This Privacy Policy explains how DireNote Media ("we," "us," or "our") collects, uses, stores, and protects your personal information when you access our website, mobile application, artist dashboard, or use any of our music distribution and 360° artist services. By using DireNote Media's services, you agree to the terms outlined in this Privacy Policy.

1. INFORMATION WE COLLECT

1.1 Personal Information
• Full name and artist/stage name
• Email address and phone number
• Residential address, city, state, and country
• Date of birth and government-issued identification (for verification)
• Bank account details, UPI information, and tax identification numbers
• Social media profiles and streaming platform links

1.2 Content and Metadata
• Audio files, music tracks, and master recordings
• Album artwork, cover images, and promotional materials
• Song titles, album names, ISRC codes, and UPC/EAN codes
• Artist credits, featuring artists, producers, and songwriters
• Lyrics, genre classifications, and release dates
• Copyright ownership documentation and publishing information

1.3 Financial and Royalty Data
• Payment history and transaction records
• Royalty earnings from digital service providers (DSPs)
• Withdrawal requests and payment method preferences
• Subscription plan details and billing information
• Invoices, receipts, and financial statements

1.4 Technical Information
• IP address, device identifiers, and browser type
• Operating system, screen resolution, and device model
• Cookies, session tokens, and authentication credentials
• Access logs, timestamps, and geolocation data
• Page views, click patterns, and navigation paths
• Error reports, crash logs, and performance metrics

1.5 Communications
• Support tickets, email correspondence, and chat messages
• Feedback, reviews, and survey responses
• Copyright claims, takedown requests, and dispute information

2. HOW WE USE YOUR INFORMATION

2.1 Music Distribution Services
• Delivering your music to 100+ streaming platforms including Spotify, Apple Music, Amazon Music, YouTube Music, Tidal, Deezer, JioSaavn, and others
• Generating and registering ISRC codes and UPC/EAN identifiers
• Submitting releases for editorial playlist consideration and promotion
• Managing pre-save campaigns and release scheduling
• Monitoring release status and addressing delivery issues

2.2 Rights Management and Monetization
• Registering your music with performing rights organizations (IPRS, PPL, SoundExchange)
• Submitting tracks to YouTube Content ID for copyright protection
• Filing copyright claims on unauthorized uses of your content
• Processing takedown requests and counter-notifications
• Managing white-label partnerships and licensing agreements

2.3 Royalty Processing
• Collecting royalty statements from DSPs and aggregating earnings data
• Calculating your share based on distribution agreements
• Processing payment requests and disbursing funds to your account
• Generating detailed royalty reports and analytics dashboards
• Reconciling financial records and resolving payment discrepancies

2.4 Platform Operations
• Creating and maintaining your artist dashboard account
• Authenticating users and managing secure login sessions
• Providing customer support and technical assistance
• Sending transactional emails about releases, payments, and account activity
• Notifying you of copyright strikes, claims, and important platform updates

2.5 Analytics and Improvement
• Analyzing usage patterns to enhance user experience and platform performance
• Identifying and fixing bugs, errors, and technical issues
• Conducting A/B testing for new features and improvements
• Understanding artist preferences and industry trends
• Optimizing platform speed, reliability, and mobile responsiveness

2.6 Security and Compliance
• Preventing fraud, unauthorized access, and account takeovers
• Detecting and blocking suspicious activity, abuse, or policy violations
• Enforcing our Terms of Service and community guidelines
• Complying with legal obligations and responding to lawful requests
• Maintaining audit trails for regulatory and compliance purposes

3. THIRD-PARTY DATA SHARING

We share your information with trusted third parties only when necessary to provide our services:

3.1 Digital Service Providers (DSPs)
We transmit your music, metadata, and artist information to streaming platforms including Spotify, Apple Music, YouTube, Amazon Music, and 100+ other DSPs for distribution purposes. Each DSP has its own privacy policy governing data handling.

3.2 Payment Processors
Financial institutions and payment gateways process transactions and handle fund transfers. We share only the minimum information required to complete payments securely.

3.3 Cloud Infrastructure and Storage Providers
We use Google Drive, Backblaze B2, Microsoft OneDrive, and Hostinger for secure file storage, backup, and content delivery. These providers maintain industry-standard encryption and security measures.

3.4 Analytics and Performance Tools
We employ analytics services to understand user behavior, monitor platform performance, and improve our services. These tools may collect aggregate, anonymized data about usage patterns.

3.5 Communication and Email Services
We use Brevo and other email delivery platforms to send transactional messages, notifications, support communications, and important account updates.

3.6 Rights Management Organizations
We share necessary information with IPRS, PPL, SoundExchange, and other collecting societies to register your works and facilitate royalty collection and distribution.

3.7 Legal and Regulatory Authorities
We may disclose information when required by law, court order, subpoena, or government request, or to protect our rights, prevent fraud, and ensure platform security.

Important: We never sell your personal data to third parties for marketing purposes. All data sharing is governed by strict contractual agreements ensuring your information remains protected and used only for specified purposes.

4. DATA STORAGE, SECURITY & RETENTION

4.1 Infrastructure Security
• Data is stored on encrypted servers with restricted physical and digital access
• We implement SSL/TLS encryption for all data transmission
• Regular security audits and penetration testing are conducted
• Automated backup systems ensure data redundancy and disaster recovery
• Firewalls and intrusion detection systems monitor for security threats 24/7

4.2 Access Controls
• Role-based access ensures staff can only view data necessary for their specific functions
• Multi-factor authentication protects administrative and sensitive accounts
• Access logs track all interactions with user data for audit purposes
• Regular access reviews ensure only authorized personnel have system access

4.3 Data Retention
• Active account data is retained as long as your account remains open
• Royalty and financial records are retained for 7 years to comply with tax regulations
• After account closure, personal data is deleted within 90 days unless legally required to retain
• Backup copies are permanently deleted according to our data retention schedule

5. COOKIES & TRACKING TECHNOLOGIES

We use cookies and similar tracking technologies to improve user experience, platform functionality, and security:

5.1 Essential Cookies
• Session management and user authentication
• Security features and fraud prevention
• Shopping cart and checkout functionality
• Language preferences and regional settings

5.2 Analytics Cookies
• Understanding how users interact with our platform
• Measuring page performance and load times
• Identifying popular features and content
• Tracking conversion rates and user journeys

5.3 Functional Cookies
• Remembering your dashboard preferences and settings
• Personalizing content recommendations
• Enabling social media sharing features
• Providing chat support and customer service

You can control cookie settings through your browser preferences. Note that disabling certain cookies may limit platform functionality.

6. YOUR RIGHTS AND CHOICES

You have the following rights regarding your personal data:

6.1 Access and Portability
• Request a copy of all personal data we hold about you
• Download your data in a structured, machine-readable format
• Receive information about how your data is processed

6.2 Correction and Update
• Update your profile information, contact details, and preferences
• Correct inaccurate or incomplete data in your account
• Modify payment and banking information

6.3 Deletion and Account Closure
• Request deletion of your personal data (subject to legal retention requirements)
• Close your account and remove associated information
• Withdraw consent for optional data processing activities

6.4 Marketing Communications
• Opt out of promotional emails and marketing communications
• Unsubscribe from newsletters and campaign updates
• Continue receiving essential transactional emails (release notifications, payment alerts)

How to Exercise Your Rights:
To exercise any of these rights, please contact us at support@direnotemedia.com with your request. We will respond within 30 days of receiving your verified request.

7. INTERNATIONAL DATA TRANSFERS

DireNote Media operates primarily in India, but our services may involve transferring data to international partners and DSPs. When we transfer personal data internationally, we ensure appropriate safeguards are in place through:
• Standard contractual clauses approved by regulatory authorities
• Adequacy decisions recognizing equivalent data protection standards
• Binding corporate rules and data protection agreements

8. CHILDREN'S PRIVACY

Our services are not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at support@direnotemedia.com and we will delete such information from our systems.

For users between 13 and 18 years of age, we require parental or guardian consent before creating an account and using our services.

9. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. When we make material changes, we will:
• Update the "Last Updated" date at the top of this policy
• Notify you via email or dashboard notification
• Request your consent if required by applicable law
• Provide a summary of significant changes

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your information. Continued use of our services after policy updates constitutes acceptance of the revised terms.

10. DATA BREACH NOTIFICATION

In the unlikely event of a data breach that may compromise your personal information, we will:
• Investigate the incident immediately and take corrective action
• Notify affected users within 72 hours of discovering the breach
• Report the incident to relevant regulatory authorities as required
• Provide guidance on steps you can take to protect yourself
• Implement additional security measures to prevent future incidents

11. CONTACT INFORMATION

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

DireNote Media
Email: support@direnotemedia.com
Website: www.direnotemedia.com

For privacy-related inquiries, please include "Privacy Policy" in your email subject line. We will respond to all legitimate requests within 30 days.

Grievance Officer: For any complaints or concerns related to data protection and privacy, you may contact our designated Grievance Officer at support@direnotemedia.com.