Privacy policy
Edition: 25.06.2024
The structure of this document (You can navigate through the document using active links and search for the information you need
in the text):
About us and our
contacts Minimum age
Your rights and how to exercise them
How we receive your personal data
Who we can share your data with
Information that is publicly available within the service
How long do we store your personal data?
How does the service ensure the security of your data?
Personal data breach
Changes to the Privacy policy
Cyprus Supervisory authority
COOKIE POLICY
What are cookies and similar technologies?
What do cookies and similar technologies do?
Where can you find more information about cookies?
Minimum age
List of processing
Category of data
Vendors
List of cookies
The Cookie policy is a section of the Privacy policy dedicated to cookies and other similar technologies.
Throughout this document, two parts are available: on the right are detailed text versions of the sections, and on the left are brief
and more clearly explained summaries of each section.
Summary
In detail
This document explains what data is
processed from your use of the moodby service
It also explains how we receive and use your
data, where we store it, and how we protect it.
We want the use of our service to be as secure as possible for your personal
data, so your privacy is a priority for us.
By moodby service (hereafter the «Service») we mean any of the following:
mobile app moodby ®;
mobile and web app moodby Play;
mobile and web app moodby DJ.
It explains how and why we process your personal data, as well as how you
can control it and stop it from being processed.
This Privacy policy applies to all personal data that we receive when using the
Service.
Please carefully read this document. This is because using the Service implies
that you fully understand and accept the terms of use of your personal data. If you
do not accept the terms of this document (in general and/or in part) or do not agree
with the terms of use of personal data, we ask you not to use the Service. If you
disagree with the terms of the Privacy policy, further use of the Service and its
components is not allowed.
You can find details about cookies processing in the Cookie Policy.
Terms to know
Some terms that can be seen in this
document:
Automated decision-making is a decision
that our system makes automatically due to its
specific algorithm and without human
participation.
Some terms that can be seen in this document:
Automated decision-making is a decision that our system makes
automatically due to its specific algorithm and without human participation.
We don’t use any algorithms to make any decisions that would significantly
affect you. We can personalize the display of tracks to order by sorting them based
on the music you ordered more often.
Profiling is the processing of your data to
obtain some of your characteristics.
Processor - companies and third-party
services that help our Service work.
Remarketing is showing you personalized
ads if you have previously used our Service or
visited our website.
Profiling is any form of automatic processing (i.e. using technical means) of
personal data aimed at using this data to assess certain personal aspects of a person
(for example, to analyze his economic situation, health, personal preferences,
interests, reliability, behavior, and movements).
Processor – a company that we attract to perform on our behalf certain actions
necessary for the operation of the Service and related to the processing of your
personal data (for example, a payment system, a message-sending service, etc.).
Remarketing is the display of personalized advertisements to users who have
previously used the Service or visited the site.
About us and our contacts
Moodby Limited is responsible for
processing your personal data when using the
Service and is located in Cyprus at the address:
3030 Limassol, Chrysanthou Milona 1, Panayides
Building, 1st floor, office 1
The contact details of our Data Protection
Officer:
1) e-mail privacy@moodby.com
2) postal address: Republic of Cyprus,
3030 Limassol, Chrysanthou Milona 1, Panayides
Building, 1st floor, Office 1, Moodby Limited.
Moodby Limited is the administrator of the Service and the controller of
personal data processed in accordance with this policy.
Our address: The Republic of Cyprus, 3030 Limassol, Chrysanthou Mylona 1,
Panayides Building, 1st floor, office 1.
If you have any questions about this Policy or questions about our processing
of your personal data, we hope that you contact us and we will be able to resolve
your issue. You can contact our Data protection officer using:
1) Email privacy@moodby.com or
2) by writing us to: The Republic of Cyprus, 3030 Limassol, Chrysanthou
Mylona 1, Panayides Building, 1st floor, office 1, Moodby Limited.
We will send responses to your requests to the e-mail address specified by you
during registration in the Service or in any other form, at your wish.
You can also contact the Cyprus Supervisory Authority.
Minimum age
There are certain age requirements for
using the Service. We have set a different
minimum age for using the Service for each
country. To understand whether you can use the
The Service can only be used if you have reached the age that allows you to
independently make legal transactions and allows us to process your personal data
and does not require parental consent for such processing (the so-called "Minimum
Service, check your age in the annex to this policy.
We will delete the data of a user whose age
does not meet our age requirements as soon as we
become aware of this.
age"). To understand whether you can use the Service, check your age in the annex
to this policy.
! If you are under the Minimum age, please do not use the Service and do
not provide us with your personal data.
We do not intentionally collect personal data from children under the age of
13 or under the appropriate age restriction.
If we find out that the personal data of users who do not meet the Minimum
age has been obtained through the, we will immediately take all possible measures
to delete such personal data.
If you are aware that the Service is being used by a person under the
Minimum age, please contact us using any of the methods described in Section
«About us and our contacts», and we will take the necessary steps to delete the
corresponding information and/or account.
Your rights and how to exercise them
Your personal data is subject to several
rights:
a) have access
b) make amendments and additions
c) require us to erasure them
d) request a restriction on their processing
e) object to a particular data processing
f) receive your data from us in
electronic format, so that you can then transfer it
to another person or ask us to do so
g) not to be subjected to automated
decision- making (i.e., a decision that our system
makes automatically due to its specific algorithm
and without human participation)
Your rights about your personal data:
a) The right to access
We give you access to your personal data that is processed by the Service.
Upon request*, we will tell you what personal data we process for you and how
much we do so.
b) Right to rectification
You can edit (clarify / supplement) certain personal data in your profile
independently, or you can contact us if you wish to clarify your data*. If the
requested changes are related to the receipt of paid services, we may ask you to
provide verification documents.
c) The right to erasure (the "right to be forgotten")
In certain cases, you can request * the deletion of your personal data and the
termination of their processing, for example, when the personal data is no longer
needed for specific processing, or when you withdraw your consent or object to the
h) to withdraw consent to their processing.
processing of your personal data, or when in your opinion the processing of
personal data does not comply with the law.
In any case, you can always ask us how we
process your data and how you can exercise your
rights.
If we suspect that someone is impersonating
you, we will try to verify that it is actually you
who made the request.
d) The right to restrict processing
You may request* that we temporarily or permanently stop processing all or
some of your personal data if:
dispute the accuracy of your personal data,
if you believe that the processing is illegal and, instead of deleting personal
data, you want to restrict their use by us,
you believe that they are relevant for you to declare, implement or challenge
legal claims.
e) The right to object to processing
If there was a legitimate interest to process your personal data or the
processing was necessary to perform a task in the public interest or within the
framework of exercising state power entrusted to us, you have the right to object at
any time (the basis for their processing is described in the Appendix List of
processing). You can also object to profiling based on these grounds
Also, in cases where we process data for direct marketing, you have the right
at any time to object to the processing of your personal data for the purposes of
including profiling, to the extent that the processing of your personal data relates to
this direct marketing.
f) The right to data portability
You have the right to receive your personal data available to us, which we
received with your consent or they were provided to us for the rendering of the
serviceperformingorm our obligations under user agreement), from us in electronic
format and then you can transfer such data to another person. We may, at your
direction, transfer such data directly to another person, if this is technically feasible.
(g) The right not to be subjected to automated decision-making
You have the right not to be subjected to a decision that is based solely on the
automated processing of your personal data, including profiling if such actions
entail legal consequences (for example, some of your legal rights will be infringed,
limited) or in a similar way significantly affect you.
Sometimes automated decision-making may take place, but we will make
efforts to protect your rights, freedoms, and interests. You can request* the
assistance
of our DPO to help you to decide, and you also can express your concerns or
challenge such a decision.
h) The right to withdraw consent
If we process your personal data based on your consent, then you can change
your settings in your profile or send us a request* indicating that you no longer
want us to use your personal data for processing. However, if you withdraw your
consent, it does not affect the legitimacy of the data processing that occurred before
your withdrawal.
You can send us a request* if you have any questions about your privacy
rights or how you can exercise them. Our goal is to respond to your request as soon
as possible, but we will always do it within one month of receiving it. Some
requests can take up to 3 months to be fulfilled; we will let you know if that is the
case and explain the reason for the delay.
If the request is unclear, we may contact you to clarify the content. Requests
may also be refused if they are unfounded or excessive (repetitive).
If we have doubts about whether you have really contacted us (and not
someone impersonating you), we have the right to ask you to confirm your identity
(for example, to confirm some data known to you and us or to provide a copy of
your identity card). This will allow us to make sure that the satisfaction of your
request does not violate the rights of third parties.
If you are not completely satisfied with our response, you can also complain
about our processing of your personal data to the appropriate data protection
authority.
How we receive your personal data
Where do we get your data from?
1) we receive from you;
2) we automatically collect data from
your device (phone, computer) from which you
use the
We may receive your personal data:
1. directly from you when you enter the data while interacting with the
Service; (for example, when you write a request through «Contact us»));
2. automatically received by us when you use the service (for example,
Service;
technical data of the device);
3) we receive it from other services and
persons;
4) we assign or generate ourselves.
3. received by us from third-party resources and services (for example,
when registering or logging in via Facebook or from our payment system);
4. assign or generated by our service when you use it (userID or payment
history).
When you register or log in to our service via Facebook, Google, or Apple,
ypermit usion to receive certain information from these services. The specific types
of information that we may receive depend on your settings for this service and will
be governed by their privacy policy.
You can unlink your Facebook, Google, or Apple account from your service
account at any time.
For more information on how it works, see the links:
Google - https://clck.ru/YHB8p
Apple - https://support.apple.com/en-us/HT210426
Facebook - https://www.facebook.com/help/fblite/170585223002660
Please note that if you unlink your social media account, we won't be able to
receive up-to-date data from these services. As a result, if you are configured with
one login method, you will not be able to access our Service. If you have logged in
to your account previously, you can do the same again.
When we ask you to provide your personal data for the provision of services,
we strive to collect only those whose collection is the minimum necessary for the
provision of the services. We won't be able to provide the Services if you do not
provide complete and accurate data.
The processing of personal data will only take place at your discretion and
only after receiving your consent if your consent is needed for certain functions
(e.g., sending marketing messages to the mail) or for some of our needs (e.g.,
sending advertising to you).
In the annex, you will find the categories of personal data that we collect in the
course of your work with the Service, with a list of personal data that may be
affected for each of them.
Whom we can share your data with
Some of your data may be processed by
other companies (vendors) we engage. In some
cases, your data may be transferred outside the
EU for processing, e.g. to countries where the
level of personal data protection is not as high as
that in the EU. We assure you that such a transfer
will be monitored. Sometimes we receive your
personal data from other entities to ensure the
service.
We work closely with other service providers to operate, develop, and promote
the service, which may have access to or receive from us or directly from you some
of your personal data. These service providers may be based outside the European
Union, in countries that do not provide an adequate level of personal data protection
(for example, the United States).
For the operation, development, and promotion of the service, we cooperate
with other service providers who provide relevant services. Such suppliers may be
located outside the European Union and in countries that do not provide an
adequate (for example, the United States).
These companies are allowed to process your data as instructed by us and only
to the extent strictly enough to provide their services and products to you. As a tool
for transferring data to countries that do not provide a level of protection adequate
to the European one, we use such as Standard Contractual Clauses (approved by the
EU Commission), which describe the conditions for processing data by recipients
and mechanisms for their protection (including various technical, organizational
and legal protection measures).
For a list of vendors see in annex.
Under the agreements with our music partners (such as labels, publishers,
CMO, etc.), we may transfer some of your data to these partners. These music
partners may process the information received to collect royalties and make
payments to authors,
artists and other right holde,rs it turn, these actions may involve sharing the
information outside of the European Union.
Information that is publicly available within the service
You should be aware that some of your
information will be made available to others
when you order, post, like something, or upload
anything to the Service.
The following personal data will always be publicly available in our service:
your username,
profile avatar (profile photo),
playlist/stations cover,
your order lists and their history,
comments and likes on orders,
DJ’s content (except for personal stations).
We ask you to take into account the general availability of this information
when installing a profile avatar, writing a comment, putting likes, or ordering a
playlist.
How long do we store your personal data?
As a rule, we store your personal data as
long as it is necessary to render services and to
provide access to the Service.
As a rule, we store your personal data as long as it is necessary to provide you
with services and to provide access to the Service.
Also, we can store personal data for as long as necessary to protect our
legitimate and significant business goals and interests, or for the period required by
law.
After deleting the profile, we will store the required personal data only if
necessary for:
- fulfillment of our tax and legal obligations,
- compliance with the requirements of the law,
- to resolve claims or disputes,
- ensuring our security,
- prevention of fraud and money laundering,
- ensuring the safety of our users.
After an account deletion, we may retain personal data (in part or in whole)
associated with the You to meet financial obligations to You (if is).
Public user content that is associated with deleted user profiles, will be
available for viewing after the user profile is deleted and will be displayed in the
Service as published by unknown users.
Please note that if you as the owner of a place delete some personal data of
other users you’ve added to manage the place, this deletion may affect the ability to
use the Service and its functionality for such user.
How does the service ensure the security of your data?
We care about the security of your data. By
doing so, we use certain common measures that
help protect them, and we ensure that our partners
also provide an appropriate level of protection.
Our goal is to protect user data and we take all reasonable and appropriate
measures to protect our users' data from loss, theft, misuse, unauthorized access,
disclosure, alteration, and destruction.
To protect your personal data, we:
choose reliable partners who comply with the requirements on personal
data protection;
have designed and have developed the Service taking into account the
principles of privacy by design and privacy by default;
have restricted access and differentiated the levels of access to your
personal data for our employees and third parties, and we also monitor who
accesses and uses your personal data;
store personal data on servers located in the European Union;
encrypt personal data for safe transmission;
when you enter your credit card information, this information is
encrypted and protected by our third-party payment service providers.
If you have any questions about the security of our Service, please contact our
Data protection officer at privacy@moodby.com.
Personal data breach
No service is 100% secure. If your data is
suddenly leaked in our Service, we will do
everything to eliminate such a leak and its
consequences for you.
Since we cannot ensure the security of your
data if others access your device or its contents,
you should limit others' access to your device.
Please note that no security system is perfect, and therefore we cannot fully
guarantee the absolute security of the service or unauthorized access to personal
data by third parties. In case of the occurrence of such circumstances (events) we
will take all reasonable measures to eliminate these circumstances (events) and
their consequences.
We recommend that you restrict access to the device from which you use the
service and log out after using the Service.
If necessary, we will notify you of any violations related to your personal data
breach and report such breach to the relevant authority for the supervision of
compliance under the law.
Changes to the Privacy policy
This document may change periodically. We
will notify you about important changes in the
service itself or by email.
Occasionally, we may update this Privacy policy. If necessary, we will notify
you about it (for example, by posting a notification in the Service or sending you an
email and/or notification to your device). As a result, if you use or access the
Service after the effective date of the changes, the revised Privacy policy will apply.
Please do not use the Service and delete your profile if you do not agree with the
changes made to this Privacy policy (in general and/or in part).
However, you can always review the latest version of our Privacy policy and
all previous versions on our website (https://moodby.com/en/). Periodically
reviewing our website or Service applications is a good idea to keep up to date on
our privacy policies relating to your personal data.
You bear all the risks, if you do not read and agree with the Privacy policy,
changes, and/or additions to the Privacy policy before using the Service.
The invalidation of certain provisions of the Privacy policy for any reason
does not entail the invalidity of the Privacy policy as a whole and its other
provisions.
Cyprus Supervisory authority
Here is the contact information of the authority that controls the use of your personal data by us:
Commissioner for Personal Data Protection
1 Iasonos Street, P.O. Box 23378
1082 Nicosia
Tel. +357 22 818 456
Fax +357 22 304 565
Email: commissioner@dataprotection.gov.cy
Website: http://www.dataprotection.gov.cy/
Member: Ms. Irene Loizidou Nikolaidou - Commissioner for Personal Data Protection
You can find the complete list of supervisory authorities at https://edpb.europa.eu/about-edpb/about-edpb/members_en
COOKIE POLICY
Our company uses cookies and similar technologies in the Moodby service and on its website moodby.com (hereinafter referred
to as Internet resource).
What are cookies and similar technologies?
A cookie is a small text file that is stored in your browser when you use our service or visit our website.
There are other similar technologies, such as web beacons, web storage, and other similar files and technologies that can also do
the same as cookies. We use the term "cookies" in this policy to refer to cookies and all similar technologies thatsimilarly collect
informationy.
Web beacons (sometimes called "pixel tags", "tracking pixels" or "transparent images") are tiny graphic files that contain a unique
identifier that allows us to find out when someone visited our resources (or opened an email that we sent them).
Cookies can be "permanent" (i.e., they can be stored permanently or for a long period (up to 25 months) on your device) or
"session" (i.e., they exist only for the duration of your visit to the service or site).
Cookies can be:
own (the so-called first-party cookies). In our case, they are created directly by our Internet resource when you visit it;
third-party cookies (so-called third-party cookies). A third-party cookie is placed on your device by a third party that places its
content (for example, ads or images) on the pages of our Internet resource that you visit.
Some common uses for third-party cookies include:
a) to provide statistics on the use of the site, and service;
b) to collect data about your Internet activity on various Internet resources;
c) for retargeting (showing online ads to users who have already interacted with the site, or service);
d) for displaying personalized ads.
What do cookies and similar technologies do?
Cookies can perform various tasks:
necessary cookies
Required for the operation of the site (for example, to navigate through it). Without them, the site will not work properly
analytic and statistical cookie
Provide your convenience of using the site and remember your preferences (for example, remember the language settings)
marketing cookie
These cookies are used by us or our partners to provide you with advertising that may be relevant to you and your interests. The
information may also be used for frequency capping purposes and to help us regulate the advertisements you receive and measure their
effectiveness
without category
The destination is not set
The following links show how to change the browser settings in the most commonly used browsers:
Internet Explorer https://support.microsoft.com/
Firefox https://support.mozilla.org/ru/kb/otklyuchenie-kukov-so-storonnih-sajtov
Safari http://safari.helpmax.net/en/privacy-and-security/managing-cookies/
Chrome https://support.google.com/chrome/answer/95647
How to refuse third-party cookies - chrome://settings/privacy/guide?step=cookies
Mobile IDs
On your mobile device, your operating system may provide you with additional options to opt out of personalized interest-based
advertising or to reset mobile device IDs in another way. For example, you can use the "Restrict Ad Tracking" setting (on iOS devices)
or the "Opt-out of interest-based advertising" setting (on Android), which allows you to limit the use of information about your use of
applications to serve ads that are focused on your interests.
Please note that if you decide to block cookies, this may disrupt or interfere with the proper functioning of the service, and the
site.
A third-party service that is used to track activity related to the service, for example, by placing cookies, is Google Analytics. If
you do not want any information to be collected and used by Google Analytics, you can set the opt-out option in your web browser,
read more here.
From time to time, we may use third-party services, and similar opt-out options are offered for them.
Behavioral online advertising (advertising based on your online activities, such as queries, searches, and visits) may include an
"Ad Selection" icon or another mechanism for refusing to receive interest-based advertising. To find out information about the
collection and use of information about your online activities for interest-based advertising or to learn how to opt out of the use of your
data for interest-based advertising, you can click on the AdChoices icon or visit the website www.aboutads.info,
Users from Europe can also visit the site www.youronlinechoices.com to learn how to opt out of the use of your data for interest-
based advertising by member companies of the European Interactive Digital Advertising Alliance (EDAA).
On the Network Advertising Initiative (NAI) website at www.networkadvertising.org/choices You can find out how you can opt
out of the use of information about your online activities for interest-based advertising by NAI member companies.
Please note that even if you refuse to use the above mechanisms, you can still receive advertising when using our Internet
resources.
Where can you find more information about cookies?
You can learn more about cookies and the following third-party websites:
AllAboutCookies: http://www.allaboutcookies.org/
Network Advertising Initiative: http://www.networkadvertising.org/
youronlinechoices.eu (for Europe) or aboutads.info/choices (for the USA)
If you have any questions or comments about the use of cookies, please contact us at privacy@moodby.com.
Minimum age
Belgium
18 years
Austria
14 years
Ireland
18 years
Poland
16 years
Romania
18 years
List of processing
Processing
Category of processing data
Providing access to the service without registration
Data about a person, identifiers, location
Creating an account and providing access to the
service
Data about a person, identifiers, location, user content
Data about a person (information that you additionally provide
about yourself), identifiers, user content (your likes, comments)
Request printed promo materials
Data about a person, purchases, user content
Application functionality
Data about a person, identifiers, location, financial information,
purchases, user content, usage data
Payments and invoicing
Data about a person, financial information, location, purchases,
user content
Card data storage
Financial information, identifiers
Sending notifications
Data about a person, user content, and other data
Sending service messages
Data about a person, location, user content, usage data
Evaluation and development of the new features,
technologies, and improvements to the service
(in cases where the law requires your consent, i.e.
when we use cookies to collect these data)
Data about a person, identifiers, location, app info and
performance, user content, usage data, financial information,
purchases, and other data
Data about a person, identifiers, location, app info and
performance, user content, usage data, financial information,
purchases, and other data
Elimination and prevention of failures and errors,
protection from unauthorized access, protection of
the service data
Identifiers, app info, and performance
Providing technical support
Data about a person, identifiers, location, app info and
performance, usage data, financial information, purchases, user
content
Data about a person, identifiers, location, usage data, financial
information, purchases, user content
Conducting marketing
(in cases where the law requires your consent)
Identifiers, data about a person, location, user content, purchases
Identifiers, data about a person
Fulfill our tax and accounting obligations
Data about a person, identifiers, location, purchases
User content (business information)
Reporting to rights holders
Data about a person, user content, purchases, location, and other
data
Conducting a product live demo
Identifiers, data about a person, location, and other data
Conducting a castdev
Identifiers, data about a person, user content, location, and other
data
Performance of surveys and questionnaire
Identifiers, other data
News subscription
Data about a person (email)
Referral program
Data about a person, user content, purchases, financial
information
Data about a person (phone number)
Data about a person, user content, purchases, financial
information
Providing you with limited and special offers
Data about a person (phone number, email)
Defending our or third parties’ legal interests,
establishing or defending a legal claim, conducting
internal investigations
Data about a person, financial information, identifiers, location,
app info and performance, user content, usage data, purchases,
and other data
Category of data
What is included in the
categories of processing
data
Data
Data about a person
First name, for example, first name, last name, and patronymic
Nickname
Email address, including, but not limited to, hashed email address
Users photo
Phone number, including, but not limited to, hashed phone number
A physical address, such as a home address, physical address, or postal address
Citizenship, residency
Date of birth
Password
Other person's information (user description, link to a social media account or website)
Identifiers
IP address
User ID
Advertising device identifier or another identifier at the device level, device ID
User ID in Facebook, Google, Apple
Track ID
ID application instance
Venue ID (place ID)
Financial information
Bank account details
Email address
Bank card details (card number, card token, card type (visa, maestro, etc.), card expiration date, information about the cardholder, ID card, country)
Data about the servicing bank
Payments, income, funds on the balance sheet, or any other financial information
Payment history
Location
Precise Location
Coarse Location
Time zone
Country
Usage data
Service interaction (usage):
information about searches, requests, launching applications, clicks, scrolling information, or other
information about navigation on the service (date and time of connection, pages you accessed, date and time of access to these pages, search queries)
stations/track lists usage data (using venues, dates of use, date of order of the personal channel, music listening data, complaints about tracks)
Advertising data (information about the advertisement that the user saw)
Any other data about user activity in the application
Purchases
Purchases/orders or purchase trends made by a user or an individual
Subscription (period and term, free trial, subscription category, cost)
App info and performance
Crash data (such as crash logs)
Performance data (for example, startup time, hang speed, or power consumption)
Information about hardware, operating system version, hardware and software settings, browser type, cookie or similar technology, system language
Information about Internet connection (connection type: 3G, 4G, 5G, WiFi, xDSL, Cable, fiber, etc.)
Other diagnostic data
User content
User's musical content (stations and playlists, covers, descriptions)
Comments, likes to the orders, and favorites
Business information (company name, VAT registration number, reg. number, address, country, postal code, EU country or NON-EU country)
Venue information (name, type, photo, operating mode, location, address)
Emails or text messages, including subject line, sender, recipients, and contents of the email or message
User's photo
Voice or sound recordings of the user
Data created by the user during a support request (user requests and responses to requests)
Other data
Name of the author or performer
Other information, provided by You or another person
Time of meetings (live demo, сastdev)
Connection data
Vendors
Vendor categories
The Vendor and its product
or service / country of
service provided
Services
Links to the Vendor's privacy information, documents
describing the relevant measures and guarantees of
confidentiality
Technical Vendors
Hetzner Online GmbH
Data storage on servers located in the
Privacy Policy general information
https://www.hetzner.com/rechtliches/datenschutz
https://www.hetzner.com/assets/Uploads/downloads/Si
cherheit-en.pdf
web hosting (shared server)
European Union.
Hetzner
IMPORTANT
Germany
The data that you leave in the service may
be available to this company
Twilio Ireland Limited
Exchange of electronic messages
Twilio Privacy Statement
https://www.twilio.com/legal/privacy
Data Protection Addendum
https://www.twilio.com/legal/data-protection-
addendum
Electronic Messaging
IMPORTANT
Service SendGrid
The correspondence data may be available
Ireland
to this company, please keep this in mind
when sending us messages
The Rocket Science Group
Mailchimp offers an online marketing
Mailchimp data security and privacy
https://mailchimp.com/about/security/
Data Protection Addendum
https://mailchimp.com/legal/data-processing-
addendum/
LLC
platform that allows us to create, send, and
Messaging Service
manage emails, and advertisements.
Mailchimp
US
Google Ireland Ltd.
Firebase Crashlytics
Ireland
A set of tools for creating, improving and
developing the Service.
Crashlytics are used to record and analyse
errors. The resultant information is used to
maintain and improve our Service.
You can opt-out of the analysis of your user
data at any time by deactivating the
«Tracking» function in the settings of the
native app. This prevents the future
collection of your data and sending it to
Google. You will need to disable this
setting
on all devices on which you use the App.
Privacy and security in
Firebase https://firebase.google.com/support/privacy
Crashlytics and App Distribution Data Processing and
Security Terms
https://firebase.google.com/terms/crashlytics-app-
distribution-data-processing-terms
Firebase Data Processing and Security Terms
https://firebase.google.com/terms/data-processing-
terms
Firebase Data Processing and Security Terms: Model
Contract Clauses
Also if you delete and reinstall the app on a
device, you must disable tracking again.
https://firebase.google.com/terms/firebase-mcc
European Commission
VIES VAT number validation
EU
VAT number validation
Due to data protection, the national authorities will not
supply the name and address corresponding to a VAT
number. They will only confirm if there is a certain
name and address associated with a specific VAT
number or not.
https://europa.eu/youreurope/business/taxation/vat/che
ck-vat-number-vies/
Payment systems
Ecommpay Limited
Ecommpay
United Kingdom
Payment processing in the Service. Please
note that it is the payment system that
collects and is responsible for the collection
and / or security of banking, financial and
payment information. Any use of such
information is governed by the agreement
between the payment system and you,
including the Privacy Policy
(https://ecommpay.com/privacy-policy/)
the payment system, as well as agreements
between the payment system and our
company.
Privacy Policy
https://ecommpay.com/privacy-policy/
Data Processing Agreement
https://ecommpay.com/data-processing-agreement/
Marketing
Google Ireland LTD
Remarketing* and the «similar audiences»
Google Ads Data Processing Terms
https://privacy.google.com/businesses/processorterms/
Google Ads Data Processing Terms: Model Contract
Clauses
Standard Contractual Clauses (Processors)
https://privacy.google.com/businesses/processorterms/
mccs/
and
Google Ads Customer Match
feature** allows us and our partners to show
analytical providers
Ireland
you ads tailored to your interests and
preferences
* Remarketing is the display of personalized
advertisements to you on the Internet, if you have already
used the service, visited our site.
**Using the «similar audiences» function, we can show
ads to users who are similar to visitors to our service.
For more information about how Google
uses and processes your personal data when
we use Google remarketing services and the
"similar audiences" function, see the link
https://policies.google.com/technologies/pa
rtner-sites
For remarketing purposes or for the "similar
audiences" function, real email addresses
are not transmitted to Google, encrypted
data is transmitted instead.
AppsFlyer Ltd.
Analytics and attribution
Services Privacy Policy
https://www.appsflyer.com/services-privacy-policy/
Data Processing Addendum
https://www.appsflyer.com/gdpr/dpa.pdf
Mobile marketing platform
By working with AppsFlyer and its
AppsFlyer
integrated partners, we can attract an
Israel
audience similar to you and tell them about
the service.
Redash, Ltd., a limited liability
corporation
Tool for SQL based data analysis
Israel
Redash is a service for data collection and
visualization. It can retrieve information from
databases, tables, analytics services and other
sources and present it in the form of tables,
graphs, charts and other visualizations.
Redash Privacy Policy
https://redash.io/privacy
Google Ireland Ltd.
Firebase Analytics — is an analytical
Google Firebase offers a variety of features, which are
described on the following overview page:
https://firebase.google.com/products/. You can find
more detailed information on Google Firebase data
protection at: www.google.com/policies/privacy/ and
at: firebase.google.com.
Link to privacy policy of third party service providers
used by the app:
Firebase Data Processing and Security Terms
Agreement and thus offers a guarantee of compliance
with European data protection law
Firebase developer platform
service.
and related features and
Google Firebase records user activities (e.g.
services
opening the application for the first time,
Ireland
uninstalling, updating, crashing or the
frequency of use of the application) as well
as the device type, the operating system
version, the app version and date of the
event.
The evaluation of user interactions and the
performance of the application is carried out
For more information about Google Firebase, please
visit:
https://firebase.google.com
https://www.firebase.com/terms/privacy-policy.html
A detailed overview of the data collected by Google
with the help of the analysis services
Crashlytics and Google Analytics. We uses
identifiers and cookie-like technologies to
run the Google Analytics for Firebase
service.
Most Firebase services run on global
Google infrastructure. They could process
data at any of the Google Cloud Platform
locations or Google data center locations.
You may opt-out of certain Firebase
features through applicable device settings,
such as the device advertising settings for
mobile phones.
Firebase can be found at:
https://support.google.com/firebase/answer/6318039?h
l=
Google Ireland Ltd.
Google Analytics
Ireland
Analytics
The measurement data collected helps us to
understand our users’ needs and,
optionally, personalize the user experience
Detail about opt-out on the link
https://support.google.com/analytics/answe
r/181881?hl=ru
Learn how Google collects and processes information
about website and app usage: Information for sites and
apps using Google Analytics.
Learn about our user policies and
controls: Information for visitors of sites and apps
using Google Analytics
Safeguarding your data
https://support.google.com/analytics/answer/6004245#
zippy=%2Cgoogle-analytics-cookies-and-identifiers
Hotjar Ltd.
Hotjar
Malta, EU
Analytics
We use Hotjar to better understand our
users’ needs and to optimize our service
and experience. Hotjar is a technology
service that helps us better understand our
users’ experience (e.g. how much time they
spend on which pages, which links they
choose to click, what users do and don’t
like, etc.) and this enables us to build and
maintain our service with user feedback.
Hotjar is contractually forbidden to sell any
For further details, please see the ‘about Hotjar
section of Hotjars support site
Learn about Hotjar compliance, legal & security:
https://help.hotjar.com/hc/en-
us/categories/360003405813-Compliance-Legal-
Security-
Hotjar's commitment to GDPR
https://www.hotjar.com/legal/compliance/gdpr-
commitment/
of the data collected on our behalf.
SDK (software
development kit) - this
is a set of software
development tools that
helps developers create
applications for specific
platforms.
Facebook SDK
The Facebook SDK allows user to log in to
the app using Facebook account data, and
also allows us to transfer data about events
in the app to Facebook. With this data, we
can accurately track and measure the
actions that people perform in our
application.
Data Policy
https://ru-ru.facebook.com/privacy/explanation
Data Processing Terms
https://web.facebook.com/legal/terms/dataprocessing/a
mendment
Data Security Terms
https://web.facebook.com/legal/terms/data_security_te
rms
Google SDK
The Google SDK allows user to log in to
the app using Google account data
How Google helps you share data safely with third-
party apps & services
http://surl.li/cslnb
Google Privacy Policy
https://policies.google.com/privacy?hl=en
Apple SDK
The Apple SDK allows user to log in to the
app using Apple account data
Apple Privacy Policy
https://www.apple.com/legal/privacy/en-ww/
Other vendors
Calendly LLC
Scheduling
platform Calendly
USA
Scheduling platform
Is Calendly GDPR compliant? https://clck.ru/sdWMu
Learn about Calendly security:
https://calendly.com/security
HubSpot, Inc. CRM
platform
CRM platform for marketing, sales, content
management, and customer service.
HubSpot Privacy Policy
https://legal.hubspot.com/privacy-policy
HubSpot Privacy Center
https://legal.hubspot.com/legal-stuff
Video Conferencing
platforms
Video Conferencing to provide interaction
during a castdev or a product live demo
Zendesk Inc.
Knowledge base
USA
A smart knowledge base for better
selfservice and empowered agents
How We Protect Your Service Data (Enterprise
Services): https://support.zendesk.com/hc/en-
us/articles/4980543927322
GDPR: Frequently-asked questions about Zendesk
products: https://support.zendesk.com/hc/en-
us/articles/4408821267610-GDPR-Frequently-asked-
questions-about-Zendesk-
products#topic_cmq_xsl_d2b
United Parcel Service, Inc.,
(UPS)
Express delivery service
UPS Privacy Notice
Express delivery service
USA
https://www.ups.com/us/en/support/shipping-
support/legal-terms-conditions/privacy-notice.page
DPDgroup
Express delivery service
EU, France
Express delivery service
Personal Data Protection Policy
https://www.dpd.com/group/en/data-privacy-policy/
List of cookies
Strictly necessary cookies
Cookie key
Cookie type
& provider
Expiration
Description
Moodby.device.ID
First-party
Persistent
Generated UUID V4 string for device identification. Used for identifying exact
device by server and another devices. For remote player feature
.moodby.com.Moodby.session.ID
.dj.moodby.com.Moodby.session.ID
.play.moodby.com.Moodby.session.ID
First-party
30 minutes
Session identifier inside application. Is required for some session-based logic inside
application
.moodby.com.Moodby.query.DATA
.dj.moodby.com.Moodby.query.DATA
.play.moodby.com.Moodby.query.DATA
First-party
30 minutes
User attribution data that we store, to be sure that, we do not lose it until collect it on
the server
Moodby.agreement.STATE
First-party
Persistent
User accepter (or not) cookie banner state. Can be true or false.
.moodby.com.Moodby.agreement.CATEGORIES
.dj.moodby.com.Moodby.agreement.CATEGORIES
.play.moodby.com.Moodby.agreement.CATEGORIES
First-party
6 months
User accepted cookie banner categories list. Used to store cookies agreement.
Moodby.analytics.PING
First-party
Persistent
Is used to understand whether the user is active.
G_AUTHUSER_H
Third-party
Google
Session
Is created and used during google authorization by SDK. Used by Google Single
Sign On to identify if a user is logged into Google on their browser.
G_ENABLED_IDPS
Third-party
Google
2 years
Used for Google Single Sign On
AEC
Third-party
Google
6 months
These cookies are used to ensure that requests within a browsing session are made by
the user, and not by other sites. These cookies prevent malicious sites from acting on
behalf of a user without that users knowledge.
Functional and preference cookies
Cookie key
Cookie type
& provider
Expiration
Description
ayer/muted
First-party
Persistent
Store player muted state for tabs synchronization and restoring after page reload.
@@player/volume
First-party
Persistent
Store player volume state for tabs synchronization and restoring after page reload.
defaultAudioVolume
First-party
Persistent
To store audio volume state during page reloads and tabs synchronization.
defaultPlaylistId
First-party
Persistent
To store playlist, DJ is currently working with.
persist:app
First-party
Persistent
Store some application state (language) to improve performance.
persist:cache
First-party
Persistent
Stores some application states cache. Opened modals and subscriptions params.
persist:auth
First-party
Persistent
Store authorization data to keep user logged in.
persist:device
First-party
Persistent
Store some device data if required. Like device identifier or something extra.
persist:user
First-party
Persistent
Store user data and state to avoid re-requesting and improve performance.
persist:player
First-party
Persistent
Store player state to avoid re-requesting and improve performance.
persist:cookieBanner
First-party
Persistent
Store player state to keep cookie banner state.
persist:bookMeet
First-party
Persistent
Store book meet banner state to remember user decision.
fblo_
First-party
1 year
Is created and used during facebook authorization by Facebook SDK. To read to determine if the user
is logged in.
lidc
Third-party
LinkedIn
24 hours
To facilitate data center selection
_hjSession_
First-party
30 minutes
A cookie that holds the current session data. This ensures that subsequent requests within the session
window will be attributed to the same Hotjar session.
These cookies apply when the Hotjar Tracking Code has been loaded and ensure the Hotjar Tracking
Code functions correctly.
SOCS
Third-party
Google
13 months
Is used to store a users state regarding their cookies choices
CONSENT
Third-party
Google
~ 2 years
Is used to store a users state regarding their cookies choices
Analytic and statistical cookie
Cookie key
Cookie type
& provider
Expiration
Description
_ga_*
First-party
2 years
This cookie is used by Google Analytics to persist session state
_ga
First-party
2 years
This cookie is used to distinguish unique users by assigning a randomly generated number as a client
identifier. It is included in each page request in a site and used to calculate visitor, session and
campaign data for the sites analytics reports
_gid
First & third
party
1 day
This cookie stores a unique user session identifier. Used to distinguish users
Moodby.client.ID
First-party
1 year
Google identifier accross our apps domains. Is passed to _ga cookie when google analytics initializes
for identification across apps
Moodby.analytics.EVENTS
First-party
Persistent
Events, we are going to send to own analytics. Should be empty most time and store no data. But it
can store events if we are not able to send it to our server. Such events will be stored until we send this
data to our server successfully
_hjIncludedInSessionSample
First-party
30 minutes
This cookie is set to let Hotjar know whether that visitor is included in the data sampling defined by
your site's daily session limit
_hjFirstSeen
First-party
Session
The cookie identifies a new users first session. Used by recording filters to identify new user sessions
It does not contain any identifiable information
_hjIncludedInPageviewSample
First-party
30 minutes
This cookie is set to let Hotjar know if a user is included in the data sampling defined by your site's
pageview limit
_hjAbsoluteSessionInProgress
First-party
30 minutes
This cookie is used to detect the first pageview session of a user
_hjSessionUser_*
First-party
1 year
Persists the Hotjar User ID which is unique to that site. Ensures data from subsequent visits to the
same site are attributed to the same user ID.
These cookies apply when the Hotjar Tracking Code has been loaded and ensure the Hotjar Tracking
Code functions correctly
ZD-suid
First-party
Persistent
Used to create a sessionId and track analytics events for pages that load a Web Widget on them
ZD-buid
First-party
Persistent
Used to create a deviceId and track analytics events for pages that load a Web Widget on them
ln_or
First-party
1 day
Used to determine if Oribi analytics can be carried out on a specific domain
Marketing and advertising cookies
Cookie key
Cookie type
& provider
Expiration
Description
_fbp
First-party
3 months
To store and track visits across websites. Used by Meta to deliver a series of advertisement products
such as real time bidding from third party advertisers
bscookie
Third-party
LinkedIn
1 year
Used for remembering that a logged in user is verified by two factor authentication.
bcookie
Third-party
LinkedIn
1 year
Browser Identifier cookie to uniquely identify devices accessing LinkedIn to detect abuse on the
platform
lang
Third-party
LinkedIn
Session
Used to remember a user's language setting to ensure LinkedIn.com displays in the language selected
by the user in their settings
AnalyticsSyncHistory
Third-party
LinkedIn
30 days
Used to store information about the time a sync took place with the lms_analytics cookie
UserMatchHistory
Third-party
LinkedIn
30 days
Used for id sync process. It stores the last sync time to avoid repeating the syncing process in a
frequent manner
li_gc
Third-party
LinkedIn
6 months
Used to store consent of guests regarding the use of cookies for non-essential purposes
IDE
Third-party
Google
1 year
Used by Google DoubleClick to register and report the website user's actions after viewing or clicking
one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted
ads to the user
DSID
Third-party
Google
14 days
Is used to identify a signed-in user on non-Google sites and to remember whether the user has agreed
to ad personalization
SAPISID
Third-party
Google
~ 2 years
They are intended to collect information to measure the number and behavior of users of Google Maps
APISID
Third-party
Google
~ 2 years
They are intended to collect information to measure the number and behavior of users of Google Maps
SID
Third-party
Google
~ 2 years
They are intended to collect information to measure the number and behavior of users of Google Maps
HSID
Third-party
Google
~ 2 years
They are intended to collect information to measure the number and behavior of users of Google Maps
SSID
Third-party
Google
~ 2 years
They are intended to collect information to measure the number and behavior of users of Google Maps
SIDCC
Third-party
Google
~ 2 years
These cookies are intended for storing users settings in the search engine, for advertising and for
analysing the use of the search engine recorded by Google for its purposes
NID
Third-party
Google
~ 2 years
These cookies are intended for storing users settings in the search engine, for advertising and for
analysing the use of the search engine recorded by Google for its purposes
_Secure-*
Secure-3PAPISID
Secure-1PAPISID
Secure-3PSID
Secure-1PSID
Secure-3PSIDCC
Secure-1PSIDCC
Secure-ENID
Third-party
Google
~ 2 years
Cookie used for advertising targeting purposes. These cookies are used to deliver ads that are more
relevant to you and your interests
Unclassified cookies
Cookie key
Cookie type
& provider
Expiration
Description
fbsr_*
Third-party
Facebook
2 days from
set/update
This is a Facebook cookie that helps users connect their moodby account with their Facebook account
through the login process
fbm_*
Third-party
Facebook
1 year
This is a Facebook cookie that helps us establish which of our users have chosen to connect their
moodby account with their Facebook account