← Back to Home

SAR · PP · 001

Privacy Policy

Last updated: April 15, 2026

Sounds About Right (“we,” “us,” or “our”) operates the game and website at soundsaboutright.games. This Privacy Policy explains what information we collect, how we use it, and your rights with respect to that information. By using our service you agree to the practices described here.

01

Information We Collect

We collect the following categories of information:

Account Information

When you register, we collect your email address and a hashed version of your password (never stored in plain text). This is required to access paid features such as the Expansion Pack.

Game & Player Data

When you join or host a game we store: your chosen display name (up to 24 characters), your score, your avatar configuration (instrument, color, emote — no photos), and the song submissions you make during a session (track name, artist name, album art URL, 30-second preview URL). All game data is associated with a temporary anonymous player ID or your account ID.

Anonymous Player ID

If you play without signing in, we generate a random UUID and store it in your browser's localStorage. This allows you to participate in games without an account. It is never linked to your identity and can be cleared by clearing your browser storage.

Payment Confirmation Data

When you purchase the Expansion Pack, Stripe processes your payment directly. We never see, transmit, or store your card number, expiry, or CVV. We only store a Stripe checkout session ID and your account user ID to confirm your purchase.

Session Cookies

We use session cookies to keep you signed in. These cookies contain an authentication token and no personally identifiable information beyond your account ID. No third-party tracking or advertising cookies are used.

02

How We Use Your Information

  • To create and manage your account
  • To operate game sessions — matching players, recording submissions and votes, displaying scores
  • To process and verify Expansion Pack purchases via Stripe
  • To provide AI-generated game prompts, which are pre-generated using Google Gemini — no personal data, usernames, or game content is involved in their creation
  • To search the Apple Music / iTunes catalog in response to your in-game song searches — search queries are proxied server-side and not stored
  • To respond to support requests sent to our support email
03

Information Sharing & Third-Party Services

We do not sell your personal information. We share data only with the following service providers as necessary to operate the game:

ProviderPurposeData Shared
StripePayment processingUser ID in session metadata (no card data)
Google (Gemini)AI prompt generationTheme & tone labels only — no personal data
Apple / iTunes APIMusic catalog searchSearch query text (no account linkage)
04

Data Retention

  • Active game sessions: Game data (submissions, votes) is retained while the game is live and removed when the host ends the session.
  • Player records: Player name and score records associated with a game are deleted when the game ends.
  • Account data: Your email, password hash, and avatar settings are retained until you request account deletion.
  • Expansion Pack records: Purchase confirmation records (user ID + Stripe session ID) are retained indefinitely for billing, audit, and fraud prevention purposes.
05

Cookies & Local Storage

Authentication Cookie

We set a single session cookie to maintain your login session. This is a strictly necessary cookie; the service cannot function without it when you are signed in.

Local Storage

We store a randomly-generated anonymous player UUID in your browser's localStorage. This is not a cookie and cannot be accessed by other websites. You can remove it at any time by clearing your browser's local storage.

We do not use advertising cookies, analytics trackers, or any third-party tracking scripts (no Google Analytics, Meta Pixel, etc.).

06

Children's Privacy

Our service is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us and we will delete it.

07

Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate personal information
  • Request deletion of your account and associated personal data
  • Object to certain processing of your data

To exercise any of these rights, please email us at derkwho@gmail.com. Account deletion requests are processed within 10 business days.

08

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page. Continued use of the service after changes are posted constitutes acceptance of the revised policy.

09

Contact

Questions or concerns about this Privacy Policy? Contact us at: derkwho@gmail.com