Privacy Policy
Last updated: June 23, 2026
Who We Are
Song Cage is a songwriting web application operated by Digital Candy LLC. The application is available at app.songcage.com, and our marketing site is at songcage.com.
This policy explains what data we collect, how we use it, and what rights you have over it.
Data We Collect
We collect only the data necessary to provide and improve Song Cage. This includes:
- Account information: your email address and, if you sign in with Google OAuth, your name, email, and profile picture as provided by Google
- Song data: chords, lyrics, sections, and any other content you create within the app
- Audio recordings: voice memos and audio you record directly in the app
- Payment information: processed securely by Stripe. We do not store your credit card numbers, and we never have access to your full card details
How We Use Your Data
Your data is used to:
- Provide, maintain, and improve the Song Cage application
- Authenticate your account and keep your sessions secure
- Sync your song data across devices
- Process payments for paid plans
- Respond to support requests
We do not sell your personal data to third parties. We do not use your song content for training AI models or for any purpose other than providing the service to you.
Third-Party Services
We use the following third-party services to operate Song Cage:
- Supabase: authentication and database hosting
- Stripe: payment processing
- Google: OAuth sign-in
- PowerSync: offline-first data synchronization
- Datamuse API: word tools including rhymes and synonyms
- Cloudflare: site hosting and CDN
- Sentry: anonymous crash and error diagnostics (never includes your song content)
Each of these services has its own privacy policy. We encourage you to review them. We only share the minimum data required for each service to function.
Song Cage Mobile (iOS and Android)
The Song Cage mobile app is a free idea-capture app for iPhone and Android, distributed through the Apple App Store and Google Play. It is a capture tool (record voice memos, sketch lyrics, and build chord ideas), not the full editor, and it can be used without an account. Its data handling differs from the web app in a few specific ways:
- Use it without an account: you can record, write, and sketch as a guest. Everything you capture is stored locally on your device, and nothing is uploaded to our servers until you sign in.
- Microphone access for voice memos: the Record tab uses your device's microphone to record voice memos. The app asks for microphone permission the first time you record, and uses the microphone only to capture the recordings you start. You can deny or revoke this permission in your device settings, and the rest of the app still works without it.
- Where recordings and ideas go: a voice memo is saved on your device the moment you record it. If you are signed in, that audio and your idea content (lyrics and chords) are uploaded to our servers (Supabase database and storage) so they sync to your other devices and appear in your Ideas Inbox on the web and desktop. If you are not signed in, they stay on the device and are never uploaded.
- No purchases on mobile: the mobile app is free. It contains no in-app purchases and collects no payment information.
- Account deletion in the app: if you create an account, you can delete it and all of its data directly from the app (the menu in the top-right corner, then "Delete account"). You can also request deletion on the web at songcage.com/account/delete. Deleting your account removes your account record and all associated data, including any voice-memo audio, from our systems.
- Diagnostic telemetry (Sentry): to surface crashes and errors quickly, the mobile app may send anonymous diagnostics to Sentry: error stack traces, your operating system and version, the app version, locale, and a tag identifying the platform as
iosorandroid. Song content is never sent: no lyrics, chord progressions, or audio leave your device through telemetry.
Song Cage Desktop (macOS and Windows)
The Song Cage desktop app is a native installer for macOS and Windows. It runs the same songwriting canvas as the web app, but installed locally and able to operate fully offline. Its data handling differs from the web app in a few specific ways:
- Songs save locally first: songs you create in the desktop app are stored in a local database on your machine. Nothing is uploaded to our servers unless you sign in.
- Optional sign-in for sync: signing in connects your desktop app to your Song Cage cloud library. While signed in (and on a Pro or Band plan), edits sync bidirectionally with the web app, mobile app, and AU/VST3 plugin through PowerSync. Sign-in is never required for the desktop app to function offline.
- Sign-in happens in your system browser: the desktop app opens songcage.com/desktop-auth in your default browser, you complete sign-in there, and the browser hands the session back to the app over a one-time loopback connection to
127.0.0.1. No password is ever typed into the desktop app itself. - Word tools run offline: rhymes, synonyms, similar-meaning, and association data ship inside the desktop app. No network call is made to look up a rhyme.
- Diagnostic telemetry (Sentry): to surface crashes and errors quickly, the desktop app sends the following anonymous data to Sentry: error stack traces, your operating system and version, the app version, locale, and a tag identifying the platform as
desktop-tauri. Song content is never sent: no lyrics, chord progressions, or audio leave your machine through telemetry. - License entitlement cache: when you sign in as a paying subscriber, the desktop app caches a short-lived signed entitlement file locally so it can continue working offline for up to 30 days between server check-ins.
- Auto-update check: the app checks downloads.songcage.com/desktop/latest.json on launch to see if a new version is available. The check sends only your current app version and target OS/arch. You can disable auto-update from the View menu.
- Opting out: to disable diagnostic telemetry, email support@songcage.com from the address tied to your account and we will mark it opt-out at the source.
Song Cage Plugin (AU / VST3 / Standalone)
The Song Cage plugin runs inside your DAW (Logic, Ableton, FL Studio, Cubase, Reaper, Studio One, GarageBand) on macOS and Windows. Its data handling differs from the web app in a few specific ways:
- Songs save inside the DAW project: by default, songs created in the plugin live only in the DAW project file on your machine. Nothing is uploaded to our servers unless you explicitly sign in and use "Save as new cloud song" or "Update cloud copy."
- Optional sign-in: when you sign in, the plugin pulls your existing Song Cage cloud library so you can import songs into the DAW. Sign-in is never required for the plugin to function offline.
- Word tools run offline: rhymes, synonyms, similar-meaning, and association data ship with the plugin. No network call is made to look up a rhyme.
- Diagnostic telemetry (Sentry): to surface crashes and errors quickly, the plugin sends the following anonymous data to Sentry: error stack traces, the DAW host name and version, your operating system, the plugin format (AU/VST3/Standalone), and the Song Cage plugin version. Song content is never sent: no lyrics, chord progressions, or audio leave your machine through telemetry.
- License entitlement: when you sign in as a paying subscriber, the plugin caches a short-lived signed entitlement file locally so it can continue working offline for up to 30 days between server check-ins.
- Opting out: to disable diagnostic telemetry, email support@songcage.com from the address tied to your account and we will mark it opt-out at the source. A per-instance toggle inside the plugin UI is on the v1.1 roadmap.
Cookies
We use minimal cookies: only what is required to keep your authentication session active. We do not use advertising cookies, tracking pixels, or third-party analytics cookies.
Data Retention
Your data is retained for as long as your account is active. You can delete your account and data at any time, either from inside the app or by requesting deletion on that page. We will remove your personal data and song content from our systems. Some data may be retained in encrypted backups for a limited period before being permanently purged.
Your Rights
Regardless of where you live, we believe you should have control over your data. Under the GDPR, CCPA, and similar regulations, you have the right to:
- Access: request a copy of the personal data we hold about you
- Delete: delete your account and associated data, in-app or by request
- Export: receive your data in a portable format
- Correct: request correction of inaccurate personal data
- Opt out: California residents may opt out of the sale of personal information (though we do not sell personal data)
To exercise any of these rights, contact us at support@songcage.com.
Children
Song Cage is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal data, please contact us and we will delete it promptly.
Changes to This Policy
We may update this privacy policy from time to time. When we make significant changes, we will notify users through the app or by email. The "last updated" date at the top of this page reflects when the policy was most recently revised.
Contact
If you have questions about this privacy policy or how your data is handled, reach out to us at support@songcage.com.