beatprod Privacy Policy

1. General Provisions

1.1. This Privacy Policy ("Policy") is developed in accordance with applicable U.S. data protection laws, including but not limited to the California Consumer Privacy Act (CCPA), the Children's Online Privacy Protection Act (COPPA), and other relevant federal and state regulations. It governs the processing of personal data of users of the beatprod website ("Site"), available at https://beatprod.com.

1.2. The Site Owner ("Owner") is committed to protecting the rights and freedoms of users when processing their personal data, including the right to privacy and data security.

1.3. This Policy applies to all personal data collected by the Owner from users during their use of the Site, including registration, interaction with content, and making payments.

1.4. By using the Site, the user agrees to the terms of this Policy. If the user does not agree with the Policy, they must discontinue use of the Site.

2. Key Terms and Definitions

For consistent understanding, the following definitions apply:

2.1. Personal Data — Any information relating to an identified or identifiable individual ("data subject"), including but not limited to: name, email address, phone number, payment information, and information about activities on the Site.
2.2. Processing of Personal Data — Any operation or set of operations performed on personal data, whether or not by automated means, including collection, recording, organization, storage, adaptation, retrieval, use, disclosure, anonymization, blocking, deletion, and destruction.
2.3. Site — The beatprod online resource, providing users with the ability to create, share, listen to, and purchase musical content, accessible at https://beatprod.com.
2.4. Owner — The legal entity or individual entrepreneur managing the Site and processing users' personal data.
2.5. User — An individual at least 18 years of age who uses the Site's functionality in accordance with the User Agreement and this Policy.
2.6. Cross-Border Data Transfer — The transfer of personal data to a foreign country, to a government authority, or to a foreign individual or legal entity.
2.7. Confidentiality of Personal Data — The Owner's obligation not to disclose personal data without the user's consent or other legal basis.

3. Rights and Obligations of the Owner

3.1. Owner's Rights:

Request accurate and up-to-date personal data from users as necessary for the Site's functionality.
Continue processing personal data without user consent in cases provided for by U.S. law (e.g., to comply with a court order).
Independently determine the measures necessary to ensure the security of personal data.

3.2. Owner's Obligations:

Provide users with information about the processing of their personal data upon request.
Ensure protection of personal data from unauthorized access, loss, alteration, or destruction.
Cease processing and delete personal data upon user request or as required by law.
Notify users of changes to this Policy by publishing an updated version on the Site.

4. Rights and Obligations of Users

4.1. Users' Rights:

Access information about the scope, purposes, and methods of processing their personal data.
Request correction, blocking, or deletion of their personal data if it is incomplete, outdated, or unlawfully obtained.
Withdraw consent to the processing of personal data by sending a written request to the Owner.
File complaints with the appropriate U.S. data protection authorities (e.g., the Federal Trade Commission).

4.2. Users' Obligations:

Provide accurate, truthful, and up-to-date personal data during registration and use of the Site.
Timely notify the Owner of changes to their personal data (e.g., change of email address).
Comply with the terms of the User Agreement and this Policy.

5. Principles of Personal Data Processing

The Owner adheres to the following principles when processing personal data:

Lawfulness and fairness: Data is processed in accordance with U.S. law.
Transparency: Users are informed about the purposes and methods of data processing.
Purpose limitation: Data is collected and processed only for specific, pre-defined purposes.
Data minimization: Only data necessary to achieve the stated purposes is collected.
Accuracy: Data must be accurate and updated as necessary.
Storage limitation: Data is retained no longer than necessary for the purposes of processing or as required by law.

6. Purposes of Personal Data Processing

The Owner processes users' personal data for the following purposes:

Providing access to the Site's functionality: account registration, creation, sharing, and listening to musical content.
Account management: user identification, password recovery, interface personalization.
Payment processing: conducting transactions for content purchases or subscriptions.
Technical support: handling user inquiries and resolving technical issues.
Marketing activities: informing users about new features, promotions, and offers (with user consent).

Processed data may include:

Identity information: first name, last name, username, nickname, email address, phone number (if provided), profile picture (avatar), background image, biography/description, social media links (Telegram, Instagram, YouTube).
Account information: role (buyer or beatmaker), account creation date, last login date, email verification status, account settings and preferences, subscription status and history.
Financial information: payment card details (processed securely through payment processors), billing address, transaction history, balance information, withdrawal requests and history, purchase and sales records, subscription payments.
Content data: uploaded music files (MP3, WAV, Stems), cover images, metadata (title, BPM, key, genre, category, tags, description), play counts, download statistics, comments, reviews, ratings.
Activity data: listening history, search queries, favorites, cart items, purchase history, upload activity, interaction with other users (follows, messages, comments), browsing patterns, feature usage statistics.
Technical data: IP address, device type and model, operating system, browser type and version, screen resolution, language preferences, time zone, unique device identifiers, session identifiers, authentication tokens, cookies and similar technologies.
Communication data: support tickets and inquiries, email correspondence, in-platform messages and chat history, notification preferences.
Social authentication data: when users sign up or log in using Google OAuth, we may receive profile information (name, email, profile picture) from the authentication provider, subject to the provider's privacy policy and your permissions.

Legal bases for processing:

User consent, expressed during registration or use of the Site.
Performance of a contract to which the user is a party (e.g., provision of paid services).
Compliance with applicable U.S. laws.

7. Conditions for Processing Personal Data

7.1. Processing of personal data begins after obtaining user consent, expressed by completing the registration form, checking the appropriate box, or by other means provided on the Site.
7.2. The Owner guarantees the confidentiality of personal data and takes necessary measures to protect it.
7.3. The user may withdraw consent to data processing by sending a request to beatprodcom@gmail.com. Data processing will cease within 30 days of receipt of the request, unless otherwise required by law.
7.4. Data may be processed without user consent in cases provided by law (e.g., at the request of a court or law enforcement agencies).

8. Collection, Storage, and Processing of Personal Data

8.1. Data Collection

Personal data is collected directly from users during registration, profile completion, payments, or support requests.
Data about user activity on the Site (e.g., IP address, device type) is automatically collected using cookies and similar technologies.

8.2. Data Storage

Data is stored electronically on secure servers owned or controlled by the Owner, located in the United States or other jurisdictions as permitted by law.
The retention period is determined by the purposes of processing and legal requirements, but does not exceed 3 years from the user's last interaction with the Site, unless otherwise required by law.

8.3. Data Processing

Processing is carried out using automated systems (software, databases) and manually if necessary.
The Owner uses encryption, access restrictions, and other measures to protect data from unauthorized use.

8.4. Data Transfer to Third Parties

Payment processors: When you make a payment, your payment information is processed by third-party payment service providers, including Stripe (for credit card payments) and Tochka Bank (for SBP payments in Russia). These providers handle payment processing in accordance with their own privacy policies and industry security standards (PCI DSS). We do not store full payment card numbers on our servers; only payment tokens and transaction references are retained for order fulfillment and customer support purposes.
Authentication providers: When you use Google OAuth to sign up or log in, Google may receive and process certain information about your authentication request in accordance with Google's Privacy Policy.
Cloud storage and hosting: Audio files, images, and other media content may be stored on cloud storage services or content delivery networks (CDNs) to ensure fast and reliable access to content. These services are contractually bound to protect your data and comply with applicable data protection laws.
Analytics and performance monitoring: We may use third-party analytics services to understand how users interact with the Site, improve performance, and identify technical issues. These services may collect anonymized or aggregated data about your usage patterns.
Customer support: When you contact our support team, your inquiry and related information may be processed through customer support platforms or tools to provide efficient assistance.
Legal and regulatory compliance: We may disclose personal data to government authorities, law enforcement agencies, courts, or other third parties when required by law, court order, or legal process, or when necessary to protect our rights, property, or safety, or that of our users or third parties.
Business transfers: In the event of a merger, acquisition, reorganization, or sale of assets, personal data may be transferred to the acquiring entity, subject to the same privacy protections as set forth in this Policy.
Service providers: We may share personal data with third-party service providers who perform services on our behalf, such as email delivery, data hosting, fraud prevention, and technical support. These service providers are contractually obligated to use personal data only for the purposes we specify and in accordance with this Policy.

9. Cross-Border Transfer of Personal Data

9.1. The Owner may transfer personal data to foreign countries (e.g., for data storage on overseas servers or cooperation with international partners).
9.2. Prior to cross-border transfer, the Owner will ensure that the recipient jurisdiction provides adequate protection for personal data rights.
9.3. Users are notified of the possibility of cross-border data transfer during registration on the Site.

10. Confidentiality of Personal Data

10.1. The Owner undertakes not to disclose users' personal data to third parties without their consent, except as required by law.
10.2. Only authorized employees of the Owner who have signed confidentiality agreements have access to personal data.
10.3. In the event of a data breach, the Owner will notify users and the appropriate U.S. authorities within the timeframes established by law.

11. Cookies and Similar Technologies

11.1. The Site uses cookies, web beacons, pixel tags, and similar tracking technologies (collectively, "Cookies") to enhance user experience, analyze Site usage, and provide personalized content and advertisements. Cookies are small text files stored on your device that allow the Site to remember your preferences, maintain your session, and track your interactions with the Site.

11.2. Types of Cookies used on the Site:

Essential Cookies: These cookies are necessary for the Site to function properly. They enable core functionality such as user authentication, session management, security features, and access to secure areas of the Site. These cookies cannot be disabled without affecting the Site's functionality.
Performance and Analytics Cookies: These cookies collect information about how users interact with the Site, such as which pages are visited most frequently, time spent on pages, error messages encountered, and overall Site performance. This data is used to improve Site functionality and user experience.
Functionality Cookies: These cookies allow the Site to remember choices you make (such as language preferences, currency settings, and display preferences) and provide enhanced, personalized features. They may also be used to remember your login status and account information.
Targeting and Advertising Cookies: These cookies are used to deliver advertisements that are relevant to your interests and to measure the effectiveness of advertising campaigns. They may also be used to limit the number of times you see an advertisement and to help measure the effectiveness of advertising campaigns.

11.3. You can control and manage Cookies through your browser settings. Most browsers allow you to refuse or accept Cookies, delete existing Cookies, or receive notifications before Cookies are stored. However, disabling certain Cookies may limit your ability to use some features of the Site.

11.4. The Site may use third-party Cookies from service providers such as payment processors, analytics services, and advertising networks. These third parties may use Cookies to collect information about your online activities across different websites. We do not control these third-party Cookies, and their use is governed by the respective third parties' privacy policies.

11.5. Session cookies are temporary and expire when you close your browser. Persistent cookies remain on your device for a specified period or until you delete them. Authentication cookies are used to maintain your login session and typically expire after 14 days of inactivity or when you log out.

12. User Rights Under CCPA and GDPR

12.1. If you are a resident of California, you have specific rights under the California Consumer Privacy Act (CCPA), including:

Right to Know: You have the right to request information about what personal information we collect, use, disclose, and sell (if applicable) about you.
Right to Delete: You have the right to request deletion of your personal information, subject to certain exceptions.
Right to Opt-Out: You have the right to opt-out of the sale of your personal information (if applicable). We do not currently sell personal information to third parties.
Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

12.2. If you are located in the European Economic Area (EEA), United Kingdom, or other jurisdictions with similar data protection laws, you have additional rights under the General Data Protection Regulation (GDPR), including:

Right of Access: You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and to access that personal data along with certain information about the processing.
Right to Rectification: You have the right to have inaccurate personal data corrected and incomplete personal data completed.
Right to Erasure ("Right to be Forgotten"): You have the right to request deletion of your personal data under certain circumstances, such as when the data is no longer necessary for the original purpose or when you withdraw consent.
Right to Restriction of Processing: You have the right to request that we limit how we use your personal data in certain circumstances.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller where technically feasible.
Right to Object: You have the right to object to processing of your personal data for direct marketing purposes or for legitimate interests pursued by us or third parties.
Right to Withdraw Consent: Where processing is based on consent, you have the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before withdrawal.
Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority in your jurisdiction if you believe that our processing of your personal data violates applicable data protection laws.

12.3. To exercise any of these rights, please contact us at beatprodcom@gmail.com. We will respond to your request within 30 days (or as required by applicable law) and may request additional information to verify your identity before processing your request.

12.4. In some cases, we may be unable to fulfill your request due to legal obligations, ongoing contractual relationships, or legitimate business interests. We will inform you of any such limitations when responding to your request.

13. Data Security Measures

13.1. The Owner implements technical, administrative, and organizational measures to protect personal data against unauthorized access, loss, alteration, destruction, or disclosure. Security measures include but are not limited to:

Encryption: Sensitive data, including payment information and authentication credentials, is encrypted both in transit (using TLS/SSL protocols) and at rest (using industry-standard encryption algorithms).
Access controls: Access to personal data is restricted to authorized personnel only and is based on the principle of least privilege. Employees and contractors are required to sign confidentiality agreements and receive training on data protection.
Secure authentication: Multi-factor authentication and secure password policies are implemented to protect user accounts. Passwords are hashed using industry-standard algorithms and are never stored in plain text.
Network security: Firewalls, intrusion detection systems, and regular security audits help protect against unauthorized access and malicious attacks.
Regular backups: Personal data is regularly backed up to ensure availability and recovery in case of system failures or data loss incidents.
Incident response: We maintain procedures for detecting, reporting, and responding to data security incidents in accordance with applicable legal requirements.

13.2. Despite our security measures, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee absolute security. Users should take appropriate measures to protect their accounts, including using strong passwords, not sharing login credentials, and logging out after using shared devices.

13.3. In the event of a data breach that poses a risk to your rights and freedoms, we will notify affected users and relevant supervisory authorities within the timeframes required by applicable law (typically 72 hours for GDPR jurisdictions).

14. Children's Privacy

14.1. The Site is not intended for users under the age of 18. We do not knowingly collect personal data from children under 18 without verifiable parental consent, as required by the Children's Online Privacy Protection Act (COPPA).

14.2. If we become aware that we have collected personal data from a child under 18 without appropriate parental consent, we will take steps to delete such information promptly. If you are a parent or guardian and believe that your child has provided personal data to us, please contact us immediately at beatprodcom@gmail.com.

14.3. Users between the ages of 14 and 18 may use the Site only with the consent and supervision of a parent or legal guardian. Parents or guardians are responsible for monitoring their children's use of the Site and ensuring compliance with this Policy.

15. Automated Decision-Making and Profiling

15.1. We may use automated systems and algorithms to process your personal data for certain purposes, including:

Content recommendations: Analyzing your listening history, purchase history, and preferences to recommend music content that may interest you.
Fraud prevention: Using automated systems to detect and prevent fraudulent transactions, unauthorized access, and abuse of the Site's functionality.
Content moderation: Using automated tools to detect and filter prohibited content, spam, or material that violates our terms of service.
Personalization: Customizing your experience on the Site based on your preferences, behavior, and interaction patterns.

15.2. These automated processes help us provide better services and protect users, but they do not result in decisions that produce legal effects concerning you or similarly significantly affect you without human review. You have the right not to be subject to a decision based solely on automated processing if such a decision would have legal or similarly significant effects.

15.3. If you are subject to automated decision-making that significantly affects you, you have the right to request human intervention, express your point of view, and contest the decision.

16. Data Retention and Deletion

16.1. We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements.

16.2. Specific retention periods:

Account data: Retained while your account is active and for 3 years after account deletion or last activity, unless required longer by law (e.g., for tax or financial record-keeping purposes).
Transaction and payment data: Retained for 7 years from the date of transaction to comply with financial and tax regulations.
Content data (music files, metadata): Retained as long as your account is active or until you delete the content. If content has been purchased or licensed by other users, certain data may be retained longer to protect the rights of licensees.
Marketing and communication data: Retained until you unsubscribe or object to processing, or for 3 years after your last interaction with marketing communications.
Legal and compliance data: Retained as required by applicable law, court orders, or regulatory requirements, which may extend beyond the standard retention periods.

16.3. When personal data is no longer needed, it will be securely deleted or anonymized in accordance with our data retention policies and applicable law. Anonymized data that cannot be linked back to you may be retained for analytical or statistical purposes.

16.4. Users may request deletion of their personal data at any time by contacting us or using account deletion features (if available). However, some data may be retained if required by law or if necessary to protect our legal rights or the rights of third parties.

17. International Users and Data Transfers

17.1. The Site is operated from the United States. If you are located outside the United States, please be aware that personal data collected through the Site will be transferred to, stored in, and processed in the United States and potentially other countries where our service providers are located.

17.2. By using the Site and providing your personal data, you consent to the transfer, storage, and processing of your personal data in the United States and other jurisdictions, which may have different data protection laws than your country of residence.

17.3. We take measures to ensure that international data transfers comply with applicable data protection laws. When transferring personal data from the EEA, UK, or other jurisdictions with strict data protection laws, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission, adequacy decisions, or other legal mechanisms recognized by applicable law.

17.4. Third-party service providers who receive personal data are contractually bound to protect such data and comply with applicable data protection laws, regardless of where the data is processed.

18. Your Choices and Control Over Your Data

18.1. You have control over your personal data and can make various choices regarding its collection, use, and disclosure:

Account settings: You can update, correct, or delete certain personal information through your account settings on the Site.
Email preferences: You can manage your email communication preferences, including opting out of marketing emails, while still receiving essential transactional and service-related communications.
Cookie preferences: You can control Cookies through your browser settings, though disabling certain Cookies may affect Site functionality.
Profile visibility: You can control what information is visible to other users through your privacy settings.
Content sharing: You can control whether your uploaded content is publicly visible or restricted to certain users.

18.2. You can request access to, correction of, or deletion of your personal data by contacting us at beatprodcom@gmail.com. We will respond to such requests in accordance with applicable law and this Policy.

18.3. You may also request a copy of your personal data in a portable format (data portability) by contacting us. We will provide your data in a structured, commonly used, and machine-readable format where technically feasible.

19. Third-Party Links and Services

19.1. The Site may contain links to third-party websites, services, or applications that are not operated or controlled by the Owner. This Privacy Policy does not apply to such third-party sites, and we are not responsible for their privacy practices.

19.2. When you click on links to third-party sites or use third-party services integrated with the Site (such as payment processors, social media platforms, or music distribution services), your information may be collected and processed by those third parties in accordance with their own privacy policies.

19.3. We encourage you to review the privacy policies of any third-party sites or services you access through the Site to understand how they collect, use, and protect your information.

19.4. The Owner is not responsible for the privacy practices, data collection, or content of third-party sites, even if they are linked from or integrated with the Site.

20. Updates to This Privacy Policy

20.1. The Owner reserves the right to update, modify, or amend this Privacy Policy at any time to reflect changes in our practices, services, legal requirements, or for other reasons. Material changes will be communicated to users through prominent notices on the Site, email notifications, or other appropriate means.

20.2. Continued use of the Site after changes to this Policy become effective constitutes acceptance of the updated Policy. If you do not agree with the changes, you should discontinue use of the Site and may request deletion of your account and personal data.

20.3. The "Last updated" date at the bottom of this Policy indicates when the most recent changes were made. Users are encouraged to review this Policy periodically to stay informed about how we collect, use, and protect personal data.

20.4. For significant changes that materially affect your rights or how we process your personal data, we will provide at least 30 days' advance notice before the changes take effect, unless a shorter notice period is required by law or necessary to comply with legal obligations.

21. Final Provisions

21.1. All questions regarding the processing of personal data, exercise of your rights, or this Privacy Policy may be directed to beatprodcom@gmail.com. The Owner will respond within 10 business days, or within the timeframes required by applicable law (e.g., 30 days for GDPR requests, 45 days for CCPA requests with possible 45-day extension).
21.2. The Owner reserves the right to amend this Policy. The new version becomes effective upon publication on the Site at https://beatprod.com/privacy-policy/. Material changes will be communicated to users as described in Section 20.
21.3. The current version of the Policy is always available on the Site. Users are encouraged to review it regularly for updates.
21.4. This Policy is effective as of July 3, 2025. If you have questions about how we process your personal data or wish to exercise your rights, please contact us using the information provided above.

Navigation

Account

Settings