Privacy Policy

This policy applies to all users, including guests, registered fans, band owners, and admins.

By using the Service, you consent to the data practices described in this policy.

We collect information in the following categories to provide and improve our Service:

A) Information You Provide Directly:

- Account Data: Email address, display name, username, and profile image URL.

- Band Data: Band name, URL slug, biography, links, social media handles, and visual style/theme settings.

- Song Data: Song titles, lyrics, status (published/draft), artwork images, audio files, and release metadata.

- Collaboration Data: Information about band owners and collaborators, and their assigned roles.

- Fan Preference Data: Saved songs, followed bands, and support/voting interactions on songs.

- Feedback and Reports: Information you submit via feedback forms or report queues, including category, summary, details, and optional contact information.

- Communications: If you contact us directly, we may receive additional information about you.

B) Information We Collect Automatically (via Firebase and other technologies):

- Usage Data: Interactions with the Service, such as pages viewed, features used (e.g., player controls), and the dates and times of your visits.

- Device and Log Data: IP address, browser type, operating system, referring URLs, and standard server logs.

- System-Generated Data: Timestamps for content creation/updates, versioning information, and operational counters/metrics related to song/band engagement. We also collect structured system error logs for troubleshooting.

C) Information from Third Parties:

- We use Firebase (by Google) for authentication, database, and storage. Firebase may collect information as described in Google's Privacy Policy.

- If you use third-party payment or donation links, those processors may provide us with confirmation of a transaction, but we do not directly collect or store your financial information (like credit card numbers).

We use the information we collect for the following purposes:

- To Provide and Operate the Service: To authenticate users, display band/song content, manage fan libraries, enable band owner tools, and operate admin panels.

- To Personalize Your Experience: To remember your saved songs, followed bands, and playback preferences.

- To Improve and Develop the Service: To analyze usage patterns, troubleshoot technical issues (via error logs), and test new features.

- To Communicate With You: To send service-related announcements, respond to your inquiries, and provide customer support. We do not use your data for third-party marketing without your consent.

- To Ensure Security and Prevent Abuse: To monitor for suspicious activity, enforce our Terms of Service, protect the security of our users, and combat spam or malicious activity.

- To Fulfill Legal Obligations: To comply with applicable laws, regulations, and legal processes (e.g., responding to subpoenas).

With Other Users:

- Public Information: Your band profiles, song data, and public metadata are visible to all users of the Service (guests and registered users).

- Account Information: Your display name and profile image are visible to other users.

With Service Providers: We share information with trusted third-party vendors who perform services on our behalf, such as:

- Firebase (Google): For authentication, cloud database, and cloud file storage.

- Hosting Providers: To serve the website and media files.

These providers are contractually bound to protect your data and use it only to provide services to us.

For Legal Reasons: We may disclose your information if required to do so by law, or if we believe in good faith that such action is necessary to: (a) comply with a legal obligation; (b) protect and defend our rights or property; (c) prevent or investigate possible wrongdoing in connection with the Service; (d) protect the personal safety of users or the public; or (e) protect against legal liability.

Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on the Service of any change in ownership or uses of your personal information.

BandFan does not sell your personal information to third parties for monetary or other consideration.

Retention: We retain your personal information for as long as your account is active, or as needed to provide you the Service. We may also retain and use your information to comply with legal obligations, resolve disputes, and enforce our agreements.

Deletion: You can request deletion of your account and associated data through your account settings. Upon such a request, we will delete your profile and personal data, though some information may be retained in a de-identified or aggregated form, or as necessary to comply with our legal obligations (e.g., tax records for donations processed by third parties).

Depending on your location (e.g., if you are in the EEA, UK, or California), you may have certain rights regarding your personal information, including:

- Access: The right to know what personal information we hold about you.

- Correction: The right to correct inaccurate or incomplete information.

- Deletion: The right to request deletion of your data.

- Portability: The right to receive a copy of your data in a structured, commonly used format.

- Opt-out of Sale: As noted above, we do not sell your data.

To exercise these rights, please contact us at katsman.nikita@gmail.com. We will verify your request using the information associated with your account.

The Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such information. If you believe we might have any information from or about a child under 13, please contact us.

The Service may contain links to third-party websites, including donation links (e.g., PayPal, Buy Me a Coffee). This Privacy Policy does not apply to those websites. We are not responsible for the privacy practices of other sites and encourage you to read their privacy policies.

We implement reasonable security measures, including security headers and production-hardening measures, to protect your information from unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet or method of electronic storage is 100% secure.

The Service is hosted on infrastructure operated by our service providers, which may include Thailand, the United States, and other countries. If you access the Service from outside the country where processing occurs, your information may be transferred across borders. By using the Service, you consent to this transfer. We will take all steps reasonably necessary to ensure your data is treated securely and in accordance with this Privacy Policy.

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page with a new "Last Updated" date. We may also provide a more prominent notice (e.g., a pop-up notification in the Service).

For privacy questions, requests, or concerns, please contact us at:

katsman.nikita@gmail.com

35/89 Chaiyaphruek Village Soi6, Moo 7, Nong Hoi, Mueang, Chiang Mai 50000, Thailand