Pavel Shpin
Pavel Shpin | MindCTOCTO & Entrepreneur, 25 years of experience

Privacy Policy

Last updated: August 28, 2025

1. Introduction

MindCTO ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

This policy applies to all users of our website and services, regardless of location. By using our services, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Information You Provide Directly

We may collect information you provide directly to us, including:

  • Contact information (name, email address, phone number)

  • Professional information (company, title, industry)

  • Communication preferences

  • Information provided during consultations or inquiries

  • Content you submit through forms or communications

2.2 Information Automatically Collected

We automatically collect certain information when you visit our website:

  • IP address and location data

  • Browser type and version

  • Device information (type, operating system)

  • Pages visited and time spent on pages

  • Referring website information

  • Click-through data and interaction patterns

2.3 Third-Party Analytics and Tracking

We use third-party services to analyze website usage and improve our services:

  • Google Analytics: Tracks website usage, user behavior, and demographics

  • Google Ads Tracking Pixels: Measures ad performance and enables remarketing

  • Meta (Facebook) Tracking Pixels: Tracks conversions and enables targeted advertising

  • LinkedIn Analytics: Measures professional engagement and enables B2B targeting

  • Our Internal Analytics Engine: Proprietary analytics for business intelligence and service improvement

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Providing and improving our technical due diligence services

  • Responding to inquiries and providing customer support

  • Personalizing your experience on our website

  • Analyzing website usage to improve our services and content

  • Conducting marketing and advertising campaigns

  • Complying with legal obligations and protecting our rights

  • Preventing fraud and ensuring website security

  • Communicating updates about our services (with your consent)

4. Information Sharing and Disclosure

We do not sell your personal information to third parties. We may share your information only in the following circumstances:

  • Service Providers: With trusted third-party vendors who help us operate our website and provide services (e.g., hosting, analytics, email services)

  • Legal Requirements: When required by law, court order, or government regulation

  • Business Protection: To protect our rights, privacy, safety, or property, or that of our users

  • Business Transfers: In connection with a merger, acquisition, or sale of assets (users will be notified)

  • With Consent: With your explicit consent for specific purposes

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest

  • Regular security assessments and updates

  • Access controls and authentication requirements

  • Employee training on data protection practices

However, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your information.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When we no longer need your information, we will securely delete or anonymize it.

7. Your Privacy Rights

7.1 General Rights

You have the following rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you

  • Correction: Request correction of inaccurate or incomplete information

  • Deletion: Request deletion of your personal information (subject to legal requirements)

  • Portability: Request transfer of your data to another service provider

  • Objection: Object to processing of your information for certain purposes

7.2 GDPR Rights (EU/EEA Residents)

If you are located in the European Union or European Economic Area, you have additional rights under GDPR:

  • Right to withdraw consent at any time

  • Right to restriction of processing

  • Right to lodge a complaint with a supervisory authority

  • Right to be informed about data breaches affecting your data

7.3 CCPA Rights (California Residents)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected and how it's used

  • Right to delete personal information (subject to exceptions)

  • Right to opt-out of the sale of personal information (we do not sell personal information)

  • Right to non-discrimination for exercising your privacy rights

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience and analyze website usage. Cookies are small data files stored on your device.

Types of Cookies We Use:

  • Essential Cookies: Necessary for website functionality

  • Analytics Cookies: Help us understand how visitors use our website

  • Marketing Cookies: Used to deliver relevant advertisements

  • Functional Cookies: Remember your preferences and settings

You can control cookies through your browser settings. However, disabling certain cookies may affect website functionality.

9. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure that such transfers are conducted in accordance with applicable data protection laws and include appropriate safeguards to protect your information.

11. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you become aware that a child has provided us with personal information, please contact us, and we will take steps to remove such information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

MindCTO

Email: privacy@mindcto.com

Website: https://mindcto.com

For GDPR-related inquiries, please include "GDPR Request" in your subject line. For CCPA-related inquiries, please include "CCPA Request" in your subject line.

14. Legal Basis for Processing (GDPR)

We process your personal information based on the following legal grounds:

  • Consent: Where you have given clear consent for specific processing activities

  • Contract: Where processing is necessary for the performance of a contract with you

  • Legal Obligation: Where we must process your data to comply with legal requirements

  • Legitimate Interests: Where we have a legitimate business interest that doesn't override your rights