We are Collabhouse B.V. based at Koninginneweg 9, 1217 KP Hilversum, The Netherlands.
Collabhouse is a music licensing and promotion platform empowering Music Makers and Content Creators to make more of music. The place where Music Makers expose and monetize and Content Creator find and license music in a heartbeat.
You can contact us at firstname.lastname@example.org if you have questions about data protection, or if you have any requests for resolving issues with your personal data.
The ways we collect personal data about you when you register for our service, and why we do so
How we use your personal data, and
The choices you have about your personal data.
As a controller, we are committed to a lawful, fair and transparent processing of personal data, adhering to the EU General Data Protection Regulation (GDPR).
We process the following (categories of) personal data
Contact details: name and email. We collect the given names (first name, family name), user name and email address of users when they make an account, and of contacts when they express interest in our services, send us an email, or sign up for our newsletterAccount data: contact information and payment details. When you create an account, we also collect your address, crypto wallet address, payment and billing details that you provide to us.Music data. We collect release metadata when you upload any music content to our service, such as artist and performer names.Usage data. We and third-parties collect various device and usage data: IP addresses, device and browser type, advertising identifiers, and operating software version, and information about how you use our services, such as pages visited.
What (purposes) do we use the data for
If you have an account, we use this data to offer our music distribution, music library and the NFT and collab-house marketplaces. We also use it to market our services to you, by showing you ads for our service when you later visit another website or use another app and by sending you occasional emails.If you sign-up for our newsletter, we only use your name and email address to send you our newsletter, until you unsubscribe. Within each newsletter e-mail, an opt-out link is provided.If you use our website, but do not have an account, we use the data to market our services to you, by showing you ads for our service when you later visit another website or use another app.
What is our legal basis for the processing
For users with accounts and subscribers to our newsletter, and for marketing, we base our processing on consent from the data subjects.For users that have shared or used music on Collabhouse, and that are individual users we base our processing of music data and account data on the execution of a contract.For parties that are not individual users, mostly group members and employees of users, we base or processing of music data and account data on the legitimate interest of us and those parties to be able to use and benefit from the Collabhouse service
Where do we obtain the data from (sources)
We collect the data for our services, including any personal data contained therein, directly from the data subject, who provides it to us.We also obtain data from our third-party analytics and marketing services providers.
Third-party marketing services, and cookies
We use third-party analytics and marketing services providers to enable the marketing of our Collabhouse service to you.
We use the third-party services listed in the below overview:
Google Tag Manager
How long and where do we store data
We store data from users with accounts for at least 7 years to be able to meet our obligations to keep accurate records for the tax authorities.We store newsletter subscriber information until such subscriber indicates they no longer want to receive the newsletter.We store data for marketing purposes, both from users with accounts, and visitors without accounts, for a limited time from their last interaction with our service or an ad, typically up to a year.
What safeguards have we taken to protect data
Taking into account the nature, scope, context and purpose of the processing, we have taken the following technical and organizational measures:
Our database, and the information contained therein, is protected with access control.Access to the database is limited, not all staff in our organization have full access.Data submitted via our website is not encrypted in transit.
We do not actively monitor the security of our database and need to rely on our processors to notify us of any data breaches.
Who we share data with
We share data:
With service providers. The third-party analytics and marketing services providers are controllers acting on their own behalf, we enable them to capture data when you visit and use our services and disclose that data to them. Our other service providers, including our hosting providers, are processors acting on our behalf.With authorities: We reserve the right to report to law enforcement agencies activities that we, in good faith, believe to be illegal. We will investigate or take action to counter illegal activity, suspected abuse or unauthorized use of the services, or to protect the property or safety of others. We also may disclose your information if required by any law or court order worldwide, if the information relates to actual or threatened harmful conduct. In that case, we will consider applicable local laws, the nature of the order, as well as the legitimacy and proportionality of your information.In case of sale of our company: In connection with any sale of our company or any line of business (including the assets relating thereto), customer information generally is one of the transferred business assets. In the event of any such sale or disposition of any or all of our business, your information may be transferred to the acquirer.
Transfer of your personal data
You should also know that your personal data may be transferred from your home country to third parties. If you are an EU resident, this could imply that we also transfer data to countries that do not offer an adequate level of protection for your personal data. When we transfer this data, we will do so only when we have put in place appropriate safeguards to protect your personal data. Please contact us to get a copy of the safeguards that we have put in place. Our contact details are at the bottom of this text.
You have the right to request access to your personal data that we process. You also have the right to:
Rectify incorrect personal data or erase it in certain circumstances.
Restrict or object to the processing of your personal data.
Receive your data so that you can use it elsewhere (data portability).
Where we process data based on your consent, you also have the right to withdraw your consent at any time but we would like to point out that this does not affect the lawfulness of the processing before the date that you withdrew your consent. If you wish to exercise any of the above rights, please write us at email@example.com. Finally, you have the right to lodge a complaint with a supervisory authority. If you do not know who your supervisory authority is, please contact us and we will tell you.
How to contact us
This policy was last updated in April 2023.