Profile
Home
Music
Store
Messages
Settings
Search
Login

Soundcabin Privacy Policy

Last Updated: May 30, 2026

At Soundcabin, we take your privacy seriously. This Privacy Policy explains how we collect, use, share, and protect your personal information when you use our platform.

1. Information We Collect

1.1 Information You Provide Directly

Account Information:

  • Email address

  • Name (display name and/or legal name)

  • Profile photo

  • Password (stored encrypted)

  • Payment information (processed and stored by Stripe, not by us)
  • Creator Information:

  • Content you upload (music, audio, text, images, videos)

  • Content descriptions, titles, and metadata

  • Subscription tier details and pricing

  • Payout and tax information
  • Subscriber Information:

  • Subscription preferences and history

  • Payment history (processed by Stripe)

  • Interactions with Creator content
  • Communications:

  • Messages you send to our support team

  • Feedback and survey responses
  • 1.2 Information We Collect Automatically

    Usage Data:

  • Content you view, listen to, or interact with

  • Time spent on different content

  • Search queries

  • Subscription activity

  • Features you use and how you use them
  • Device and Technical Information:

  • IP address

  • Browser type and version

  • Operating system

  • Device identifiers

  • Referring/exit pages

  • Date and time stamps
  • Location Data:

  • General geographic location (country/region) derived from your IP address

  • We do not collect precise GPS location
  • 1.3 Cookies and Similar Technologies

    We use cookies and similar tracking technologies for:

  • Essential cookies: Required for login, security, and basic site functionality

  • Session cookies: To maintain your logged-in state
  • We do not use cookies for analytics or advertising at this time.

    You can control cookies through your browser settings, but disabling essential cookies may prevent you from using certain features.

    2. How We Use Your Information

    2.1 To Provide and Improve Our Service

  • Create and manage your account

  • Process subscriptions and payments

  • Enable Creators to share content with Subscribers

  • Provide customer support

  • Send transactional emails (receipts, notifications, password resets)

  • Improve and optimize our platform

  • Develop new features and functionality
  • 2.2 Content Recommendations and Personalization

    We use a recommendation system to help users discover relevant content and help Creators reach interested audiences. This system works by:

    Creating Content Embeddings:

  • Analyzing Creator content (audio features, text, metadata, engagement patterns)

  • Generating mathematical representations (embeddings) that capture content characteristics

  • Using these embeddings to identify similar content and potential matches
  • Creating User Preference Embeddings:

  • Analyzing your listening habits and interaction patterns

  • Generating embeddings that represent your preferences

  • Updating these embeddings as your behavior evolves
  • Making Recommendations:

  • Matching user preference embeddings with content embeddings

  • Suggesting content you're likely to enjoy

  • Helping Creators reach relevant audiences
  • Important Notes:

  • This analysis uses anonymized, aggregate patterns

  • We do not manually review individual user behavior

  • Embeddings are mathematical representations, not copies of content

  • This system operates entirely within our recommendation engine

  • We do not sell this data or use it for unrelated purposes
  • 2.3 Communications

  • Transactional emails: We send emails necessary for the service (receipts, password resets, account notifications). You cannot opt out of these.

  • Marketing emails: We may send promotional emails about new features, content, or platform updates. You can opt out at any time via the unsubscribe link or your account settings.
  • 2.4 Legal and Security Purposes

  • Enforce our Terms of Service

  • Prevent fraud, abuse, and security threats

  • Comply with legal obligations

  • Protect our rights and the rights of our users

  • Respond to law enforcement requests
  • 3. How We Share Your Information

    3.1 With Other Users

    Creators can see:

  • Names and profile information of their Subscribers

  • Subscription start dates and status (active/canceled)

  • General engagement metrics (e.g., number of plays)
  • Subscribers can see:

  • Creator profiles and public content information

  • Comments and interactions you make on Creator content (if applicable)
  • Public Information:

  • Your profile name and photo are visible to other users

  • Creator pages and content are publicly discoverable
  • 3.2 With Service Providers

    We share information with trusted third-party service providers who help us operate Soundcabin:

    Stripe: Payment processing - handles all payment transactions and stores payment information. See Stripe's Privacy Policy at https://stripe.com/privacy

    Amazon Web Services (AWS): Cloud hosting and infrastructure (US-West-1 region) - stores content and data

    Amazon SES: Email delivery - sends transactional and marketing emails on our behalf

    Meta Platforms (Facebook and Instagram): If you connect a Facebook Page or Instagram account, content you choose to cross-post and the associated account identifiers are sent to Meta to publish on your behalf. This only occurs for accounts you explicitly connect and posts you explicitly initiate. See Section 10 for full details and Meta's Privacy Policy at https://www.facebook.com/privacy/policy

    These providers are contractually obligated to protect your information and use it only for the services they provide to us.

    3.3 For Legal Reasons

    We may disclose your information if required by law or if we believe in good faith that such disclosure is necessary to:

  • Comply with legal obligations, court orders, or government requests

  • Enforce our Terms of Service

  • Protect our rights, property, or safety, or that of our users

  • Investigate or prevent fraud, security issues, or technical problems
  • 3.4 Government and Public Authority Requests

    When we receive a request for user information from a government agency, law enforcement, or other public authority, we handle it according to the following practices:

  • Legality review: We review every request to confirm it is valid and legally sufficient before disclosing any information, and we require appropriate legal process where the law requires it.

  • Challenging unlawful requests: We will object to, narrow, or challenge requests that we believe are overly broad, improper, or unlawful.

  • Data minimization: When we do disclose information, we provide only the minimum data necessary to respond to the specific lawful request.

  • Documentation: We document such requests, our responses, and the legal reasoning involved.
  • 3.5 Business Transfers

    If Soundcabin is involved in a merger, acquisition, sale of assets, or bankruptcy, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our platform before your information is transferred and becomes subject to a different privacy policy.

    3.6 What We Don't Do

    We do NOT:

  • Sell your personal information to third parties

  • Share your information with advertisers

  • Provide your information to data brokers

  • Use your data for purposes unrelated to operating Soundcabin
  • 4. Data Retention

    4.1 Active Accounts


    We retain your information for as long as your account is active or as needed to provide you services.

    4.2 Deleted Accounts


    When you delete your account:
  • Your profile and content are removed from public view immediately

  • Your personal information is deleted within 90 days

  • Some information may be retained longer if required by law (e.g., payment records for tax purposes - typically 7 years)

  • Anonymized, aggregate data that cannot identify you may be retained indefinitely
  • 4.3 Backups


    Deleted data may persist in backup systems for up to 90 days before being permanently purged.

    4.4 Legal Holds


    We may retain information longer if required by legal obligations, disputes, or regulatory requirements.

    5. Data Security

    We implement reasonable security measures to protect your information, including:

  • Encryption of data in transit (HTTPS/TLS)

  • Encryption of sensitive data at rest

  • Secure authentication and password hashing

  • Regular security assessments

  • Limited employee access to personal information

  • Secure hosting infrastructure (AWS)
  • However, no method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

    6. Your Privacy Rights

    6.1 For All Users

    Access and Portability:

  • You can access your account information through your account settings

  • You can request a copy of your data by emailing support@soundcabin.com

  • We will provide your data in a portable format within 30 days
  • Correction:

  • You can update your account information through your account settings

  • Contact us if you need help correcting your information
  • Deletion:

  • You can request account deletion by emailing support@soundcabin.com

  • We will delete your information within 90 days (subject to legal retention requirements)
  • Marketing Opt-Out:

  • Unsubscribe from marketing emails using the link in any marketing email

  • Manage email preferences in your account settings
  • 6.2 California Residents (CCPA Rights)

    If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

    Right to Know:

  • What personal information we collect

  • The sources of that information

  • The purposes for collecting it

  • The categories of third parties we share it with
  • Right to Delete:

  • Request deletion of your personal information (subject to certain exceptions)
  • Right to Opt-Out:

  • We do not "sell" personal information as defined by the CCPA

  • Our use of data for recommendations does not constitute a "sale"
  • Right to Non-Discrimination:

  • We will not discriminate against you for exercising your CCPA rights
  • How to Exercise Your Rights:

  • Email privacy@soundcabin.com

  • We will verify your identity before processing your request

  • We will respond within 45 days
  • 6.3 European Residents (GDPR Rights)

    While Soundcabin primarily serves US users, if you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

    Legal Basis for Processing:

  • Contract performance (to provide our services)

  • Legitimate interests (to improve and secure our platform)

  • Consent (for marketing communications)
  • Your Rights:

  • Access, correction, and deletion (as described above)

  • Data portability

  • Restriction of processing

  • Object to processing

  • Withdraw consent at any time
  • International Transfers:

  • Your data may be transferred to and processed in the United States

  • We use appropriate safeguards for international transfers
  • Contact privacy@soundcabin.com to exercise these rights.

    7. Children's Privacy

    Soundcabin is intended for users aged 18 and older. We do not knowingly collect information from individuals under 18. If we learn we have collected information from someone under 18, we will delete it promptly.

    If you believe we have information from someone under 18, please contact us at privacy@soundcabin.com.

    8. International Users

    Soundcabin is based in the United States, and your information is stored on servers located in the US (AWS US-West-1). By using Soundcabin, you consent to the transfer of your information to the United States.

    Different countries have different privacy laws. If you are outside the US, please be aware that your information will be processed according to US law and this Privacy Policy.

    9. Third-Party Links

    Our platform may contain links to third-party websites, services, or social media platforms. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before providing them with your information.

    10. Connecting Social Accounts (Facebook and Instagram)

    Soundcabin lets you connect your Facebook Page and/or Instagram Business or Creator account so you can publish content from Soundcabin to those platforms with your explicit action. Connecting a social account is entirely optional. If you choose to connect, the following describes what we collect, how we use it, and your controls.

    There are two ways to connect, with the same privacy treatment:

  • Via Facebook (Facebook Login for Business): for artists whose Instagram is linked to a Facebook Page.

  • Via Instagram (Instagram API with Instagram Login): for artists who connect an Instagram Business or Creator account directly, without a Facebook Page.
  • 10.1 What We Collect

  • Your Facebook Page name, ID, and username (Facebook path)

  • Your Instagram account name, ID, username, and account type — Business or Creator (Personal accounts cannot be connected)

  • An OAuth access token that allows Soundcabin to publish content on your behalf. Tokens are encrypted at rest using AWS KMS envelope encryption (AES-256-GCM) and are never stored in plaintext or written to logs
  • 10.2 How We Use It

  • To publish content (such as posts, photos, and videos) from Soundcabin to your connected Facebook Page and/or Instagram account — only when you initiate the action. Soundcabin never posts autonomously.

  • To refresh your access token in the background before it expires, so you don't have to reconnect (Instagram long-lived tokens expire roughly every 60 days)

  • To detect when a token has expired or been revoked and notify you to reconnect

  • To display your connection status in Settings → Connected Accounts
  • 10.3 What We Do NOT Do

  • We do not read your Facebook or Instagram feed, followers, following, messages, or direct messages

  • We do not read posts you did not create through Soundcabin

  • We do not use your Facebook or Instagram data for advertising or profiling

  • We do not sell or share your social account credentials or tokens with any third party
  • 10.4 Permissions We Request and Why

  • pages_show_list: Shows you which Facebook Pages you can connect to Soundcabin

  • pages_manage_posts: Lets Soundcabin publish a post to your Facebook Page when you initiate a cross-post

  • pages_read_engagement: Lets Soundcabin read back the post it just published (such as its permalink) so we can link you to your live post and confirm it succeeded

  • instagram_basic: Lets Soundcabin read your Instagram Business account details to link it during setup (Facebook path)

  • instagram_content_publish: Lets Soundcabin publish to your Instagram account when you initiate a cross-post (Facebook path)

  • instagram_business_basic: Lets Soundcabin read your Instagram account ID, username, and account type to complete setup (Instagram direct path)

  • instagram_business_content_publish: Lets Soundcabin publish to your Instagram account when you initiate a cross-post (Instagram direct path)
  • 10.5 Data Retention and Deletion

  • OAuth tokens are retained only while your account is connected. When you disconnect a social account (Settings → Connected Accounts → Disconnect), Soundcabin immediately stops all access and deletes the stored token from our database. For Instagram accounts connected directly, the authorization is also revoked on Meta's side at that time.

  • To additionally remove Soundcabin's authorization from your Facebook Page, remove it from Meta → Business Integrations (see Section 10.6). When you do this, Meta notifies Soundcabin and we delete any remaining connection data automatically.

  • We retain limited connection metadata (account handle, connected date, disconnection date) for audit purposes for up to 12 months after disconnection.

  • You may also request deletion of your social-connection data by emailing privacy@soundcabin.com, and Meta can send us a data-deletion request on your behalf which we honor automatically.
  • 10.6 Your Controls

  • Disconnect your Facebook Page and/or Instagram account at any time from Settings → Connected Accounts.

  • Revoke Soundcabin's access directly from Meta: Facebook → Settings & Privacy → Settings → Business Integrations; or Instagram → Settings → Apps and Websites → Active → Soundcabin → Remove.

  • If you revoke access on Meta's side, Soundcabin detects this at the next token refresh (within 6 hours) and marks your connection as requiring re-authorization.
  • 11. Changes to This Privacy Policy

    We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

    How We Notify You:

  • We will post the updated policy on this page with a new "Last Updated" date

  • For material changes, we will notify you via email or through a prominent notice on our platform at least 30 days before the changes take effect

  • Your continued use of Soundcabin after changes take effect constitutes acceptance of the updated policy
  • Policy History:

  • We will maintain previous versions of our Privacy Policy upon request
  • 12. Contact Us

    If you have questions, concerns, or requests regarding this Privacy Policy or your personal information, contact us at:

    Privacy Inquiries: privacy@soundcabin.com
    General Support: support@soundcabin.com
    Data Requests (CCPA/GDPR): privacy@soundcabin.com

    Response Time:

  • We aim to respond to privacy inquiries within 7 business days

  • Data requests (access, deletion) will be fulfilled within 30-45 days

---

By using Soundcabin, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use, and sharing of your information as described herein.