Skip to main content
PRIVACY POLICY

Your Privacy Matters

Effective Date: March 1, 2026

Gestly ("we", "us", "our") operates the gestly.com website and related services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.

1. Information We Collect

Information You Provide

  • Account Data: Name, email address, and password when you create an account.
  • Payment Data: Processed securely by Stripe. We never store your full credit card number.
  • Video Content: Videos you record or upload to create greeting cards.
  • Card Details: Recipient names, sender names, and personal messages you add to cards.
  • Contact Information: Names, emails, and dates you add to your contact list.

Information Collected Automatically

  • Usage Data: Pages visited, features used, and interactions with the platform.
  • Device Data: Browser type, operating system, screen resolution, and language preferences.
  • Log Data: IP address, access times, and referring URLs.
  • Cookies: Essential cookies for authentication and preferences. See Section 7.

2. How We Use Your Information

  • Provide, maintain, and improve our services.
  • Process payments and deliver purchased greeting cards.
  • Send transactional emails (order confirmations, delivery notifications).
  • Send marketing emails (only with your consent; you can unsubscribe anytime).
  • Detect and prevent fraud, abuse, or security incidents.
  • Analyze usage patterns to improve user experience.
  • Comply with legal obligations.

3. Third-Party Services

We share data with the following third-party providers, strictly for service operation:

  • Stripe: Payment processing. Stripe's privacy policy applies to payment data.
  • Resend: Transactional and marketing email delivery.
  • Cloudflare: Hosting, CDN, and security (Workers, R2, D1).
  • Sentry: Error tracking and performance monitoring (anonymized data).
  • Meta (Facebook): Conversion tracking via Meta Pixel and Conversions API. Used to measure advertising effectiveness. Pixel loads only with your consent.

We do not sell your personal data to any third party.

4. Video & Data Retention

Video storage duration depends on your subscription plan:

  • Moment (one-time): Videos are stored for 30 days after creation.
  • Memory (subscription): Videos are stored for 1 year while your subscription is active.
  • Legacy (subscription): Videos are stored indefinitely while your subscription is active.

After the retention period, or upon account deletion, videos are permanently deleted from our servers. We send expiry warning emails 7 days before scheduled deletion.

5. Your Rights

For All Users

  • Access: Request a copy of your personal data.
  • Correction: Update or correct inaccurate information.
  • Deletion: Request deletion of your account and all associated data.
  • Portability: Receive your data in a portable format.
  • Objection: Object to processing of your personal data.

GDPR Rights (EU/EEA Residents)

Under the General Data Protection Regulation, you have additional rights including the right to restrict processing, the right to data portability, and the right to lodge a complaint with a supervisory authority. Our legal basis for processing is consent and contract performance.

CCPA Rights (California Residents)

Under the California Consumer Privacy Act, you have the right to know what personal information we collect, the right to delete it, the right to opt-out of sale (we do not sell data), and the right to non-discrimination.

To exercise any of these rights, contact us at support@gestly.com.

6. Children's Privacy (COPPA)

Gestly is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at support@gestly.com and we will promptly delete it.

7. Cookies

We use the following types of cookies:

  • Essential Cookies: Required for authentication, session management, and security. Cannot be disabled.
  • Functional Cookies: Remember your preferences (language, theme choices).
  • Analytics Cookies: Help us understand how visitors use our site to improve the experience.

You can manage your cookie preferences through the cookie consent banner on our site. Selecting "Necessary Only" will disable non-essential cookies.

8. Data Security

We implement industry-standard security measures including encryption in transit (TLS/HTTPS), encrypted storage, secure authentication (JWT), rate limiting, and regular security audits. However, no method of transmission over the internet is 100% secure.

9. International Transfers

Your data may be processed in the United States and other countries where our service providers operate. We ensure adequate data protection through our service providers' compliance with applicable data protection frameworks.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Effective Date" above. Material changes will be communicated via email.

11. Contact Us

If you have questions about this Privacy Policy or your data, contact us at:

Back to Home