The Music Calendar
Legal

Privacy Policy

Last updated: January 1, 2025 • 18 min read

1. Introduction

Tafoya Ventures ("Company", "we", "us", or "our") operates The Music Calendar platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

We respect your privacy and are committed to protecting your personal data. This policy will inform you about how we handle your personal data, your privacy rights, and how the law protects you.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Username, email address, password (encrypted)
  • Profile Information: Name, bio, location, profile photo, music preferences
  • Band/Venue Information: Business details, contact information, media files
  • Payment Information: Billing details (processed securely by third-party providers)
  • Communications: Messages, support requests, feedback

2.2 Automatically Collected Information

  • Usage Data: Pages viewed, features used, time spent on platform
  • Device Information: IP address, browser type, operating system
  • Location Data: Approximate location based on IP address
  • Cookies: Session cookies, preference cookies, analytics cookies

3. How We Use Your Information

We use the information we collect for the following purposes:

Service Delivery: Provide, maintain, and improve our platform features
Communication: Send notifications, updates, and respond to inquiries
Personalization: Customize your experience and recommend relevant content
Analytics: Understand usage patterns and improve our services
Security: Detect, prevent, and address fraud and security issues
Legal Compliance: Comply with legal obligations and enforce our terms

4. How We Share Your Information

4.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our platform:

Service Provider Purpose
Hosting AWS, DigitalOcean Application hosting and data storage
Payment Processing Stripe Secure payment transactions
Email SendGrid Transactional emails and notifications
Analytics Google Analytics Usage analytics and insights

4.2 Other Users

Certain information in your profile (name, bio, location, band/venue details) may be visible to other users of the platform to facilitate connections and bookings.

4.3 Legal Requirements

We may disclose your information if required by law, court order, or governmental request, or to protect our rights, property, or safety.

5. Data Security

We implement industry-standard security measures to protect your personal information:

  • Encryption: Data encrypted in transit (TLS/SSL) and at rest (AES-256)
  • Access Control: Strict authentication and authorization protocols
  • Monitoring: Continuous security monitoring and incident response
  • Regular Audits: Periodic security assessments and vulnerability testing
  • Employee Training: Regular security awareness training for all staff

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

  • Active Accounts: Data retained while your account is active
  • Closed Accounts: Most data deleted within 30 days of account closure
  • Legal Requirements: Some data retained longer for legal compliance (e.g., payment records for 7 years)
  • Anonymized Data: May be retained indefinitely for analytics purposes

7. Your Privacy Rights

7.1 General Rights

You have the following rights regarding your personal data:

Access: Request a copy of your personal data
Correction: Update or correct inaccurate information
Deletion: Request deletion of your personal data
Export: Receive your data in a portable format
Opt-Out: Unsubscribe from marketing communications
Object: Object to certain data processing activities

7.2 GDPR Rights (European Users)

If you are in the European Economic Area, you have additional rights under GDPR including the right to lodge a complaint with a supervisory authority.

7.3 CCPA Rights (California Users)

California residents have the right to know what personal information is collected, request deletion, and opt-out of the sale of personal information (we do not sell personal data).

8. Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience. You can control cookies through your browser settings.

Essential Cookies

Required for basic platform functionality and security

Preference Cookies

Remember your settings and preferences

Analytics Cookies

Help us understand how you use the platform

9. Children's Privacy

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in compliance with applicable data protection laws.

11. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the Service after changes constitute acceptance of the updated policy.

13. Data Protection Officer

For privacy-related inquiries or to exercise your privacy rights, you can contact our Data Protection Officer:

Data Protection Officer
Tafoya Ventures
Email
privacy@tafoyaventures.com
General Support
support@themusiccalendar.com
Effective Date: January 1, 2025
By using The Music Calendar service, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.