

15. How Can You Review, Update, or Delete Collected Data?

Depending on location, you may have rights to access, correct, or delete personal details. You may also have the right to withdraw consent for us to process collected data. These rights may be limited in some situations by applicable law. To request to review, update, or delete personal details, email us at bandwagonto@proton.me.