Bright Ears Logo

Bright Ears

Privacy Policy

Effective Date: June 29, 2025

At Bright Ears, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

1. Information We Collect

Information You Provide

  • Account Information: Email address, password (encrypted), and profile details
  • Payment Information: Processed securely through Stripe (we don't store credit card details)
  • Discovery Preferences: Genre selections, search parameters, and music source URLs
  • Custom Sources: YouTube channels or playlists you add to your account

Information from Third-Party Services

  • Google OAuth: Basic profile information (email, name) when you sign in with Google
  • YouTube API: Public music content data from channels and playlists you search

Automatically Collected Information

  • Usage Data: Features used, searches performed, and interaction with the service
  • Technical Data: IP address, browser type, device information, and access times

2. How We Use Your Information

We use the collected information to:

  • Provide and maintain our Service
  • Discover music from your selected sources
  • Generate and store your search results
  • Process payments and manage subscriptions
  • Send service-related communications
  • Improve and optimize our Service
  • Comply with legal obligations
  • Detect and prevent fraud or abuse

3. Information Sharing

We do not sell, trade, or rent your personal information. We may share your information only in these circumstances:

  • Service Providers: With trusted third parties who assist in operating our Service (Stripe for payments, hosting providers)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you explicitly agree to sharing

4. Data Security

We implement appropriate technical and organizational measures to protect your information:

  • Encryption of sensitive data in transit and at rest
  • Secure password storage using bcrypt hashing
  • Regular security assessments
  • Limited access to personal information on a need-to-know basis

However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

5. Third-Party Services

Our Service integrates with third-party services that have their own privacy policies:

  • YouTube: For discovering public music content
  • Google: For authentication services
  • Stripe: For payment processing

We also provide search links to music platforms (Spotify, Tidal, YouTube Music, Beatport, Traxsource) but do not access or store your accounts on these services.

We encourage you to review their privacy policies to understand how they handle your data.

6. Your Rights and Choices

You have the following rights regarding your personal information:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your account and associated data
  • Portability: Receive your data in a structured format
  • Withdraw Consent: Revoke permissions for data processing

To exercise these rights, contact us.

7. Data Retention

We retain your information for as long as necessary to provide our Service and comply with legal obligations:

  • Account data: Until you delete your account
  • Payment records: As required by tax and accounting regulations
  • Usage logs: Up to 90 days

8. Cookies and Tracking

We use essential cookies to:

  • Maintain your session and authentication state
  • Remember your preferences
  • Ensure security features function properly

We do not use advertising cookies or share data with advertising networks.

9. Children's Privacy

Our Service is not directed to individuals under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will delete the information immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

11. California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to:

  • Know what personal information is collected
  • Know whether personal information is sold or disclosed
  • Say no to the sale of personal information
  • Access personal information
  • Request deletion of personal information
  • Not be discriminated against for exercising privacy rights

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Effective Date" at the top
  • Sending an email notification for significant changes

13. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Contact Support
Data Protection Officer: Privacy Team

Your privacy is important to us. We are committed to protecting your personal information and being transparent about our data practices.