Chordy - Privacy Policy

🔒 Introduction

Welcome to Chordy ("we," "us," "our," or "Company"). Chordy is committed to protecting your privacy and ensuring you have a positive experience on our Discord bot platform.

This Privacy Policy explains our data practices regarding information we collect, use, and share when you:

Use the Chordy Discord bot
Visit our website (chordy-kappa.vercel.app)
Interact with our services or support channels
Communicate with our team

📌 Important: This policy applies to Chordy services only. Discord's privacy policy is separate and governs Discord's platform. Please review Discord's privacy practices at discord.com/privacy.

📊 Information We Collect

A. Automatically Collected Information

When you use Chordy, we automatically collect certain information:

Data Type	Description	Purpose
Discord User ID	Your unique Discord identifier (numeric ID)	Identifying you and your preferences
Server ID	The Discord server where you use Chordy	Providing server-specific functionality
Command Usage	Which commands you execute and timestamps	Service improvement and analytics
Search Queries	Artist names, track names, genres searched	Personalizing recommendations
Preferences	Your music preferences and listening history	Customizing your experience

B. Information You Provide

Profile Information: When you opt-in to share music stats, you voluntarily provide preferences
Support Communications: Messages sent to our support team via Discord or email
Feedback: Bug reports, feature requests, and general feedback
Settings: Custom command prefixes and server configurations

C. Third-Party Data

We receive music metadata from integrated services including Spotify, Billboard, and Last.fm APIs. This data includes artist information, track details, and chart data - not personal user information from these services.

🎯 How We Use Your Information

We use the collected information for legitimate purposes:

Primary Uses

Service Delivery: Operating Chordy and providing music information features
Personalization: Customizing search results and recommendations based on your preferences
Improvement: Analyzing usage patterns to enhance features and fix issues
Communication: Responding to support requests and sending important updates
Analytics: Understanding user demographics and popular features (aggregated only)
Safety: Detecting and preventing abuse, fraud, and security issues

Secondary Uses

Service Improvements: A/B testing new features with opt-in user groups
Research: Conducting music discovery trend analysis (anonymized data)
Marketing: With explicit consent, we may share updates about new features
Legal Compliance: Meeting obligations under applicable laws

                    ✅ What We Don't Do: We never sell your personal data, use your data for targeted advertising, or share your music preferences with third parties without consent.
                

🔄 Data Sharing

Who We Share Data With

Your information may be shared with:

Service Providers: Cloud hosting providers (Vercel), API services, and database providers who process data on our behalf under strict confidentiality agreements
Music APIs: Spotify, Billboard, Last.fm - we share search queries to fetch music data, but they don't receive your personal Discord ID
Law Enforcement: Only when legally required or to protect safety and rights
Aggregated Analytics: Third-party analytics services receive only anonymized, aggregated data

Third-Party Services We Use

Service	Purpose	Data Shared
Spotify API	Music information	Search queries (artist, track names)
Billboard API	Chart data	Request metadata
Vercel	hosting	All user data (encrypted)
Supabase	Data Collection	All user data (encrypted)
Discord API	Bot operations	User and server IDs

Data You Choose to Share

If you use the !compare command or enable public music stats, your music preferences are visible to other Discord users in your server. You control what information is public through privacy settings.

⏰ Data Retention

How Long We Keep Your Data

Data Type	Retention Period	Reason for Retention
User Preferences	Until account deletion	Service personalization
Command History	90 days	Analytics and improvement
Search Queries	30 days	Performance optimization
Error Logs	7 days	Technical support
Support Conversations	1 year	Reference and disputes

Deletion Requests

You can request deletion of your data at any time. Upon deletion request, we will:

Remove all personal data associated with your Discord account
Delete your music preferences and history
Anonymize any analytics data
Remove you from our systems within 30 days

Note: Some data may be retained for legal or security purposes, but will be anonymized.

👤 Your Rights

Data Subject Rights (GDPR & CCPA Compliant)

Depending on your location, you have the following rights:

Right to Access: You can request a copy of all personal data we hold about you
Right to Correction: You can request correction of inaccurate data
Right to Deletion: You can request deletion of your data ("right to be forgotten")
Right to Portability: You can request your data in a standard, portable format
Right to Withdraw Consent: You can withdraw consent for data processing anytime
Right to Restrict Processing: You can limit how we use your data
Right to Object: You can object to certain types of processing

How to Exercise Your Rights

To exercise any of these rights, contact us at privacy@Chordy.com with:

Your Discord user ID
A clear description of what you're requesting
Proof of identity (if required)

We will respond to all requests within 30 days of receipt.

🛡️ Data Security

Security Measures We Implement

Encryption: All data transmitted uses HTTPS/TLS encryption
Database Security: Data at rest is encrypted using AES-256
Access Control: Only authorized personnel can access user data
Firewalls: Multi-layer network protection and DDoS mitigation
Authentication: Strong authentication for admin access
Regular Audits: Security audits and penetration testing
Monitoring: 24/7 security monitoring for threats

                    ⚠️ Important: No security system is 100% secure. While we implement industry-standard protections, 
                    we cannot guarantee absolute security. Please report any security concerns to our Discord server immediately.
                

Your Responsibilities

Keep your Discord account credentials secure
Use a strong, unique password for your Discord account
Enable two-factor authentication on your Discord account
Never share your Discord user ID or tokens with others

👶 Children's Privacy

Chordy is not intended for children under 13 years old. We comply with COPPA (Children's Online Privacy Protection Act) and similar regulations worldwide.

Our Policy on Children's Data

We do not knowingly collect personal data from children under 13
If we discover a user is under 13, we delete their data immediately
We do not market to children
Discord's age restrictions (minimum 13 years) apply when using Chordy

If you believe a child under 13 has provided us with personal information, please contact us immediately at our Discord server.

📝 Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

Update the "Last Updated" date at the top of this page
Post the updated policy on our website
Notify users of significant changes via email or in-bot announcements
Request consent if required by law

Your continued use of Chordy following notification of changes constitutes acceptance of the updated Privacy Policy.

📧 Contact Us

If you have questions about this Privacy Policy, concerns about our data practices, or want to exercise your data rights, please contact us:

Privacy Team

Discord: Join our support server
Response Time: 30 days maximum

Additional Information

Data Protection Officer (DPO): If you're in the EU, you have the right to contact our Data Protection Officer regarding your data rights.

Regulatory Authorities: You have the right to file a complaint with your local data protection authority if you believe we have violated your rights.

📌 Privacy at a Glance

✅ We collect minimal necessary data
✅ We don't sell your data
✅ We encrypt your information
✅ You control your privacy settings
✅ You can delete your data anytime
✅ We're GDPR and CCPA compliant
✅ We're transparent about our practices
✅ We respond to data requests within 30 days

Privacy Policy

📋 Table of Contents