Privacy Policy

GUSTO – PRIVACY POLICY

Effective Date:27-05-2025

1 WHO WE ARE

Gusto Labs, Inc. (“Gusto,” “we,” “our,” or “us”) offers a mobile application that helps users discover, track, and purchase wine from third-party retailers.


2 INFORMATION WE COLLECT

Account Data: We collect your name, email, password, date of birth, and username to create and manage your account.

Taste Data: We gather quiz answers, tasting notes, ratings, and wish lists to personalize your recommendations.

Location Data: We use city/region (based on IP) and precise GPS (only if you enable “Find shops near me”) to show you nearby inventory and deals.

Device & Usage Data: This includes your IP address, device type, operating system, app version, interaction logs, and crash reports to help us with analytics, security, and debugging.

Purchase Data: We collect details about the items you order, their prices, and the last four digits of your card (payments are handled by Stripe) to process your orders and provide receipts.

Marketing Data: We use your push notification token and email preferences to send you relevant offers, updates, and discounts.


3 HOW WE USE INFORMATION

  • deliver core services and customer support
  • personalize content, pricing, and notifications
  • monitor, debug, and secure the service
  • comply with legal obligations

4 SHARING YOUR DAT

  • Retailers – we share your name, selected items, and pickup/delivery details to fulfill an order.
  • Service Providers – hosting (AWS), analytics (Mixpanel/Firebase), payment (Stripe).
  • Legal / Safety – if required by law or to defend our rights.
  • No sale of personal information (as defined under the California Consumer Privacy Act).

5 RETENTION

We retain account data while your account is active and for one year after deletion unless a longer period is required by tax or fraud-prevention laws.

6 YOUR RIGHTS

  • Access, Correction, Deletion – self-service in the app or email privacy@gusto.wine.
  • Marketing Opt-Out – toggle in app settings or “unsubscribe” link in emails.
  • California – right to know, delete, and opt-out of sale (we do not sell).
  • EU/UK – rights of access, erasure, portability, restriction, objection, and complaint to your local DPA.

7 SECURITY

Transport Layer Security (TLS) in transit; AWS KMS encryption at rest; role-based staff access; yearly penetration tests.

8 CHILDREN

Gusto is intended for people 18 years and older. We do not knowingly collect data from minors. Contact us if you believe we have inadvertently collected such data.

9 INTERNATIONAL TRANSFERS

Data may be processed in the United States. For transfers from the EU/UK we rely on Standard Contractual Clauses.

10 CHANGES

We will post any material changes in the app and update the “Effective Date.” Continued use after changes constitutes acceptance.