Hey there! 👋

We believe in being straightforward about how we use your data. This privacy policy explains what information Analog Rooms, LLC ("we", "us", or "our") collects, how we use it, and the choices you have about your data.

1. What Information We Collect

1.1 Information you give us:

- Your email address (for account access and notifications)

- Your city (you select this)

- The concerts that you save

- Your music preferences

- Your profile picture (if you add one)

- Any other content you create or submit to the Analog Rooms app

1.2 Information we collect automatically (if you agree to Product Analytics tracking):

- Basic device information (like your iOS version - this helps us keep the app working smoothly)

- How you use the app (through PostHog analytics - more on this below)

2. How We Use Your Information

We use your information to:

- Help you discover great shows in your selected city

- Keep track of the concerts you're interested in

- Let you know when your favorite artists are coming to town

- Improve the app based on how you use it

3. Where We Store Your Data

All data is currently stored and processed in the United States and in Europe. We use trusted third-party services to operate Analog Rooms:

- Supabase (US): Stores your account data and concert information

- Supabase Auth: Handles secure email authentication via magic links

- PostHog Cloud EU: Helps us understand how people use the app (with your consent)

- Waitlist: Manages our email waitlist

- Resend: Sends transactional and marketing emails

- Framer: Powers our website and GDPR compliant by default web analytics (aggregated and anonymized views at the country level)

3.1 System Logs and Technical Data

To maintain service quality, we collect and process:

- System logs for troubleshooting

- Error reports

- Basic server performance data

This technical information is automatically deleted after 7 days.

4. Relationship with Terms of Use

This Privacy Policy is part of and incorporated into our Terms of Use. By agreeing to this Privacy Policy, you also agree to be bound by our Terms of Use, which can be found at https://analogrooms.com/terms 

5. Data Protection and Regional Compliance

This privacy policy is governed by the laws of the State of Florida, United States. 

5.1 CCPA Compliance

For California residents, we comply with the California Consumer Privacy Act (CCPA). You have specific rights regarding your personal information, including:

- The right to know what personal information we collect and how we use it

- The right to delete your personal information

- The right to opt-out of the sale of your personal information (though we never sell your data)

- The right to non-discrimination for exercising your CCPA rights

5.2 GDPR and EU Users

While Analog Rooms is currently available only in the United States, we're designing our practices with GDPR compliance in mind. If we expand to the European Union:

- We will establish a separate EU-based database in Frankfurt through Supabase

- No international data transfers will occur

- All data processing will comply with GDPR requirements
- Our in-app analytics are already GDPR compliant by using Posthog Cloud EU

- Our consent philosophy is already opt-in first rather than opt-out 

6. Data Collection Consent

We believe in explicit consent for data collection:

- Analytics tracking through PostHog Cloud EU: You'll be asked to opt-in during signup

- Push notifications: You'll be asked to opt-in during signup, or you'll be prompted to enable when relevant 

- Marketing emails: You'll need to explicitly subscribe during signup

All these settings can be modified in your account preferences at any time

7. Data Retention

We keep different types of data for different periods:

- Account information: Retained while your account is active

- System logs: 7 days

- Analytics data: Using Posthog’s default data retention  

When you delete your account:

- All of your app data is immediately marked for deletion

- Removed from our active systems within 30 days

- Cleared from backups within 60 days

8. Security and Data Breaches

We take protecting your information seriously. So much so that we do not intentionally seek to obtain sensitive information in the first place. In the event of a data breach:

- We will notify all affected users via email within 72 hours of discovery

- The email will include:

  - What information was compromised

  - When the breach occurred

  - Steps we're taking to address it

  - Recommended actions for users

  - Contact information for questions

8.1 Technical Security

We protect your data using:

- Data encryption in transit and at rest

- Access controls for our team

- Regular security updates

8.2 System Maintenance

To keep our service reliable, we occasionally perform maintenance:

- Some features may be temporarily limited

- Your data remains secure

- We'll notify you about significant disruptions

- We minimize impact on your experience

9. Website Privacy

Our website (analogrooms.com):

- Uses Framer's built-in analytics, which is GDPR compliant by default (https://www.framer.com/help/articles/gdpr-and-cookies/)

- Does not use traditional browser cookies

- Does not collect any personal information beyond anonymous usage data

- Does not track users across other websites

The primary data collection and processing described in this policy applies to our iOS app. For our website, we only collect anonymous usage data to help us improve the site experience.

10. In-App Analytics 

We use PostHog to understand how people use Analog Rooms. This helps us:

- Find and fix problems

- See which features people love (and which ones they don't)

- Make the app better for everyone

We only share your information with:

- PostHog (for analytics)

- Law enforcement, if required by law (we'll let you know if this happens, unless we're legally prevented from doing so)

We don't:

- Track you across other apps or websites
- Track your IP address nor your location

- Share your data with data brokers

- Use your data for targeted advertising

- Sell your personal information to advertisers or other third parties

11. Marketing and Aggregated Data

We may use aggregated, anonymized data for marketing purposes. This means we might say things like "80% of our users love indie rock" or "Users in Seattle save twice as many shows as the average." We never share individual user data for marketing - only broad, anonymous trends.

12. Account Security

We keep things simple and secure:

- We use email magic links for authentication (no passwords to worry about!)

- Each login link can only be used once

- Login links expire after 1 hour

13. Your Choices

You can:

- Update your profile information anytime

- Change your selected city whenever you move

- Choose what notifications you want to receive

- Delete your account and data

- Opt in and out of analytics collection, marketing emails, and push notifications

14. Your Privacy Rights

We extend these privacy rights to all our users, regardless of location:

14.1 Access and Portability

You can email us at hello@analogrooms.com to request a copy of your personal data in a portable format

14.2 Deletion

You can delete your account and associated data as described in our Data Retention section

14.3 Transparency

We list all the ways we use your data in this policy

14.4 No Data Sales

We never sell your personal information to third parties

14.5 Non-Discrimination

We will never discriminate against you for exercising any of these rights

To exercise any of these rights, contact us at hello@analogrooms.com. We'll respond to your request within 30 days.

15. Changes to This Privacy Policy

When we make important changes to this policy, we'll let you know by email or when you next open the app.

16. Contact Us

Have questions about your privacy? Email us at hello@analogrooms.com

Thanks for trusting us with your data! 🎸