PPactoBack to home

Privacy Policy

Last updated 20 June 2026

This document is written in plain English as general information. It is not legal advice. We recommend having it reviewed by a qualified lawyer before you rely on it.

This Privacy Policy explains how Pacto (the "Service") collects, uses and protects your personal data. The data controller is Augustina Adjei, based in the United Kingdom. We take your privacy seriously and only use your data to provide and improve the Service.

1. Data we collect

We collect the following information:

  • Account details — your name, email address and password.
  • Profile details — your role, location and profile photo, if you add them.
  • Contacts you add — names, notes, follow-up details and any other information you choose to save about people you meet.
  • Your public card — the details you publish and any leads people send you through it.
  • Leads from public cards — if you send your details through someone's public card, we process those details to deliver them.
  • Notification data — push notification subscriptions, if you enable reminders.
  • Technical data — basic information such as device and usage data needed to run the Service securely.

2. How and why we use your data

We use your data to:

  • provide the Service and your account (legal basis: performance of a contract);
  • send reminders and service messages you have asked for (legal basis: consent);
  • keep the Service secure and prevent abuse (legal basis: legitimate interest);
  • comply with our legal obligations.

3. People you save as contacts

When you save another person's details, you act as the controller of that information and we process it on your behalf. If you are a person who has been added to someone's Pacto and you want your details removed, please contact us and we will help connect you with the relevant user or remove the data where we are able to.

4. Sharing and sub-processors

We do not sell your personal data. We use trusted service providers to run Pacto — for example for hosting and database storage, authentication and email delivery. These providers only process data on our instructions and under appropriate safeguards. We may also disclose data where required by law.

5. International transfers

Where data is transferred outside the European Economic Area or the United Kingdom, we rely on appropriate safeguards such as Standard Contractual Clauses to protect it.

6. Retention and deletion

We keep your data for as long as your account is active. You can delete your account at any time from your account settings, which removes your account data. You can also export a copy of your contacts from your settings at any time.

7. Cookies and local storage

We use cookies and local storage that are necessary to keep you signed in, remember your preferences, and let Pacto work as an installable web app. We do not use them for advertising.

8. Your rights

Under the GDPR (and the UK GDPR if you are in the UK) you have the right to access, correct, delete, restrict or object to the processing of your personal data, and the right to data portability. You can exercise most of these directly in the app, or by contacting us. You also have the right to complain to your local data protection supervisory authority.

9. Security

We use technical and organisational measures to protect your data, including encrypted connections, access controls and row-level data isolation so users can only access their own data. No system is ever completely secure, so please use a strong, unique password.

10. Changes to this policy

We may update this policy from time to time. We will update the "Last updated" date above and, where appropriate, let you know of significant changes.

11. Contact

For any privacy questions or requests, please contact us.