Privacy Policy

Last updated: 26 March 2026

1. Data We Collect

When you use CleanTracks AI, we collect and process the following categories of personal data:

Account Information:

• Email address (required for account creation)
• Display name (your chosen name within the Service)
• Account type and credit balance
• Account creation date

Payment Information:

• Payments are processed by Stripe. We do not store your credit or debit card details. Stripe may store your payment method for recurring subscriptions in accordance with their privacy policy
• We store a Stripe Customer ID to link your account to your billing records

Usage Data:

• Track metadata (title, artist, duration) for your session history
• Credit usage logs (how many credits used and when)
• Processing timestamps

Audio Files:

• Audio files are temporarily uploaded for processing only
• Audio content is not permanently stored, analysed for purposes beyond swear word detection, or shared with any third party

2. How We Use Your Data

We use your personal data for the following purposes:

• Account Management: To create and maintain your account, authenticate your identity, and manage your subscription
• Service Delivery: To process your audio files and deliver clean edits
• Billing: To process payments, manage subscriptions, and provide credit top-ups
• Communication: To send you service-related notices (billing receipts, subscription changes, security alerts)
• Improvement: To analyse aggregated, anonymised usage patterns to improve our Service (we never use your actual audio content for this purpose)

We do not sell your personal data to third parties. We do not use your data for advertising or marketing profiling.

3. Third-Party Services

We use the following third-party services to operate CleanTracks AI:

• Supabase: Authentication and database hosting. Supabase stores your account information and processes authentication requests. Supabase Privacy Policy
• Stripe: Payment processing. Stripe handles all payment transactions and stores payment methods for subscriptions. Stripe Privacy Policy
• EmailOctopus: Email communications for our waitlist and product updates. If you join our waitlist, your email is stored by EmailOctopus. EmailOctopus Privacy Policy
• OpenAI: AI transcription services. Audio is sent to OpenAI's Whisper API for transcription during processing. OpenAI does not retain audio data submitted via their API. OpenAI Privacy Policy

4. Data Retention

• Account Data: Retained for as long as your account is active. If you delete your account, we remove your personal data within 30 days
• Audio Files: Deleted from our servers immediately after processing is complete and your clean edit has been exported. We do not archive audio content
• Usage Logs: Retained for 12 months for billing and support purposes, then anonymised or deleted
• Payment Records: Retained as required by applicable tax and financial regulations (typically 6 years in the UK)

5. Your Rights

Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, you have the following rights:

• Right of Access: You can request a copy of all personal data we hold about you
• Right to Rectification: You can ask us to correct any inaccurate personal data
• Right to Erasure: You can request that we delete your account and associated personal data
• Right to Data Portability: You can request your data in a structured, machine-readable format
• Right to Restrict Processing: You can ask us to restrict how we process your data in certain circumstances
• Right to Object: You can object to processing based on our legitimate interests

To exercise any of these rights, please email us at [email protected]. We will respond within 30 days.

6. Cookies and Local Storage

CleanTracks AI uses minimal browser storage:

• Session Tokens: Stored in your browser's localStorage to keep you signed in. These are authentication tokens only and do not track your activity
• No Third-Party Cookies: We do not use advertising cookies, analytics cookies, or any third-party tracking cookies on our website

7. Data Security

We take reasonable technical and organisational measures to protect your personal data, including:

• Encrypted data transmission (HTTPS/TLS) for all communications
• Passwords are hashed and never stored in plain text
• Access controls limiting who can access your data within our organisation
• Regular security reviews of our infrastructure and code

8. Children's Privacy

CleanTracks AI is not intended for use by individuals under 18 years of age. We do not knowingly collect personal data from children. If we learn that we have collected data from a child under 18, we will delete that data promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date and, where appropriate, by email. We encourage you to review this page periodically.

10. Contact

If you have questions about this Privacy Policy or how we handle your data, please contact us:

Email: [email protected]