Privacy Policy

Introduction

StudioKit ("we," "us," or "our") is committed to protecting the privacy of our users. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our music teaching management platform.

We take special precautions for student data and comply with GDPR, CCPA, COPPA, and applicable education privacy laws.

Information We Collect

Account Information

When you create an account, we collect your name and email address, along with an encrypted password. You may also provide optional information such as profile details, teaching credentials, and a profile photo to enhance your experience.

Student and Parent Information

For educational purposes, we collect names and contact information of students and parents, along with relevant details such as student age and skill level. We maintain records of lesson history, progress tracking, and practice records. Parents can set their communication preferences to manage how they receive updates and notifications.

Usage Data

To improve our service, we collect technical information including device and browser details, IP address, and general location data. We also analyze usage patterns and feature interactions to enhance the platform's functionality and user experience.

Payment Information

All payment processing is handled securely through our partners, Paddle and Stripe. We never store credit card details directly. We maintain transaction history and billing addresses as required for accounting and legal purposes.

How We Use Your Information

Essential Services

Your information enables us to provide and maintain the StudioKit platform, process and manage lesson schedules, and facilitate communication between teachers, students, and parents. We use this data to track student progress, manage practice records, and handle subscription payments.

Platform Improvement

We analyze usage patterns to enhance our features and debug technical issues. This analysis helps us customize the user experience and develop new features that better serve our community's needs.

Communication

We use your contact information to send important service updates, announcements, and technical support responses. With your consent, we may send marketing communications. We also provide security and privacy notifications when necessary.

Data Storage and Security

Storage Infrastructure

Your data is stored securely on Supabase infrastructure, protected by regular security audits and updates. We use industry-standard encryption for both data transmission (SSL/TLS) and storage (AES-256) to ensure your information remains secure.

Security Measures

We maintain comprehensive security through access control, authentication, and regular security assessments. Our team undergoes security training, and we have incident response procedures in place. We employ continuous monitoring to protect against potential threats.

Your Privacy Rights

All Users Have the Right to

Every user has the right to access their personal data, correct any inaccurate information, and request data deletion. You can export your data, restrict its processing, withdraw consent, and object to data processing at any time.

Additional Rights by Region

European users under GDPR have additional rights including data portability, processing limitations, automated decision-making opt-out, and the right to lodge complaints with supervisory authorities.

California residents under CCPA are entitled to detailed personal information disclosure, specific deletion requests, non-discrimination rights, and the ability to designate an authorized agent to make requests on their behalf.

Exercising Your Rights

To exercise these rights, contact us at matt@studiosapiens.io. We will respond to all requests within 30 days.

Children's Privacy

COPPA Compliance

In accordance with COPPA regulations, we do not knowingly collect data from children under 13 years of age. Parent or guardian consent is required for all student accounts, and parents maintain the right to review and request deletion of their child's data. We implement restricted features for student accounts to ensure their privacy and safety.

Student Data Protection

We maintain strict controls over student data, limiting collection to essential information only. We prohibit marketing to students and do not share their data with third parties. Student accounts have enhanced privacy controls, and we conduct regular data minimization reviews to ensure we only retain necessary information.