Music TrackerMusic Tracker
Music TrackerMusic Tracker

Privacy Policy

Last updated: February 15, 2026 · Effective immediately

MusicTracker ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains what data we collect, how we use it, and your rights as a user. By using MusicTracker, you agree to the practices described here.

1. Data We Collect

Account Information

When you create an account, we collect your email address, display name, and profile picture (if you sign in via Google or Discord). We do not store passwords — authentication is handled by third-party OAuth providers.

Search & Usage Data

We store your track search history, saved searches, monitored tracks, gig entries, and uploaded demo files. This data is tied to your account and used to provide our services.

Analytics

We collect anonymous usage statistics (page views, feature usage) to improve MusicTracker. We do not track individual browsing behavior across other websites.

Uploaded Files

Audio files uploaded to Demo Analyzer are processed for analysis and then deleted from our servers within 24 hours. We do not retain, share, or redistribute your audio files.

2. How We Use Your Data

  • Provide, maintain, and improve MusicTracker services
  • Display your search history and saved preferences
  • Send track monitoring notifications (when milestones are reached)
  • Send important service updates (security alerts, billing, policy changes)
  • Analyze anonymous usage patterns to improve the platform
  • Prevent fraud, abuse, and ensure platform security

We never:

  • Sell your data to third parties
  • Share your personal data with advertisers
  • Use your uploaded audio for any purpose other than analysis
  • Send marketing emails without your explicit consent

3. Third-Party Services

MusicTracker integrates with the following third-party services:

Authentication

Google OAuth, Discord OAuth (via NextAuth.js)

Payments

Lemon Squeezy (PCI-DSS compliant). We never see your card details.

Email

Resend (transactional emails only, no marketing)

Music Data APIs

Spotify, YouTube, Beatport, SoundCloud, Discogs, Last.fm, etc.

AI Processing

Groq / OpenAI for demo analysis (audio is not stored by them)

Hosting & Database

Vercel (hosting), PostgreSQL (data storage)

4. Cookies

We use only essential cookies required for the service to function:

  • Session cookie — keeps you logged in (expires when you close the browser or after 30 days)
  • CSRF token — protects against cross-site request forgery
  • Turnstile token — Cloudflare bot protection for contact forms

We do not use tracking cookies, advertising cookies, or third-party analytics cookies.

5. Data Security

  • All data is transmitted over HTTPS (TLS 1.3)
  • Database is encrypted at rest and in transit
  • Authentication via OAuth 2.0 (no password storage)
  • Payment processing via Lemon Squeezy (PCI-DSS Level 1 compliant)
  • Uploaded audio files are auto-deleted within 24 hours
  • Regular security reviews of dependencies and infrastructure

6. Data Retention

  • Account data: Retained as long as your account is active
  • Search history: Last 50 searches, auto-pruned
  • Uploaded audio: Deleted within 24 hours of analysis
  • Contact form messages: Retained for 90 days
  • Cached API data: Expires after 24 hours

When you delete your account, all associated data is permanently removed within 30 days.

7. Your Rights

Under GDPR and applicable privacy laws, you have the right to:

  • Access — Request a copy of all data we hold about you
  • Correction — Request correction of inaccurate data
  • Deletion — Request permanent deletion of your account and data
  • Export — Download your data in a portable format
  • Withdraw consent — Opt out of non-essential communications at any time

To exercise any of these rights, email us at privacy@musictracker.io. We respond within 30 days.

8. Contact

If you have any questions or concerns about this Privacy Policy, contact us: