Privacy Policy

Last updated: March 31, 2026

Who We Are

Indiependr.ai is operated by HEIMLANDR (“we”, “us”, “our”), a technology company building tools for independent musicians. Our platform is located at indiependr.ai.

Data We Collect

We collect the minimum data necessary to provide our services:

  • Account data: Email address, name, and authentication tokens when you sign up or log in.
  • Artist data: Music catalog information, social media links, brand settings, and content you create on the platform.
  • Usage data: Pages visited, features used, and interactions with the dashboard for analytics and product improvement.
  • Payment data: Processed securely by Stripe. We never store card numbers.
  • Smart Link clicks: Platform, device, country, and referrer data when visitors click your listen pages.

How We Use Your Data

  • To provide and improve our platform services.
  • To generate AI-powered content (social posts, blog articles, designs) on your behalf.
  • To process payments and manage subscriptions via Stripe.
  • To send transactional emails (account, billing, feature updates) via Mailjet.
  • To display analytics about your music career, streams, and audience.

Third-Party Services

We use the following services to operate the platform:

  • Supabase (database and authentication)
  • Stripe (payment processing)
  • Mailjet (email delivery)
  • Anthropic / OpenAI (AI content generation)
  • Replicate (image and video generation)
  • EVEARA (music distribution)
  • Spotify / YouTube APIs (catalog and analytics)
  • Netlify (website hosting)

Each service has its own privacy policy. We only share data required for functionality.

Cookies

We use essential cookies for authentication and session management. We do not use third-party tracking cookies or advertising pixels. Analytics are based on server-side data, not browser tracking.

Data Retention

Your data is retained for as long as your account is active. If you cancel your subscription, your data remains accessible for 30 days. After that, it is permanently deleted upon request. You can export your data at any time from the dashboard.

Your Rights (GDPR)

If you are in the EU/EEA, you have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data (“right to be forgotten”).
  • Export your data in a portable format.
  • Withdraw consent at any time.
  • Lodge a complaint with your local data protection authority.

Security

All data is encrypted in transit (TLS) and at rest. Authentication uses secure magic links and OAuth. We follow OWASP security best practices and conduct regular code reviews. Sensitive operations are routed through isolated security APIs with zero-retention policies.

Contact

For privacy questions or data requests, email us at privacy@indiependr.ai.