Privacy Policy

Who We Are

Song Cage is a songwriting web application operated by Digital Candy LLC. The application is available at app.songcage.com, and our marketing site is at songcage.com.

This policy explains what data we collect, how we use it, and what rights you have over it.

Data We Collect

We collect only the data necessary to provide and improve Song Cage. This includes:

• Account information — your email address and, if you sign in with Google OAuth, your name, email, and profile picture as provided by Google
• Song data — chords, lyrics, sections, and any other content you create within the app
• Audio recordings — voice memos and audio you record directly in the app
• Payment information — processed securely by Stripe. We do not store your credit card numbers, and we never have access to your full card details

How We Use Your Data

Your data is used to:

• Provide, maintain, and improve the Song Cage application
• Authenticate your account and keep your sessions secure
• Sync your song data across devices
• Process payments for paid plans
• Respond to support requests

We do not sell your personal data to third parties. We do not use your song content for training AI models or for any purpose other than providing the service to you.

Third-Party Services

We use the following third-party services to operate Song Cage:

• Supabase — authentication and database hosting
• Stripe — payment processing
• Google — OAuth sign-in
• PowerSync — offline-first data synchronization
• Datamuse API — word tools including rhymes and synonyms
• Cloudflare — site hosting and CDN

Each of these services has its own privacy policy. We encourage you to review them. We only share the minimum data required for each service to function.

Song Cage Plugin (AU / VST3 / Standalone)

The Song Cage plugin runs inside your DAW (Logic, Ableton, FL Studio, Cubase, Reaper, Studio One, GarageBand) on macOS and Windows. Its data handling differs from the web app in a few specific ways:

• Songs save inside the DAW project — by default, songs created in the plugin live only in the DAW project file on your machine. Nothing is uploaded to our servers unless you explicitly sign in and use "Save as new cloud song" or "Update cloud copy."
• Optional sign-in — when you sign in, the plugin pulls your existing Song Cage cloud library so you can import songs into the DAW. Sign-in is never required for the plugin to function offline.
• Word tools run offline — rhymes, synonyms, similar-meaning, and association data ship with the plugin. No network call is made to look up a rhyme.
• Diagnostic telemetry (Sentry) — to surface crashes and errors quickly, the plugin sends the following anonymous data to Sentry: error stack traces, the DAW host name and version, your operating system, the plugin format (AU/VST3/Standalone), and the Song Cage plugin version. Song content is never sent — no lyrics, chord progressions, or audio leave your machine through telemetry.
• License entitlement — when you sign in as a paying subscriber, the plugin caches a short-lived signed entitlement file locally so it can continue working offline for up to 30 days between server check-ins.
• Opting out — to disable diagnostic telemetry, email support@songcage.com from the address tied to your account and we will mark it opt-out at the source. A per-instance toggle inside the plugin UI is on the v1.1 roadmap.

Cookies

We use minimal cookies — only what is required to keep your authentication session active. We do not use advertising cookies, tracking pixels, or third-party analytics cookies.

Data Retention

Your data is retained for as long as your account is active. If you delete your account or request data deletion, we will remove your personal data and song content from our systems. Some data may be retained in encrypted backups for a limited period before being permanently purged.

Your Rights

Regardless of where you live, we believe you should have control over your data. Under the GDPR, CCPA, and similar regulations, you have the right to:

• Access — request a copy of the personal data we hold about you
• Delete — request that we delete your account and associated data
• Export — receive your data in a portable format
• Correct — request correction of inaccurate personal data
• Opt out — California residents may opt out of the sale of personal information (though we do not sell personal data)

To exercise any of these rights, contact us at support@songcage.com.

Children

Song Cage is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal data, please contact us and we will delete it promptly.

Changes to This Policy

We may update this privacy policy from time to time. When we make significant changes, we will notify users through the app or by email. The "last updated" date at the top of this page reflects when the policy was most recently revised.

Contact

If you have questions about this privacy policy or how your data is handled, reach out to us at support@songcage.com.