Privacy Policy

1. Information We Collect

1.1 Information You Provide Directly

We collect information you voluntarily provide when you create an account, subscribe to a plan, use our services, or communicate with us. This includes:

• Account information: name, email address, password, and billing address.
• Payment information: credit card number, expiration date, and billing details. Payment processing is handled by our third-party payment processor; we do not store full credit card numbers on our servers.
• Content identifiers: usernames, stage names, performer names, profile URLs, and content URLs you provide for monitoring and protection.
• Verification materials: identity documents or proof of content ownership you may submit to verify your copyright claims.
• Communications: messages, feedback, and support requests you send to us via email, contact forms, or live chat.

1.2 Information Collected Automatically

When you access or use our Service, we automatically collect certain information, including:

• Device information: IP address, browser type and version, operating system, device type, and unique device identifiers.
• Usage data: pages visited, time spent on pages, click patterns, referring URLs, and navigation paths.
• Log data: server logs, access times, error logs, and diagnostic data.
• Location data: approximate geographic location inferred from your IP address.

2. How We Use Your Information

We use the information we collect for the following purposes:

• Service delivery: to provide, operate, and maintain our content protection services, including scanning for unauthorized content, filing DMCA takedown notices, and processing search engine delisting requests on your behalf.
• Account management: to create and manage your account, process payments, and manage your subscription.
• Communication: to send you service-related notifications, including takedown status updates, scan results, billing confirmations, and customer support responses.
• Marketing: to send promotional communications about new features, services, or offers, with your consent. You can opt out at any time.
• Improvement: to analyze usage patterns, diagnose technical issues, and improve our Service, algorithms, and user experience.
• Security: to detect, prevent, and respond to fraud, abuse, security incidents, and technical issues.
• Legal compliance: to comply with applicable laws, regulations, legal processes, or enforceable governmental requests.

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, we process your personal data on the following legal bases:

• Contract performance: processing necessary to fulfill our contractual obligations to you, such as providing the Service and managing your account.
• Legitimate interests: processing necessary for our legitimate interests, such as improving the Service, preventing fraud, and ensuring network security, where those interests are not overridden by your rights.
• Consent: processing based on your explicit consent, such as sending marketing communications. You may withdraw consent at any time.
• Legal obligation: processing necessary to comply with a legal obligation to which we are subject.

4. Information Sharing & Disclosure

We do not sell, rent, or trade your personal information. We may share your information in the following circumstances:

• Service providers: we share information with trusted third-party vendors who assist us with payment processing, email delivery, cloud hosting, analytics, and customer support. These providers are contractually obligated to use your information only to perform services on our behalf.
• DMCA takedown process: when filing takedown notices, we use our company information as the authorized agent - your personal identity is not disclosed to hosting providers, website operators, or other third parties. See Section 5 for details.
• Legal requirements: we may disclose your information if required to do so by law, court order, subpoena, or other legal process, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
• Business transfers: in the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of the transaction. We will notify you of any such change in ownership or control of your personal data.
• With your consent: we may share information for any other purpose with your explicit consent.

5. Your Privacy in Takedowns

Protecting your identity is central to what we do. When we file DMCA takedown notices on your behalf:

• We act as your authorized representative and use our company name, address, and contact information on all notices.
• Your real name, email address, and personal details are never revealed to hosting providers, website operators, or alleged infringers.
• Takedown correspondence is handled through our systems, shielding your identity throughout the entire process.

In rare cases where legal proceedings require disclosure of the copyright owner’s identity (for example, in response to a counter-notification or court order), we will notify you before any disclosure and work with you to explore available options.

6. Cookies & Tracking Technologies

We use cookies and similar tracking technologies to collect and store information when you use our Service. The types of cookies we use include:

• Essential cookies: required for the Service to function properly. These handle authentication, session management, and security. They cannot be disabled.
• Functional cookies: remember your preferences and settings (such as language or region) to enhance your experience.
• Analytics cookies: help us understand how visitors interact with our website so we can improve performance and usability. We may use third-party analytics providers such as Google Analytics.
• Marketing cookies: used to deliver relevant advertisements and track the effectiveness of our marketing campaigns. These are only set with your consent.

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect the functionality of the Service.

7. Third-Party Services

Our Service may contain links to third-party websites, services, or integrations that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access through our Service.

Third-party services we may integrate with include payment processors, analytics providers, email delivery services, and cloud infrastructure providers. Each of these providers has their own privacy policy governing how they handle your data.

8. Data Retention

We retain your personal information for as long as your account is active or as needed to provide our services to you. Specifically:

• Account data: retained for the duration of your account and for up to 30 days after account deletion to allow for reactivation.
• Takedown records: retained for a minimum of 3 years after creation to comply with legal requirements and to support any ongoing or future copyright enforcement actions.
• Billing records: retained for up to 7 years as required by tax and financial regulations.
• Server logs: retained for up to 90 days for security and diagnostic purposes.
• Marketing data: retained until you withdraw consent or unsubscribe.

You can request deletion of your account and associated personal data at any time by contacting us. We will process your request within 30 days, subject to any legal retention obligations.

9. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

• Encryption of data in transit (TLS/SSL) and at rest (AES-256).
• Access controls and role-based permissions limiting who can access your data.
• Regular security audits and vulnerability assessments.
• Secure development practices and code review processes.
• Incident response procedures for promptly addressing any data breaches.

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security, but we are committed to taking all reasonable steps to safeguard your data.

10. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Right of access: request a copy of the personal data we hold about you.
• Right to rectification: request correction of inaccurate or incomplete personal data.
• Right to erasure: request deletion of your personal data, subject to legal retention obligations.
• Right to restriction: request that we restrict the processing of your personal data under certain circumstances.
• Right to data portability: receive your personal data in a structured, commonly used, machine-readable format.
• Right to object: object to the processing of your personal data for direct marketing or based on legitimate interests.
• Right to withdraw consent: where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at support@dmca.me. We will respond to your request within 30 days. If you are in the EEA, you also have the right to lodge a complaint with your local data protection authority.

11. California Privacy Rights (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) provide you with additional rights regarding your personal information:

• Right to know: you have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources, the business purpose for collecting it, and the categories of third parties with whom we share it.
• Right to delete: you have the right to request deletion of your personal information, subject to certain exceptions.
• Right to opt out of sale: we do not sell your personal information. If this practice changes, we will provide you with the ability to opt out.
• Right to non-discrimination: we will not discriminate against you for exercising any of your CCPA rights.

To make a CCPA request, please contact us at support@dmca.me. We may need to verify your identity before processing your request.

12. International Data Transfers

Your information may be transferred to and processed in countries other than the country in which you reside. These countries may have data protection laws that differ from the laws of your country. When we transfer data internationally, we implement appropriate safeguards - including Standard Contractual Clauses (SCCs) approved by the European Commission - to ensure your personal data receives an adequate level of protection regardless of where it is processed.

13. Children’s Privacy

Our Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected personal data from a child under 18, we will take steps to delete such information promptly. If you believe a child has provided us with personal information, please contact us at support@dmca.me.

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will notify you by email (sent to the email address associated with your account) and/or by posting a prominent notice on our website at least 30 days prior to the changes taking effect. Your continued use of the Service after the effective date of a revised policy constitutes your acceptance of the updated terms.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: