Privacy Policy

Effective as of January 1, 2026

1. Introduction

At AnonyxGhost ("we," "us," "our," or the "Company"), we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our mobile application, or utilize our distribution and CDN services (collectively, the "Services").

Please read this Privacy Policy carefully. By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by all terms of this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

We are committed to protecting your privacy and handling your data in an open and transparent manner. This Privacy Policy complies with applicable data protection laws, including the General Data Protection Regulation (GDPR) for users in the European Economic Area (EEA) and the United Kingdom, and the California Consumer Privacy Act (CCPA) for residents of California.

2. Information We Collect

We collect several types of information from and about users of our Services, including:

2.1 Personal Data

Personally identifiable information that you voluntarily provide to us when you register for an account, create or distribute content, or contact us for support. This may include:

  • Account Information: Name, email address, username, password, and profile information;
  • Payment Information: Billing address, payment method details (processed securely through our third-party payment processors, we do not store full payment card details);
  • Identity Verification Information: Government-issued ID, date of birth, or other verification documents (processed through our verification partners);
  • Artist/Label Information: Artist names, stage names, biography, website URLs, social media handles, and associated metadata;
  • Communication Data: Information you provide when contacting our support team, including correspondence and feedback.

2.2 Content Data

When you use our distribution services or CDN, we collect and store:

  • Audio Files: Sound recordings, masters, and related audio content you upload for distribution;
  • Metadata: Track titles, artist names, composer credits, lyricist credits, producer credits, ISRC codes, UPC codes, release dates, genres, and other descriptive information;
  • Visual Assets: Cover art, promotional images, logos, and other visual content;
  • Documentation: Liner notes, credits, and accompanying textual content.

2.3 Usage Data

Automatically collected information when you access and use our Services:

  • Log Data: IP address, browser type, operating system, referring URLs, pages viewed, and access times;
  • Device Information: Device type, device identifiers, and mobile network information;
  • Analytics Data: Usage patterns, feature interactions, and performance metrics;
  • Cookies and Tracking Technologies: Information collected via cookies, web beacons, and similar technologies (see Section 8 for more details).

2.4 Royalty and Payment Data

To process royalty payments, we collect and maintain:

  • Royalty Earnings: Statements, payment amounts, and withdrawal history;
  • Payment Destination Information: Bank account details or payment service provider information (processed through our payment partners);
  • Tax Information: Tax identification numbers or withholding tax documentation where required by law.

3. How We Collect Information

We collect information through the following methods:

  • Direct Interactions: When you register, fill out forms, upload content, or communicate with us;
  • Automated Technologies: As you navigate through our Services, we may use cookies, server logs, and similar technologies to collect usage data;
  • Third Parties: We may receive information from payment processors, verification services, analytics providers, and DSP partners;
  • Public Sources: Information you make publicly available on social media or other platforms that you connect to our Services.

4. How We Use Your Information

We use the information we collect for various purposes, including to:

4.1 Provide and Maintain Our Services

  • Create and manage your account;
  • Process, store, and distribute your content to DSPs;
  • Facilitate royalty collection, calculation, and payment;
  • Enable you to manage your releases, artists, and catalog;
  • Provide customer support and respond to inquiries.

4.2 Improve and Develop Our Services

  • Analyze usage patterns to enhance user experience;
  • Develop new features and functionality;
  • Troubleshoot technical issues and improve performance;
  • Conduct research and analytics.

4.3 Communicate With You

  • Send administrative information, such as updates to our terms or policies;
  • Provide royalty statements and payment notifications;
  • Respond to your comments, questions, and requests;
  • Send marketing communications (with your consent where required by law);
  • Notify you about new features, releases, or promotional offers.

4.4 Legal and Compliance Purposes

  • Verify your identity to prevent fraud;
  • Detect and prevent fraudulent streaming, purchasing, or other abuse;
  • Comply with legal obligations, tax reporting, and regulatory requirements;
  • Enforce our Terms of Service and Distribution Agreement;
  • Protect the rights, property, and safety of AnonyxGhost, our users, and others.

4.5 With Your Consent

We may use your information for any other purpose disclosed to you at the time you provide the information or with your consent.

5. Legal Basis for Processing (EEA and UK Users)

If you are located in the European Economic Area (EEA) or the United Kingdom, our legal basis for collecting and using your personal information depends on the specific context in which we collect it. We typically process your information where:

  • Performance of a Contract: The processing is necessary to fulfill our contractual obligations to you under our Terms of Service and Distribution Agreement (e.g., distributing your music, processing royalties);
  • Legitimate Interests: The processing is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests (e.g., improving our services, fraud prevention, security);
  • Legal Compliance: The processing is necessary to comply with a legal obligation (e.g., tax reporting, anti-money laundering regulations);
  • Consent: You have given your consent for a specific purpose (e.g., receiving marketing communications).

You have the right to withdraw consent at any time where we rely on consent to process your information.

6. How We Share Your Information

We may share your information in the following circumstances:

6.1 Digital Service Providers (DSPs)

To distribute your music, we must share your content and associated metadata with streaming platforms, download stores, and other DSPs (e.g., Spotify, Apple Music, Amazon Music, Tidal, etc.). These partners will process your information according to their own privacy policies and terms.

6.2 Service Providers and Business Partners

We engage trusted third-party companies to perform services on our behalf, including:

  • Payment Processors: Stripe, Wise, and other payment partners to process subscriptions and royalty payments (we do not store full payment card details);
  • Identity Verification Services: To verify your identity and prevent fraud;
  • Cloud Storage and Hosting Providers: To store your content and operate our Services;
  • Analytics Providers: To help us understand how users interact with our Services;
  • Customer Support Tools: To manage support tickets and communications.

These service providers are contractually obligated to protect your information and may only use it to perform services for us.

6.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency). We may also disclose your information to:

  • Enforce our agreements and policies;
  • Protect the security and integrity of our Services;
  • Respond to claims that your content violates the rights of third parties;
  • Protect our rights, property, or safety, or the rights, property, or safety of others.

6.4 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of all or substantially all of our assets, your information may be transferred to the acquiring entity. We will notify you via email and/or a prominent notice on our website of any such change in ownership.

6.5 With Your Consent

We may share your information for any other purpose disclosed to you at the time we collect the information or with your consent.

6.6 Aggregated or De-identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you for research, marketing, analytics, or other purposes.

7. International Data Transfers

AnonyxGhost operates globally, and your information may be transferred to, stored, and processed in countries outside your country of residence, including the United States, Kenya, and Germany, where our servers, service providers, and DSP partners are located.

These countries may have data protection laws that are different from (and potentially less protective than) the laws of your country. By using our Services, you acknowledge and consent to the transfer of your information to these countries.

For EEA and UK Users: When we transfer your personal data internationally, we implement appropriate safeguards to ensure your information receives an adequate level of protection, including:

  • Transferring to countries that the European Commission has deemed to provide adequate protection;
  • Using Standard Contractual Clauses approved by the European Commission with our service providers;
  • Implementing additional safeguards where necessary.

You may request a copy of the safeguards we use for international transfers by contacting us as set forth in Section 16.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your use of our Services. Cookies are small data files that are placed on your device when you visit a website.

8.1 Types of Cookies We Use

  • Essential Cookies: Necessary for the operation of our Services (e.g., authentication, security). These cannot be disabled.
  • Functional Cookies: Enhance functionality and personalization (e.g., remembering your preferences).
  • Analytics Cookies: Help us understand how visitors interact with our Services (e.g., Google Analytics).
  • Marketing Cookies: Used to deliver relevant advertisements and track marketing campaign effectiveness.

8.2 Your Cookie Choices

Most web browsers are set to accept cookies by default. You can usually adjust your browser settings to remove or reject cookies. However, please note that disabling essential cookies may affect the functionality and availability of our Services.

For more information about cookies and how to manage them, visit www.aboutcookies.org.

9. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

9.1 Account Information

We retain your account information for as long as your account is active. If you terminate your account, we will delete or anonymize your information within a reasonable timeframe, except where we need to retain it for:

  • Legal compliance (e.g., tax records, reporting requirements);
  • Resolution of disputes;
  • Enforcement of our agreements;
  • Legitimate business purposes (e.g., fraud prevention).

9.2 Content

Your uploaded content will be retained for as long as your account is active and releases remain distributed. Upon termination, we will remove your content from active distribution, but may retain backup copies for a reasonable period as required for operational purposes.

9.3 Royalty Records

We retain royalty statements and payment records for as long as required by tax and accounting laws (typically 6-7 years).

10. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, accidental loss, alteration, disclosure, or destruction. These measures include:

  • Encryption: All files are encrypted at rest using AES-256 encryption. Data in transit is protected using TLS/SSL protocols;
  • Access Controls: Strict access controls and authentication requirements for personnel accessing user data;
  • Regular Security Assessments: We regularly review our security practices and conduct vulnerability assessments;
  • Secure Data Centers: Our infrastructure is hosted with reputable cloud providers that maintain industry-standard physical and logical security controls.

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we are committed to promptly addressing any security breaches that may affect your information.

11. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information. We respect your privacy and provide you with reasonable access and control over your data.

11.1 Your Rights Under GDPR (EEA and UK Users)

If you are located in the European Economic Area or the United Kingdom, you have the following rights:

  • Right of Access: Request a copy of the personal information we hold about you;
  • Right to Rectification: Request correction of inaccurate or incomplete information;
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your personal information under certain circumstances;
  • Right to Restriction of Processing: Request that we limit processing of your information;
  • Right to Data Portability: Request transfer of your information to another service provider in a structured, commonly used format;
  • Right to Object: Object to processing based on legitimate interests or for direct marketing purposes;
  • Right to Withdraw Consent: Withdraw consent at any time where we rely on consent to process your information.

11.2 Your Rights Under CCPA (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you;
  • Right to Delete: Request deletion of personal information we have collected about you, subject to certain exceptions;
  • Right to Opt-Out: Opt-out of the sale of your personal information (we do not sell your personal information);
  • Right to Non-Discrimination: Exercise your privacy rights without fear of discrimination.

11.3 How to Exercise Your Rights

To exercise any of these rights, please contact us using the information in Section 16. We will respond to your request within the timeframe required by applicable law (typically 30 days). We may need to verify your identity before processing your request.

11.4 Account Settings

You can access, update, and correct many aspects of your account information directly through your account dashboard. This includes:

  • Updating profile information and contact details;
  • Changing your password;
  • Managing notification preferences;
  • Downloading certain account data;
  • Closing your account (through support request).

12. Children's Privacy

Our Services are not intended for individuals under the age of 16 (or the age of majority in their jurisdiction). We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child without verification of parental consent, we will take steps to delete that information.

13. Third-Party Links and Services

Our Services may contain links to third-party websites, platforms, or services that are not operated by us (e.g., DSPs, payment processors, social media platforms). This Privacy Policy applies solely to information collected by AnonyxGhost. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites or services you access.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. We will notify you of any material changes by:

  • Sending an email notification to the address associated with your account (for material changes);
  • Providing a notice through our Services.

We encourage you to review this Privacy Policy periodically. Your continued use of our Services after any changes become effective constitutes your acceptance of the updated Privacy Policy.

15. Do Not Track Signals

Some browsers transmit "Do Not Track" (DNT) signals to websites. Currently, our Services do not respond to DNT signals because no uniform standard for responding to such signals has been adopted. We will continue to monitor industry developments and may adjust this practice if a standard is established.

16. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:

AnonyxGhost
Email: legal@anonyxghost.com