Privacy Policy
Privacy Policy for "My Spotify Stats"
Personal data (usually referred to just as "data" below) will only be processed by us to the extent necessary and for the purpose of providing a functional and user-friendly website, including its contents, and the services offered there.
Per Art. 4 No. 1 of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to as the "GDPR"), "processing" refers to any operation or set of operations such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction performed on personal data, whether by automated means or not.
The following privacy policy is intended to inform you in particular about the type, scope, purpose, duration, and legal basis for the processing of such data either under our own control or in conjunction with others. We also inform you below about the third-party components we use to optimize our website and improve the user experience which may result in said third parties also processing data they collect and control.
User Data Collection
Personal data (usually referred to just as "data" below) will only be processed by us to the extent necessary and for the purpose of providing a functional and user-friendly website, including its contents, and the services offered there. Per Art. 4 No. 1 of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to as the "GDPR"), "processing" refers to any operation or set of operations such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction performed on personal data, whether by automated means or not.
Handling of User Data
User data accessed via Spotify OAuth is only used in session and not stored in our databases.
Data Access from Spotify
Authorization scopes include user-read-email, user-read-private, user-top-read, playlist-read-private, playlist-read-collaborative, playlist-modify-public, playlist-modify-private.
Use of Spotify Data
Data from Spotify is utilized for analytics, playlist creation, and search functionalities.
Storage of Spotify User Data
Data from Spotify is utilized for analytics, playlist creation, and search functionalities.
Sharing of User Data
We do not explicitly share user data with third parties.
User Data Management
Users do not have data stored with us; therefore, data deletion and account termination are not applicable.
Opt-out Options
As no data is stored, there are no options for users to opt-out of data collection or processing.
Data Protection Measures
Although no data is stored, we prioritize data protection by maintaining secure session handling and OAuth protocols.
GDPR Compliance
We aim to comply with GDPR regulations despite not storing any user data.
Contact Information
For any questions or concerns regarding privacy, users can contact us at [email protected].
Information about us as controllers of your data
The party responsible for this website (the "controller") for purposes of data protection law is: Yaroslav Kaplunskyi [email protected].
The rights of users and data subjects
With regard to the data processing to be described in more detail below, users and data subjects have the right to confirmation of whether data concerning them is being processed, information about the data being processed, further information about the nature of the data processing, and copies of the data (cf. also Art. 15 GDPR); to correct or complete incorrect or incomplete data (cf. also Art. 16 GDPR); to the immediate deletion of data concerning them (cf. also Art. 17 DSGVO), or, alternatively, if further processing is necessary as stipulated in Art. 17 Para. 3 GDPR, to restrict said processing per Art. 18 GDPR; to receive copies of the data concerning them and/or provided by them and to have the same transmitted to other providers/controllers (cf. also Art. 20 GDPR); to file complaints with the supervisory authority if they believe that data concerning them is being processed by the controller in breach of data protection provisions (see also Art. 77 GDPR). In addition, the controller is obliged to inform all recipients to whom it discloses data of any such corrections, deletions, or restrictions placed on processing the same per Art. 16, 17 Para. 1, 18 GDPR. However, this obligation does not apply if such notification is impossible or involves a disproportionate effort. Nevertheless, users have a right to information about these recipients. Likewise, under Art. 21 GDPR, users and data subjects have the right to object to the controller's future processing of their data pursuant to Art. 6 Para. 1 lit. f) GDPR. In particular, an objection to data processing for the purpose of direct advertising is permissible.
Third-Party Ad Servers and Networks
We may use third-party advertising companies to serve ads when you visit the Site. These companies may use information about your visits to this Site and other Web sites in order to provide advertisements about goods and services of interest to you. These advertisements may appear on this Site and on other Web sites. These companies may employ cookies, clear GIFs and other tracking technologies to cause relevant ads to be displayed to you.