0

Your privacy matters. Learn how we collect, use, and protect your personal data.

1. Data Controller Information

Druid Cat is the data controller for your personal information.

2. What Data We Collect

Personal Information

  • Account Information: Email address, encrypted password, username
  • Purchase Information: Billing address, payment method (processed securely via Stripe)
  • Communication Data: Messages sent through contact forms, support emails
  • Newsletter Subscriptions: Email address for marketing communications

Automatically Collected Data

  • Usage Analytics: Pages visited, time spent, click patterns (via Google Analytics)
  • Technical Data: IP address, browser type, device information
  • Cookies: Session cookies, preference cookies, analytics cookies

Music Paws AI Data

  • Generation History: Prompts used, compositions created, usage statistics
  • File Storage: Generated music files (MP3, MIDI, PDF, PNG) stored temporarily
  • Account Usage: Generation limits, subscription status, payment history

3. How We Use Your Data

Service Delivery

  • Process your orders and deliver purchased products
  • Provide Music Paws AI composition services
  • Manage your account and subscriptions
  • Send order confirmations and shipping updates

Communication

  • Respond to your inquiries and support requests
  • Send newsletter updates (with your consent)
  • Notify you of important service changes
  • Provide Patreon integration and exclusive content access

Improvement & Analytics

  • Analyze website usage to improve user experience
  • Enhance Music Paws AI algorithms based on usage patterns
  • Develop new features and services
  • Prevent fraud and ensure security

4. Legal Basis for Processing (GDPR)

Contract Performance

Processing necessary to fulfill our services (Music Paws AI, shop orders, account management)

Consent

Marketing emails, analytics cookies, newsletter subscriptions (you can withdraw anytime)

Legitimate Interest

Website security, fraud prevention, service improvement, technical support

Legal Obligation

Tax records, payment processing compliance, data breach notifications

5. Data Sharing & Third Parties

Payment Processing

  • Stripe: Secure payment processing (PCI DSS compliant)
  • PayPal: Alternative payment method

Service Providers

  • Google Analytics: Website usage analytics (anonymized data)
  • Hosting Provider: Website hosting and data storage
  • Email Service: Newsletter delivery and transactional emails

External Platforms

  • YouTube: Embedded tutorial videos (Google Privacy Policy applies)
  • Patreon: Membership integration (Patreon Privacy Policy applies)
  • Gumroad: Script sales platform (Gumroad Privacy Policy applies)
We never sell your personal data to third parties.

6. Data Retention

Account Data

  • Active Accounts: Data retained while account exists and for legitimate business purposes
  • Deleted Accounts: Personal data removed within 30 days (except legal obligations)
  • Music Paws Generations: Files deleted after 90 days unless saved to account

Transaction Data

  • Payment Records: Kept for 7 years for tax and legal compliance
  • Order History: Retained for customer service and warranty purposes
  • Support Communications: Kept for 3 years for service improvement

8. Cookies & Tracking

Essential Cookies

  • Session Cookies: Required for website functionality, login, shopping cart
  • Security Cookies: Prevent fraud and ensure secure browsing

Analytics Cookies

  • Google Analytics: Website usage statistics (requires consent)
  • Performance Cookies: Monitor site speed and user experience

Marketing Cookies

  • Social Media: YouTube, Instagram, Patreon integration
  • Advertising: Retargeting and conversion tracking (with consent)

Manage Cookie Preferences:

9. Data Security

Encryption

SSL/TLS encryption for all data transmission. Passwords encrypted with industry-standard hashing.

Secure Hosting

Data stored on secure servers with regular security updates and monitoring.

Access Control

Strict access controls ensure only authorized personnel can access personal data.

Regular Backups

Automated backups with secure, encrypted storage for data recovery.

10. International Transfers

Some of our service providers may be located outside the European Economic Area (EEA). When we transfer your data internationally, we ensure adequate protection through:

  • Adequacy Decisions: Countries approved by the European Commission
  • Standard Contractual Clauses: EU-approved contracts for data protection
  • Certification Schemes: Privacy Shield successors and similar frameworks

8. Age Requirement

You must be at least 18 years old to use any of our services. We do not knowingly collect personal information from anyone under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date
  • Sending email notification for significant changes
  • Displaying a notice on our website