Legal

Privacy Policy

Last updated: 2026-05-21

This policy describes what data ToneVault collects when you use the service, how it is used, and how you can control it. It applies to https://tonevault.zadenconnell.com and any related subdomains.

Who we are

ToneVault is operated by [Operator name to be set](“we”, “us”). The controller for personal data processed through ToneVault is [Operator name to be set]. To contact us about this policy, email legal@example.com.

What we collect

When you create an account, we collect:

Account identifiers — your email address and a hashed password (for email/password signups), or your Google account ID, email, name, and profile image (for Google sign-in).
Profile data you provide — your handle, display name, bio, avatar, theme preference, and notification preferences.
Content you create — patches, tones, rigs, collections, comments on collections, and the metadata attached to them (visibility, descriptors, genre, song refs).
Uploaded files — preset binary files, audio clips, and images you upload, stored on Cloudflare R2.
Activity events — sign-ins, uploads, likes, bookmarks, follows, forks, and rate-limit counters (usage_events), kept for ~35 days to enforce quotas and detect abuse.
Authentication cookies — a session cookie set by Better Auth so you stay signed in.
Server logs — request metadata (IP address, user agent, timestamp) is processed by our hosting provider for security and operational logs.

We do not collect payment data — there are no paid features at this time. We do not run ad networks or third-party analytics that track you across other sites.

Why we use it

To run the service — sign you in, render your pages, store and serve content you create, enforce visibility rules.
To communicate with you — verification, password reset, invites, and notifications you have opted in to. Manageable at Settings → Notifications.
To protect the service — rate limits, abuse detection, and moderation queues.
To honor your requests — export your data, deactivate, delete, or correct your profile.

Where it goes (processors)

We use the following processors to run ToneVault:

Vercel — application hosting and server logs.
Neon — managed Postgres database (account data, profiles, content metadata).
Cloudflare R2 — object storage for uploaded preset blobs, audio, and images.
Resend — transactional email (verification, password reset, invites, notifications you opted in to).
Trigger.dev — background job processor (patch parsing, image processing, scheduled cleanup).
Google — OAuth identity provider when you sign in with Google.
Anthropic and/or Google Generative AI — used by staff when authoring the device catalog to auto-place faceplate controls from a photo. User content is not sent to these providers as part of normal use.

Each processor handles your data only on our instructions and for the purposes above. They may move data internationally to run their service.

Cookies

We use only the cookies required to run the service: an authentication session cookie set by Better Auth, and a theme preference cookie set by next-themes. We do not use tracking or advertising cookies.

How long we keep it

Account and content — kept until you delete your account or remove the content.
Deactivated accounts — hidden for 30 days, then eligible for permanent deletion. Re-activate by signing in within the window.
Soft-deleted content — hidden for 30 days, then hard-deleted by the daily cleanup job.
Usage events — trimmed to ~35 days.
Handle redirects — kept ~90 days after a rename to avoid breaking links.
Server logs — retained by our hosting provider per their standard policy.

Your rights

Depending on where you live (GDPR, UK GDPR, CCPA, and similar regimes), you may have the right to:

Access a copy of your data — use Settings → Export to download a ZIP of everything you own.
Correct profile data — edit at Settings.
Delete your account — use Settings → Security to deactivate or permanently delete.
Object to processing, restrict it, or withdraw consent — email legal@example.com.
Lodge a complaint with your local data protection authority.

Public content

Items you mark as public are indexable by search engines and visible without an account. Removing them later removes them from ToneVault but may not remove third-party search-engine caches. Forks made by others retain their own snapshot of your content.

Children

ToneVault is not directed at children under 13 (or under 16 in jurisdictions where that is the applicable digital-consent age). If you believe a child has signed up, contact legal@example.com and we will remove the account.

Security

Passwords are hashed (never stored in plaintext). Optional TOTP two-factor authentication is available in Settings → Security. To report a security issue, email security@example.com.

Changes

We may update this policy. Material changes will be announced on the changelog. The “Last updated” date above always reflects the current version.

What we collect

When you create an account, we collect:

Account identifiers — your email address and a hashed password (for email/password signups), or your Google account ID, email, name, and profile image (for Google sign-in).

Profile data you provide — your handle, display name, bio, avatar, theme preference, and notification preferences.

Content you create — patches, tones, rigs, collections, comments on collections, and the metadata attached to them (visibility, descriptors, genre, song refs).

Uploaded files — preset binary files, audio clips, and images you upload, stored on Cloudflare R2.

Activity events — sign-ins, uploads, likes, bookmarks, follows, forks, and rate-limit counters (usage_events), kept for ~35 days to enforce quotas and detect abuse.

Authentication cookies — a session cookie set by Better Auth so you stay signed in.

Server logs — request metadata (IP address, user agent, timestamp) is processed by our hosting provider for security and operational logs.

We do not collect payment data — there are no paid features at this time. We do not run ad networks or third-party analytics that track you across other sites.

Why we use it

To run the service — sign you in, render your pages, store and serve content you create, enforce visibility rules.

To communicate with you — verification, password reset, invites, and notifications you have opted in to. Manageable at Settings → Notifications.

To protect the service — rate limits, abuse detection, and moderation queues.

To honor your requests — export your data, deactivate, delete, or correct your profile.

Where it goes (processors)

We use the following processors to run ToneVault:

Vercel — application hosting and server logs.

Neon — managed Postgres database (account data, profiles, content metadata).

Cloudflare R2 — object storage for uploaded preset blobs, audio, and images.

Resend — transactional email (verification, password reset, invites, notifications you opted in to).

Trigger.dev — background job processor (patch parsing, image processing, scheduled cleanup).

Google — OAuth identity provider when you sign in with Google.

Anthropic and/or Google Generative AI — used by staff when authoring the device catalog to auto-place faceplate controls from a photo. User content is not sent to these providers as part of normal use.

Each processor handles your data only on our instructions and for the purposes above. They may move data internationally to run their service.

How long we keep it

Account and content — kept until you delete your account or remove the content.

Deactivated accounts — hidden for 30 days, then eligible for permanent deletion. Re-activate by signing in within the window.

Soft-deleted content — hidden for 30 days, then hard-deleted by the daily cleanup job.

Usage events — trimmed to ~35 days.

Handle redirects — kept ~90 days after a rename to avoid breaking links.

Server logs — retained by our hosting provider per their standard policy.

Your rights

Depending on where you live (GDPR, UK GDPR, CCPA, and similar regimes), you may have the right to:

Access a copy of your data — use Settings → Export to download a ZIP of everything you own.

Correct profile data — edit at Settings.

Delete your account — use Settings → Security to deactivate or permanently delete.

Object to processing, restrict it, or withdraw consent — email legal@example.com.

Lodge a complaint with your local data protection authority.