Privacy Policy

Last updated: January 8, 2026

1. Introduction

Welcome to VibeMixer ("we," "our," or "us"). We respect your privacy and are committed to protecting existing user data. This Privacy Policy explains how we handle your data when you use our AI Playlist Generator application.

2. Data We Collect

We collect the following types of information:

Spotify & YouTube Data: When you connect your accounts, we access your public profile and permission to create playlists on your behalf. We do not store your credentials.
Usage Data: We use Google Analytics to understand how visitors interact with our website.
Cookies: We use cookies to maintain your session and authentication state.

3. How We Use Your Data

We use your data solely to provide or improve user-facing features:

To generate and save playlists to your Spotify or YouTube account.
To analyze musical preferences ("vibe") to provide relevant recommendations.

We DO NOT use Google User Data for advertising, market research, or to train generalized Artificial Intelligence/Machine Learning models.

4. Sharing and Disclosure of Google User Data

We do not share, transfer, or disclose Google User Data with third parties except as necessary to provide the application's features. The entities we share data with are:

AI Service Provider (Groq Inc.): We send anonymized text descriptors of songs to Groq for the sole purpose of generating playlist suggestions (Inference). We do not send personally identifiable information (PII) or Google User IDs to this provider.
Google Services (YouTube API): We interact with the YouTube API to facilitate playlist creation on your channel.

Our use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

5. Data Protection Mechanisms

We employ strict security measures to protect your Sensitive Data:

Encryption in Transit: All data transmitted between your browser, our servers, and third-party APIs is encrypted using TLS/SSL (HTTPS).
Encryption at Rest: Authentication tokens (OAuth Access Tokens) are encrypted and stored in secure, HttpOnly cookies. They are never exposed to client-side scripts.
Data Minimization: We only request the scopes necessary for the app's functionality and do not retain user data longer than necessary for the session.

6. Third-Party Policies

Our service integrates with:

Spotify: Spotify Privacy Policy.
Google/YouTube: Google Privacy Policy.

7. User Rights and Revocation

You can revoke VibeMixer's access to your data at any time via:

Google Security Settings

← Back to Home