Privacy Policy

1. About Us

Unheard.FM is developed and operated by Woolly Bear Software LLC. We are committed to protecting your privacy and ensuring a secure user experience.

2. Information We Collect

When you use Unheard.FM, we may collect the following information:

  • Your Spotify profile information (only if you log in via Spotify).
  • Listening preferences and settings you provide while using the app.
  • Usage metrics and error data, which are stored anonymously using internal user IDs.
  • Your IP address when you visit the website (used for basic request logging).

No personal data is collected unless you are logged in with Spotify.

Note: Some older internal logs created before August 2025 may still include Spotify user IDs. These logs were previously retained indefinitely, but we are currently migrating them to anonymized formats. Once migrated, all personally identifiable information will be removed.

3. Cookies and Tracking Technologies

We use a single HTTP-only session cookie if you log in with Spotify. This cookie contains:

  • Your user ID
  • Your session token

This cookie is used strictly for session management and is not accessible to JavaScript or third parties.

4. How We Use Your Information

We use your data to:

  • Generate personalized playlists based on your preferences.
  • Improve our service by analyzing aggregated and anonymous usage data.
  • Ensure the security and functionality of our platform (e.g. monitoring error logs).

Any logging that includes your Spotify ID is retained for no more than 30 days and is used only for debugging or operational purposes.

5. Data Sharing and Storage

We do not sell or share your data with third parties. All data is securely stored and is used only to provide and improve your experience with Unheard.FM.

Usage metrics and error logs are anonymized using internal IDs and cannot be linked back to your Spotify account once your account is deleted.

6. Your Rights

If you are located in the European Union or European Economic Area, you have the right to:

  • Access the data we hold about you
  • Request correction or deletion of your data
  • Object to or restrict certain types of data processing
  • Request a copy of your data in portable form

You can exercise any of these rights by contacting us at woollybearsoftware@gmail.com. We will respond within 30 days.

7. Changes to This Policy

This policy was last updated on August 6, 2025. We may update this policy from time to time. Any significant changes will be communicated via our website.

8. Contact Us

If you have any questions about this privacy policy, please contact us at woollybearsoftware@gmail.com.

9. Legal Basis for Processing (GDPR)

We process your data under the following legal bases:

  • Consent - when you log in with Spotify or provide settings.
  • Performance of a contract - to generate playlists and deliver the core service.
  • Legitimate interest - to improve our service and monitor platform health.

10. Data Transfers

Our servers are located in the United States. If you are located outside the U.S., your data may be transferred internationally. We take appropriate safeguards to protect your data, including relying on the EU-U.S. Data Privacy Framework and standard contractual clauses where applicable.

11. Data Retention

We retain personal data only as long as necessary to provide our services. Usage data that includes Spotify IDs is retained for no more than 30 days and is being actively migrated to anonymous storage. Anonymous usage metrics may be retained indefinitely for analysis.