Privacy Policy

Last Updated: August 1, 2025

This Privacy Policy describes how Bundul ("we," "us," or "our") collects, uses, and shares your personal information when you use our mobile application ("App") and related services. We are committed to protecting your privacy and being transparent about our data practices.

Our Privacy Principles: What You Should Know Upfront

  • Your Financial Information is Never Sold:We will never sell your personal financial information, including your subscription details or payment information, to any third party.
  • No Third-Party Ads in the App:Bundul does not display third-party advertisements within the App. Our focus is solely on providing you value and managing your subscription payments seamlessly.
  • Secure & Transparent Data Handling: We utilize industry-leading partners like Plaid and Stripe to securely connect and process your financial data, ensuring your sensitive information is always protected.
  • Value-Driven Recommendations: All movie and TV show recommendations are based purely on our editorial judgment to help you maximize your entertainment value, with absolutely no promotional or advertising association with streaming services.
  • Our Business Model: Our revenue is derived from a recurring monthly service fee, allowing us to maintain a user-centric and privacy-focused approach.

1. Information We Collect

We collect information to provide and improve our services, process your consolidated payments, and offer personalized recommendations.

Information You Provide Directly:

  • Account Information:When you create an account, we collect your name, email address, and password.
  • Contact Information: To facilitate account security and essential communications, we collect your phone number for purposes such as One-Time Password (OTP) verifications and critical service alerts. If you choose to sign up for our newsletter or marketing text messages, we will also collect your email address and/or phone number for those specific purposes.
  • Subscription Provider Credentials: To facilitate the one-time setup of your consolidated payments, you will provide us with login credentials, including passwords and multi-factor authentication information, for each Third-Party Provider (e.g., Netflix, Spotify) you wish to link. We use these credentials to securely update your payment information with that provider and then, once the setup is complete, we immediately delete them from our systems. We do not store these credentials.
  • Subscription Details: To consolidate your payments, you will provide details about your existing subscriptions, including service names (e.g., Netflix, Spotify), billing amounts, and due dates. We do not collect your login credentials for these third-party services.
  • Payment Information: To process your consolidated payments, you will provide payment method details (e.g., credit card number, bank account details). This information is securely transmitted directly to our payment processing partners. We will store a tokenized version of your payment method to facilitate recurring payments, meaning your full card details are never stored on Bundul's servers.
  • Communication Information: If you contact us for support or other inquiries, we collect the content of your communications.
  • Preferences: Your chosen billing cycle start date and preference for splitting payments (single or two payments 15 days apart).
  • Feedback: Information you provide when participating in surveys or giving feedback.

Information Collected Automatically (via App Usage and Technology):

  • Device Information: We collect information about the device you use to access our App, including device type, operating system, unique device identifiers, and mobile network information.
  • Usage Data: We collect information about your interactions with the App, such as the features you use, articles you read, recommendations you click on, pages you view, and the time, frequency, and duration of your activities.
  • IP Address: Your Internet Protocol (IP) address.
  • Cookies and Similar Technologies: We use cookies and similar tracking technologies (like local storage) to enhance your experience, remember your preferences, understand App usage, and for security purposes. You can control the use of cookies through your device or browser settings.

2. How We Use Your Information

We use the information we collect for the following purposes:

Information You Provide Directly:

  • Service Delivery: To consolidate your subscription payments into a single monthly bill, process payments, and manage your chosen billing cycle.
  • One-Time Payment Consolidation Setup: We use the login credentials you provide for your Third-Party Providers on a temporary, one-time basis to securely access and update your payment method to Bundul’s payment processing system. This process allows us to take over the recurring payment on your behalf. As detailed in Section 1, these credentials are not stored after this setup is complete.
  • Account Security and Verification: To verify your identity and secure your account, including sending One-Time Passwords (OTPs) for login or sensitive actions.
  • Personalization: To provide you with tailored content, including personal finance articles and TV show/movie recommendations relevant to your interests and subscription habits. These recommendations are based purely on our judgment and are not influenced by any promotional or advertising associations with streaming services.
  • Communication: To send you service-related notifications, payment reminders, policy updates, and essential service-related messages. We may also send marketing communications (including newsletters, emails, and promotional text messages).
  • Improvement and Development: To understand how users interact with our App, identify trends, fix bugs, and develop new features and services.
  • Security: To protect our App, systems, and users from fraud, unauthorized access, and other security incidents
  • Analytics and Marketing: To analyze App performance, track the effectiveness of our marketing campaigns (our own ads for Bundul, not third-party ads), and understand user demographics and interests.

3. How We Share Your Information

We are committed to minimizing the sharing of your personal data. We only share information in the following limited circumstances:

  • Financial Data Aggregation Partners:To securely link to and consolidate your subscription information, we partner with Plaid Inc. We share necessary account login information with Plaid to retrieve your subscription details. Plaid acts as a data processor on our behalf. You can review Plaid's privacy policy
  • Payment Processors:We share your payment method details directly with our secure third-party payment processing partner, Priority Technology Holdings Inc., to facilitate your consolidated payments. Your full bank account details are tokenized by our processor and are never stored on Bundul's servers. You can review Priority Technology Holdings Inc.'s privacy policy here: Priority's privacy policy
  • Other Service Providers: We engage trusted third-party service providers who assist us in operating our business, such as cloud hosting, analytics, customer support, and email delivery services, including those who facilitate the sending of One-Time Passwords (OTPs) and other essential service messages, as well as marketing communications (like emails and text messages) if you have opted in for them. These providers are contractually obligated to protect your information and only use it for the purposes we specify.
  • Legal Compliance and Protection: We may disclose your information if required by law, court order, or governmental regulation, or if we believe it's necessary to protect the rights, property, or safety of Bundul, our users, or others.
  • Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred to the acquiring entity. We will notify you via email and/or a prominent notice on our App of any such change in ownership or control of your personal information.
  • Aggregated or Anonymized Data: We may share aggregated or anonymized data (data that cannot be used to identify you) with third parties for research, analysis, and marketing purposes.

4. Data Shared for Advertising and Analytics

  • How We Use It: We use advertising services provided by various third-party platforms (e.g., Meta, Reddit, TikTok) to promote Bundul and reach new users. To improve the effectiveness of these campaigns and measure their performance, we utilize their respective server-side tracking tools, such as Conversions APIs (e.g., Meta Conversions API, TikTok Events API, Reddit Conversions API), in conjunction with their client-side tracking pixels or SDKs where applicable.
  • What Data We Share: Through these server-side tools, we send certain event data and hashed user identifiers directly from our server to the relevant advertising platform. This includes:
    • Event Names: Such as "App Install," "Registration Complete," "Subscription Consolidated," "Payment Initiated," "Article Viewed," "Recommendation Clicked," "Search," and other app actions.
    • Hashed User Identifiers: To help these platforms match events with user profiles for better ad targeting and attribution, we may send securely hashed (pseudonymized) information such as email addresses and phone numbers you provide to us. Hashing converts your data into a non-reversible, unreadable string of characters before it leaves our server.
    • Technical Data:Limited technical information like IP address and user agent (browser/device information) to ensure accurate event delivery and deduplication.
    • Event-Specific Parameters: Such as the value of a consolidated payment, currency, or other relevant details for specific actions taken within the App.
  • Purpose of Sharing: This data is shared to:
    • Measure the effectiveness of our advertising campaigns across various platforms.
    • Optimize our ad delivery to reach relevant audiences.
    • Create custom and lookalike audiences for future advertising.
    • Better understand user behavior in relation to our marketing efforts.
  • Your Consent: : We will only share data for advertising and analytics purposes with your consent. You have control over your data sharing preferences, as explained in the "Your Choices and Rights" section below..
  • Third-Party Platforms' Roles: These advertising platforms act as data processors for the data we send via their respective APIs, processing it on our behalf. You can learn more about how these platforms handle data by reviewing their individual Data Policies or Privacy Policies. Examples include:

5. Data Security

We take your data security very seriously. We implement robust technical and organizational measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. We are committed to constantly evaluating and enhancing our security practices to pursue the highest level of protection for your data, utilizing industry-standard encryption (both at rest and in transit), access controls, and secure infrastructure. Your login credentials for Third-Party Providers are handled with the highest level of security during their brief use for the one-time setup and are then securely and permanently deleted from our systems. Specifically, your full payment card details are tokenized by our payment processor and never stored on Bundul's servers. We also utilize multi-factor authentication (MFA) for our internal systems. While no system can guarantee absolute invulnerability, we strive to safeguard your information with the utmost diligence and continuous vigilance against evolving threats.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting requirements. Your login credentials for Third-Party Providers are not retained after the one-time payment consolidation setup is complete. When we decide how long to keep your information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure, why we need it, and any relevant legal requirements (such as legal retention and destruction periods). This will not prevent us from retaining any personal information if it is necessary to comply with our legal obligations, in order to file a legal claim or defend ourselves against a legal claim, or for evidential purposes.

7. SMS Consent

  • Consent, Purpose & Scope:When you provide your mobile phone number, Bundul may send you a one-time password (OTP) via SMS. This is strictly for verifying your identity when you register, log in, or perform sensitive account actions.
  • No Marketing, No Spam:We do not use this number for marketing, promotions, or any communications unrelated to account security—unless you explicitly opt in. You will never receive unsolicited messages from us.
  • Your Rights & Control:
    • Consent-based: By submitting your number, you consent to receive OTPs.
    • Revocable: You may withdraw OTP consent at any time via account settings or by contacting support—but doing so may disable certain security features.
    • Data Retention: We retain SMS logs solely for security, compliance, or fraud prevention, and in line with our Data Retention Policy.
  • Security & Privacy:All OTPs are transmitted securely, and your phone number is stored and handled under the same strict protocols as your other personal data (e.g., TLS in transit, AES-256 at rest).

8. Your Choices and Rights

You have certain rights regarding your personal information:

  • Access and Correction:You can access and update much of your personal information directly within your Bundul account settings. You can also contact us to request access to or correction of your data.
  • Deletion: You can request the deletion of your Bundul account and associated personal data. Please note that some information may be retained if required by law or for legitimate business purposes (e.g., dispute resolution, fraud prevention), including for essential security purposes like maintaining a record of OTPs sent for your account's integrity.
  • Marketing Communications: You can opt-out of receiving marketing emails and promotional text messages from us by following the unsubscribe instructions included in those messages (e.g., replying STOP to a promotional text message). Even if you opt-out of marketing communications, we may still send you non-promotional messages related to your account or our ongoing business relations, including One-Time Passwords (OTPs) and essential service-related alerts, as these are necessary for the security and functionality of your account. We will ask for your consent before we share your personal information with any third party for their direct marketing purposes.
  • Tracking Technologies and Advertising Preferences:
    • In-App Settings: We will provide clear controls within the Bundul app settings for you to manage your consent preferences regarding data sharing for advertising and analytics purposes.
    • Device Settings: You can often control data collection through your device's settings (e.g., disabling location services or limiting ad tracking).
    • Ad Platform Settings: You can manage your ad preferences and opt-out of interest-based advertising directly through the settings provided by the individual advertising platforms (e.g., Meta's ad settings, TikTok's privacy settings, Reddit's ad personalization settings).
    • Industry Opt-Outs: You can also opt-out of interest-based advertising from many third-party advertisers through organizations like the Network Advertising Initiative (NAI) or the Digital Advertising Alliance (DAA).
  • Do Not Sell/Share (for CCPA/CPRA - California Residents):If you are a California resident, you have the right to opt-out of the "sale" or "sharing" of your personal information as defined by the CCPA/CPRA. While Bundul does not directly sell your personal information for monetary gain, the sharing of hashed data for cross-context behavioral advertising (which server-side APIs facilitate)13 may be considered "sharing" under these laws. You can exercise this right through the privacy 14 settings in our app or by contacting us. We honor Global Privacy Control (GPC) signals.

9. Children's Privacy

Bundul is not intended for use by children under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have inadvertently collected personal information from a child under 16, we will take steps delete such information as soon as possible.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal or regulatory reasons. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. We may also notify you via email or through a prominent notice on the App prior to the change becoming effective. We encourage you to review this Privacy Policy periodically.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:
Email: support@bundul.com
Address: Bundul Inc. 16192 Coastal Hwy Lewes DE US 19958-3608

Your Subscriptions.
Your Schedule.
Your Control.

Stop Reacting.
Start Controlling.

Download nowDollar billDollar bill
CoinCoin
CoinCoin

Bundul

  1. We are not affiliated, associated, authorized, endorsed by, or in any way officially connected with any of the listed service providers.
  2. Cancellation of recurring services or bill does not automatically improve financial wellness.
  3. The financial literacy information provided is intended for general informational purposes only and should not be construed as professional financial advice.
  4. Our split payment option will be available soon