zene logo ZENE

ZENE PRIVACY POLICY

Last Updated: Aug 25, 2025

At Zene Music (“Zene,” “we,” “our,” or “us”), your privacy is critically important. This Privacy Policy (“Policy”) explains in detail the types of personal data we collect when you use our services; how we use, disclose, and protect that data; and your rights and choices concerning your information.

By accessing or using Zene's mobile applications (Android, iOS), web and desktop clients (Web, Linux), or any other features or content we make available (collectively, the “Service”), you agree to the terms of this Policy. If you do not agree with any part of this Policy, please do not use our Service.

1. Scope and Applicability

1.1 Who We Are

Zene Music Private Limited (“Zene”) operates the Zene-branded music discovery, streaming, and recommendation platforms. Zene is headquartered in Mumbai, India.

1.2 What This Policy Covers

This Policy applies to all users of Zene's Service, including:

  • Mobile applications (Android, iOS)
  • Desktop clients (Linux, Web browser)
  • Website at https://zenemusic.co and related subdomains
  • Customer support channels (email, in-app help, chat)
  • Any other interactive features, widgets, APIs, or social media pages owned or operated by Zene

1.3 Geographic Reach; Legal Compliance

Zene serves a global audience. If you are located in the European Union or California, special rules (GDPR, CCPA) apply to how we collect, process, and store your personal data. Wherever you reside, we will collect and use your information in accordance with applicable data protection laws.

2. Information We Collect

We categorize the information we collect into two broad types: (1) Data you provide directly, and (2) Data we collect automatically.

2.1 Information You Provide Directly

When you register for an account, interact with the Service, or communicate with us, you may provide:

  • Account Details & Profile Data
    • Full name or display name
    • Email address (mandatory)
    • Profile photo (if uploaded or synced via Google/Facebook/Apple)
    • Phone number (if you verify via Truecaller SDK)
  • Authentication Credentials
    • Third-party tokens or identifiers (Google, Facebook, or Apple)
    • Password (hashed and stored securely)
  • Music Interaction & Preference Data
    • Liked songs, saved playlists, favorite artists, and genres
    • Listening history (retained for up to 60 days, then automatically deleted)
    • Search queries (e.g., artist/song/album searches)
    • Playlists you create, follow, or share
  • Communication & Support Data
    • Emails, chat transcripts, or other correspondence with customer support
    • Feedback, survey responses, or bug reports you submit
  • User-Generated Content
    • Comments, reviews, ratings, and any content (images, text) you post publicly on the Service

2.2 Information We Collect Automatically

When you use Zene, we may automatically collect:

  • Device & Technical Data
    • Device type and model (e.g., iPhone, OnePlus, Ubuntu Desktop)
    • Operating system version (Android, iOS, Linux distribution, etc.)
    • Unique device identifiers (advertising ID, install ID)
    • App version and build number
    • Referrer source (if you arrived via an ad or link)
  • Network & Connection Data
    • IP address and inferred city/region (for geolocation and content licensing)
    • Mobile carrier, Wi-Fi SSID name (when granted), network speed, signal strength
    • Timestamps for log-ins, log-outs, and length of sessions
  • Usage Data & Analytics
    • Pages or screens visited, features accessed, button clicks, scroll depth
    • Crash logs, error reports, performance metrics (to diagnose and fix issues)
    • Aggregated metrics regarding how often and how long you use certain features
  • Location Data
    • Approximate location based on IP address (city/region level)
    • Precise location (GPS coordinates) only if you explicitly grant “Location” permission—needed for regional content or local recommendations
  • Cookies, Tags & Similar Technologies
    • Browser cookies and local storage for web clients
    • Mobile device identifiers and IDFA/GAID or similar for analytics and marketing (subject to your consent)
    • Pixel tags, web beacons, and SDK integrations (e.g., analytics, crash-reporting, A/B testing)

2.3 Information from Third-Party Partners

We collect limited data from third-party APIs and services, strictly for the functionality provided. We never share your personal data with these providers beyond what is necessary to retrieve content or verify your account:

  • YouTube API: When you stream or search for videos via our YouTube-powered player, YouTube may collect usage metrics (subject to YouTube's Privacy Policy). We do not provide YouTube with your Zene account credentials or personal details beyond what is needed to render the video content.
  • Giphy API: When you search or share GIFs via Giphy, Giphy may collect query logs (subject to Giphy's Privacy Policy). We do not share your personal information with Giphy beyond what is required to load or send a GIF.
  • Truecaller SDK: If you choose to verify your phone number via Truecaller, they receive your phone number and a one-time verification token. Truecaller does not receive your listening history, email, or location.
  • Social Authentication Providers:
    • Google, Facebook, Apple: If you sign in via social login, we receive a unique user ID, your name, email address, and profile picture (if you grant us access). We do not receive your social media password.

3. How We Use Your Information

We use your personal data for the following purposes:

3.1 Operating & Improving the Service

  • Account Management: Grant you access to your personalized account, maintain your playlists, preferences, and purchase history (if applicable).
  • Music Recommendations: Analyze your listening history and preference data to generate custom recommendations, curated playlists, and “Discover” sections, ensuring you see new music aligned with your tastes.
  • Streaming & Playback: Enable you to stream content from our servers or through third-party APIs (YouTube, PlayerFM). Our infrastructure logs streaming requests, buffering events, and playback errors to optimize performance.
  • Analytics & Product Development: Collect usage metrics (pages viewed, features accessed, session durations) to understand how the Service is used. This data helps us prioritize new features, fix bugs, and plan future updates.
  • Crash Reporting & Technical Diagnostics: Capture device logs, stack traces, and error codes when the app crashes. We analyze such data to identify flaws and release patches. We do not associate crash data with your personal identity.
  • Localization & Personalization: Use your IP address or explicit location data to serve you region-specific content (e.g., local charts, concerts, events). We do not track location continuously; location data is only used when you choose to enable “Allow Location” in settings.

3.2 Communication & Support

  • Service Announcements & Updates: Send you emails, push notifications, or in-app messages about new features, policy changes, or system maintenance. You can opt out of marketing communications at any time, though transactional messages (e.g., password resets, account alerts) cannot be opted out.
  • Customer Support & Feedback: If you contact support (via email or in-app chat), we'll use your details and conversation history to address issues, provide troubleshooting advice, or escalate problems to engineering teams.
  • Surveys & Market Research: Occasionally, we may invite you to participate in polls, surveys, or beta programs. Participation is voluntary; any data collected through surveys is used in aggregate to improve Zene.

3.3 Security, Legal, & Compliance

  • Preventing Fraud & Abuse: Monitor account activity (e.g., multiple logins from different geolocations within short intervals, suspicious streaming patterns) to detect bots, prevent impersonation, and block unauthorized access.
  • Compliance with Laws: If compelled by valid court orders, subpoenas, or governmental requests, we will disclose the minimum required personal data to comply with applicable laws, including but not limited to the Information Technology Act (India), GDPR (EU), or CCPA (California).
  • Terms Enforcement & Audits: Use data to verify compliance with our Terms of Use. If you are suspected of violating the Terms (e.g., copyright infringement, unauthorized content sharing), we may access your account data to investigate and, if needed, suspend or terminate your account.

4. Data Retention and Deletion

4.1 Listening History

Your listening history (track names, artists, timestamps) is stored for a maximum of 60 days. After 60 days, logs are automatically purged from our active database to protect your privacy. Aggregate, anonymized data (e.g., total streams per track) may be retained indefinitely to analyze trends.

4.2 Account Information & Preferences

We retain your account details (name, email, linked social IDs), playlists, favorites, and preferences until you choose to delete your account or as required for legal reasons.

4.3 Support & Communication Records

Records of your support tickets, emails, or chat transcripts are archived for up to two years, then anonymized or deleted unless needed for ongoing issue resolution or legal compliance.

4.4 Log Files & Crash Reports

Technical logs (e.g., error codes, crash stacks, device diagnostics) are stored for up to 12 months, primarily to assist in debugging and performance improvements. We do not link crash reports to personally identifiable information.

4.5 Data Deletion Requests

Under GDPR, CCPA, or similar laws, you may request deletion of your personal data. Upon verification of your identity, we will:

  • Delete your account record, playlists, and preferences (except for anonymized or aggregated data)
  • Cease processing your personal data for marketing or profiling
  • Retain only the minimal data required to comply with legal obligations (e.g., transaction records for tax purposes)

4.6 How to Delete Your Account

In the mobile app or website settings, navigate to “Account Settings” → “Delete Account.” Follow the on-screen instructions. You can also email knocknock@zenemusic.co with “Data Deletion Request” in the subject line. We may ask for additional verification to ensure the request is legitimate.

5. How We Share Your Information

5.1 No Sale of Personal Data

We do not sell, rent, or lease your personal data to advertisers or third parties. Period.

5.2 Service Providers & Subprocessors

We engage trusted third-party service providers (e.g., AWS for hosting, Segment for analytics, Stripe or Razorpay for payments, Sentry for crash reporting) to perform tasks on our behalf. These providers receive only the information they need to fulfill their services and are contractually bound to keep your data confidential and secure.

5.3 Third-Party API Access

When you use features that rely on external APIs (YouTube, Pinterest, Giphy, PlayerFM, Bing News), the minimal necessary data (e.g., a track ID or search term) is transmitted to that provider. We do not share your personally identifiable information—such as your name, email address, listening history, or precise location—with these third-party API providers. Any user content you choose to post or embed (e.g., sharing a YouTube video link) may be visible to those third parties if you post it publicly.

5.4 Legal Disclosures & Protecting Our Rights

If we believe disclosure is necessary to comply with the law (e.g., valid subpoena, warrant, or court order), to protect the rights, property, or safety of Zene or our users, we may share your information with law enforcement, government agencies, or third parties. We will only disclose the minimum data necessary unless required otherwise by law.

5.5 Business Transfers

If Zene is acquired by or merged with another company, or if significantly all of its assets are transferred, your personal data may be one of the assets transferred to the acquirer. In such an event, we will notify you before your data is transferred and becomes subject to a different privacy policy.

6. Cookies & Tracking Technologies

6.1 Cookies (Web Clients)

We use cookies to:

  • Maintain your logged-in state
  • Remember your language preference or theme setting
  • Collect anonymized site analytics (pages viewed, session length)

You can choose to block all cookies via your browser settings; however, blocking certain cookies may impair your ability to use features that rely on those cookies.

6.2 Local Storage & IndexedDB

On web clients, we may store small amounts of data (e.g., theme choice, last played track ID) in local storage or IndexedDB. This data is only accessible by the Zene domain and is not shared with third parties.

6.3 Mobile Identifiers (Apps)

On iOS/Android, we may use advertising identifiers (IDFA/GAID) or an internal unique installation ID for:

  • Analytics (to understand app usage patterns across devices)
  • A/B testing (to test new features)

These mobile identifiers do not reveal your name, email, or any PII. You can reset or limit ad tracking in your device settings.

6.4 Pixel Tags & SDKs

We use lightweight pixels or JavaScript SDKs from providers such as Google Analytics, Facebook Analytics, Segment, or Sentry. These help us measure performance, track errors, and analyze user behavior in aggregate. None of these SDKs collect PII unless you explicitly include it (e.g., linking your email to a specific error report).

7. Your Privacy Choices & Rights

Depending on where you live, you may have certain privacy rights. Below is an overview of the most common rights and how to exercise them.

7.1 Access & Portability

You can request a copy of the personal data Zene holds about you. To request this data, email knocknock@zenemusic.co with “Data Access Request” in the subject line. We will verify your identity (e.g., via a confirmation link sent to your registered email) before fulfilling the request. We aim to respond within 30 days of receiving your valid request.

7.2 Correction & Update

If any information we hold about you is inaccurate or incomplete (e.g., you changed your email or name), you may update your profile via the Account Settings page in the app or website. If you cannot access your account, contact knocknock@zenemusic.co to request corrections.

7.3 Deletion (“Right to be Forgotten”)

You can ask us to delete your personal data. We will:

  • Remove your account, email, and profile information
  • Purge your listening history (if any remains, although history older than 60 days is already deleted)
  • Delete your playlists, likes, and any user-generated content (unless retention is required by law)

Requests are typically processed within 30 days, subject to legal exceptions. To request deletion, email knocknock@zenemusic.co with “Data Deletion Request.”

7.4 Restriction & Objection

Under GDPR, you can ask us to restrict how we process certain data (e.g., for direct marketing). You can also object to processing if we rely on “legitimate interests” as the legal basis. Email knocknock@zenemusic.co with details, and we will evaluate your request.

7.5 Opt-Out of Marketing

If you no longer wish to receive promotional emails or push notifications, you can:

  • Click “Unsubscribe” at the bottom of any marketing email
  • Toggle off “Marketing Notifications” in your profile settings

We will still send you essential transactional messages (password resets, account alerts).

7.6 Cookie & Tracking Opt-Out

On web browsers, you can:

  • Disable or delete cookies via your browser's privacy settings
  • Use “Do Not Track” (DNT) signals—Zene's web client will respect DNT wherever feasible

On mobile, you can limit ad tracking or reset your advertising ID via device settings.

7.7 Data Portability

If you want a machine-readable copy of your data (e.g., playlists, listening history, preferences), we will package it in a common, structured format (CSV or JSON) and provide a secure download link. Submit a “Data Portability Request” to knocknock@zenemusic.co.

8. How We Secure Your Information

Zene implements robust organizational, technical, and administrative measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These measures include:

  • Encryption in Transit & at Rest:
    • All data transmitted between your device and our servers is encrypted via TLS (HTTPS).
    • Sensitive data (password hashes, tokens) is stored using industry-standard encryption at rest on AWS servers with stringent access controls.
  • Access Controls & Authentication:
    • Only authorized Zene personnel (engineers, support staff) can access production databases, and only on a need-to-know basis.
    • All internal systems require multi-factor authentication (MFA) and use role-based access permissions.
  • Network Security:
    • Firewalls, intrusion detection systems (IDS), and regular vulnerability scans protect our cloud infrastructure.
    • We conduct periodic penetration testing to identify and remediate security weaknesses.
  • Data Anonymization & Minimization:
    • Listening history is automatically purged after 60 days.
    • Where possible, we store data in aggregate form (e.g., total streams per week) rather than at the individual level.
  • Employee Training & Security Policies:
    • All employees undergo mandatory data privacy and security awareness training.
    • We maintain documented security policies, incident response plans, and disaster recovery procedures.

Despite our best efforts, no system can be 100% secure. If a data breach occurs that materially affects your data, we will notify you and any relevant regulators (e.g., data protection authorities) within 72 hours of becoming aware, in accordance with applicable law.

9. Children's Privacy

Zene is not intended for children under 13 years of age (or the minimum age required in your jurisdiction). We do not knowingly collect personal data from anyone under the age of 13. If we learn that personal data has been collected from a child under 13 without verifiable parental consent, we will delete that data as soon as possible. If you believe we might have any data from a child under 13, please contact us at knocknock@zenemusic.co so we can investigate and delete the data.

10. International Data Transfers

Because Zene is a global service, your data may be transferred to—and processed in—countries other than the country in which you live, including India and the United States. These countries may have data protection laws that differ from your own. Whenever we transfer your personal data internationally, we make sure that appropriate safeguards are in place (for example, Standard Contractual Clauses approved by the European Commission, or if you are in California, we ensure data transfers comply with the CCPA).

11. Third-Party Links and Embedded Content

Our Service integrates with third-party services such as Pinterest, YouTube, Giphy, PlayerFM, Truecaller, and others to enrich your experience. While you may interact with embedded content from these providers (e.g., videos or GIFs), we do not share any of your personal data, browsing habits, or preferences with them, nor do they have access to your account information through our platform.

12. Your Responsibilities

  • Providing Accurate Information: You agree that any information you provide to Zene is accurate, complete, and up-to-date.
  • Keeping Credentials Safe: Do not share your password or authentication tokens. If you believe your account has been compromised, change your password immediately and notify us at knocknock@zenemusic.co.
  • Adjusting Your Settings: You can update your profile information, notification preferences, and privacy settings at any time via the in-app or web “Account Settings” section.
  • Understanding Data Collection: If you choose to disable certain features (e.g., precise location, cookies, analytics), some functionality (such as local event recommendations or personalized discovery) may be limited.

13. Changes to This Privacy Policy

We may revise or update this Policy at any time. When we do:

  • We will post the revised Policy on our legal page (zenemusic.co/legal) with a new “Last Updated” date.
  • You can view and check the latest Privacy Policy at any time by visiting our legal page.

By logging in to Zene and continuing to use the app, you accept any changes to the Terms of Use and Privacy Policy.

Zene is GDPR and CCPA compliant. If you wish to delete all your data and close your account, please email us at knocknock@zenemusic.co.

14. How to Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: knocknock@zenemusic.co

15. Definitions

  • “Personal Data” means any information relating to an identified or identifiable natural person.
  • “Processing” includes collection, storage, use, modification, disclosure, and deletion of personal data.
  • “Controller” means the entity that determines the purposes and means of processing personal data (Zene).
  • “Processor” means the entity that processes personal data on behalf of the Controller (e.g., our hosting providers, analytics partners).
  • “Data Subject” means an individual to whom the personal data relates (you, the user).
  • “Cookie” means a small file placed on your device by a website or app, used to store information.

Thank you for entrusting Zene with your personal data. We are committed to maintaining the confidentiality, integrity, and security of your information. Enjoy discovering, sharing, and listening to music, knowing that your privacy is our priority.