KORA SOUND — Privacy Policy

Last Updated: April 8, 2026 | Effective Date: April 8, 2026

Welcome to KORA SOUND (“Platform,” “we,” “us,” or “our”). This Privacy Policy explains how KORA SOUND, operated by KORA SOUND LLC, a Florida limited liability company, collects, uses, stores, shares, and protects your personal information when you visit our website at korasound.studio, create an account, upload content, make a purchase, or otherwise interact with our Platform.

By using the Platform, you consent to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the Platform immediately.

This Privacy Policy should be read alongside our Terms of Service and our DMCA & Copyright Policy.

1. INFORMATION WE COLLECT

1.1 Information You Provide Directly

When you create an account, subscribe to a plan, upload content, or contact us, we may collect the following:

Account Registration: First name, last name, artist name (display name), email address, username, and password.

Subscription & Payment Information: Billing address, subscription tier selected (KORA Starter, KORA Pro, or KORA Unlimited), and payment transaction details. All payment card information (credit card numbers, expiration dates, CVVs) is collected and processed exclusively by our payment processor, Stripe. KORA SOUND does not store, access, or have visibility into your full payment card details at any time.

Creator Profile Information: Artist name, biography, social media links, profile avatar, and any other information you voluntarily add to your public creator profile.

Content Uploads: Audio files (MP3, WAV, Stems), AI prompts, track metadata (titles, descriptions, genre tags), AI tool disclosures, and any associated artwork or images.

Communications: Any information you include when you contact us via email at info@korasound.studio, support@korasound.studio, or legal@korasound.studio, including the content of your messages and any attachments.

1.2 Information Collected Automatically

When you visit or use the Platform, certain information is collected automatically through cookies and similar technologies:

Device & Browser Information: IP address, browser type and version, operating system, device type (desktop or mobile), screen resolution, and language preference.

Usage Data: Pages visited, links clicked, time spent on pages, referring URL, date and time of access, and general navigation patterns within the Platform.

Cookies & Similar Technologies: We use cookies to maintain your login session, remember your preferences, and understand how users interact with the Platform. See Section 6 for full details on our cookie practices.

1.3 Information from Third-Party Services

Stripe (Payment Processor): When you make a purchase or receive a payout, Stripe may share limited transaction information with us, such as transaction status, payout status, and the last four digits of your payment card. Stripe’s handling of your payment data is governed by Stripe’s own privacy policy at https://stripe.com/privacy.

Google Workspace (Email Provider): Our business email is operated through Google Workspace. Emails you send to any @korasound.studio address are processed and stored by Google. Google’s handling of this data is governed by Google’s privacy policy at https://policies.google.com/privacy.

ACRCloud (Audio Fingerprinting): When you upload content, audio fingerprints may be submitted to ACRCloud’s copyright detection service for automated screening against known copyrighted works. ACRCloud receives only audio fingerprint data, not your personal information. ACRCloud’s privacy practices are governed by their own privacy policy.

2. HOW WE USE YOUR INFORMATION

We use the information we collect for the following purposes:

Platform Operations: To create and manage your account, process subscriptions and purchases, facilitate payouts to creators, host and display your content, and operate the marketplace.

Communication: To send you essential account-related emails including: welcome emails, purchase receipts, submission confirmations, approval or rejection notifications, subscription renewal notices, password reset emails, and important platform updates. These transactional emails are necessary for the operation of your account and cannot be opted out of while your account is active.

Content Review & Moderation: To screen uploaded content for copyright infringement using automated audio fingerprinting, to verify compliance with our Terms of Service, and to moderate content according to our review criteria.

Security & Fraud Prevention: To detect and prevent fraudulent activity, unauthorized access, spam signups, and abuse of the Platform.

Legal Compliance: To comply with applicable laws, regulations, legal processes, or enforceable governmental requests, including tax reporting requirements.

Platform Improvement: To understand how users interact with the Platform, identify technical issues, and improve the user experience. We do not use your personal information or content for advertising, profiling, or behavioral targeting.

3. HOW WE SHARE YOUR INFORMATION

KORA SOUND does not sell, rent, or trade your personal information to third parties. We share your information only in the following limited circumstances:

Payment Processing (Stripe): Transaction and billing data is shared with Stripe solely to process payments and payouts. Stripe acts as an independent data controller for payment information.

Audio Fingerprinting (ACRCloud): Audio fingerprint data (not personal information) is shared with ACRCloud solely for the purpose of automated copyright screening of uploaded content.

Email Delivery (Google Workspace): Emails sent to and from @korasound.studio addresses are processed through Google Workspace servers.

Cloud Storage Provider: Your uploaded audio files are stored on secure cloud infrastructure. Our storage provider is contractually prohibited from accessing, using, or processing your content for any purpose other than providing storage services, and is expressly prohibited from using content for AI training or data harvesting.

Web Hosting (Hostinger): Our website is hosted on Hostinger’s servers. Hostinger may have incidental access to data transmitted through their infrastructure as part of providing hosting services.

Public Profile Information: If you are a creator, your artist name, profile avatar, biography, social media links, and uploaded content (track titles, descriptions, genre tags, and audio previews) are publicly visible to all visitors of the Platform. Your email address, real name, and payment details are never publicly displayed.

Legal Requirements: We may disclose your information if required to do so by law, court order, or governmental regulation, or if we believe in good faith that disclosure is necessary to protect our legal rights, the safety of our users, or the public.

Business Transfers: In the event of a merger, acquisition, or sale of all or substantially all of our assets, your information may be transferred as part of that transaction. We will notify you via email before your information becomes subject to a different privacy policy.

4. DATA RETENTION

We retain your personal information for as long as your account is active or as needed to provide you with our services.

Active Accounts: Your account information, profile data, uploaded content, and transaction history are retained for the duration of your account’s existence.

Deleted Accounts: Upon permanent account deletion, your personal information and content will be removed from our active servers within 30 days. Content that has already been lawfully purchased by buyers under a valid license remains accessible to those buyers under the terms of their purchased license, as described in our Terms of Service.

Transaction Records: Purchase and payout records may be retained for up to 7 years after the transaction date to comply with tax reporting and financial record-keeping obligations under U.S. federal and Florida state law.

Communication Records: Emails exchanged with KORA SOUND support may be retained for up to 2 years for quality assurance and dispute resolution purposes.

Backup Copies: Routine backup copies of Platform data may persist for up to 90 days after deletion from active servers.

5. DATA SECURITY

We take the security of your personal information seriously and implement the following measures:

Encryption in Transit: All data transmitted between your browser and the Platform is encrypted using TLS (HTTPS) encryption.

Secure Payment Processing: All payment card data is handled exclusively by Stripe, which is PCI DSS Level 1 certified — the highest level of payment security certification.

Access Controls: Access to personal information is restricted to authorized personnel on a need-to-know basis.

Secure Download URLs: Purchased audio files are delivered through time-limited, cryptographically signed download URLs that are unique to each transaction.

Firewall & DDoS Protection: The Platform is protected by enterprise-grade firewall rules and DDoS mitigation technology.

Password Security: User passwords are stored using one-way cryptographic hashing and are never stored in plain text.

While we implement commercially reasonable security measures, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your information.

6. COOKIES & TRACKING TECHNOLOGIES

6.1 What Are Cookies?

Cookies are small text files stored on your device when you visit a website. They help the website remember your preferences and understand how you use the site.

6.2 Cookies We Use

Strictly Necessary Cookies: These cookies are essential for the Platform to function. They maintain your login session, remember items in your cart, and enable secure checkout. These cookies cannot be disabled without breaking core functionality.

WordPress login session cookies
EDD (Easy Digital Downloads) cart and session cookies
CSRF protection cookies

Analytics Cookies: We may use analytics tools to understand how visitors interact with the Platform, such as which pages are most visited and how users navigate the site. Analytics data is aggregated and does not personally identify individual users.

Performance Cookies: These cookies help us monitor site performance, including page load times and error rates, to ensure a smooth experience.

6.3 Third-Party Cookies

We do not use third-party advertising cookies. KORA SOUND does not serve ads, does not participate in ad networks, and does not allow third-party advertisers to place cookies on the Platform.

6.4 Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to block or delete cookies. However, disabling strictly necessary cookies may prevent you from logging in or completing purchases on the Platform.

7. YOUR RIGHTS & CHOICES

7.1 All Users

Regardless of your location, you have the right to:

Access the personal information we hold about you by contacting us at info@korasound.studio
Correct inaccurate personal information through your account settings or by contacting us
Delete your account and associated personal information by contacting us at info@korasound.studio (subject to the data retention periods described in Section 4)
Withdraw consent for non-essential data processing at any time

7.2 European Economic Area (EEA), UK & GDPR

If you are located in the EEA or UK, you have additional rights under the General Data Protection Regulation (GDPR):

Right to Portability: You may request a copy of your personal data in a structured, commonly used, machine-readable format.
Right to Restriction: You may request that we restrict processing of your personal data under certain circumstances.
Right to Object: You may object to the processing of your personal data for certain purposes.
Right to Lodge a Complaint: You have the right to lodge a complaint with your local data protection authority.

Legal Basis for Processing (GDPR): We process your personal data on the following legal bases: performance of a contract (account creation, purchases, payouts); legitimate interests (security, fraud prevention, platform improvement); legal obligation (tax records, legal compliance); and consent (where specifically requested).

7.3 California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act and California Privacy Rights Act:

Right to Know: You may request details about the categories and specific pieces of personal information we have collected about you.
Right to Delete: You may request deletion of your personal information, subject to certain exceptions.
Right to Opt-Out of Sale: KORA SOUND does not sell personal information. We have never sold personal information and have no plans to do so.
Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights.

To exercise any of these rights, contact us at info@korasound.studio. We will respond to verifiable requests within 30 days (or 45 days if an extension is necessary, with notice).

8. CHILDREN’S PRIVACY

KORA SOUND is not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at info@korasound.studio and we will promptly delete such information.

9. ANTI-AI TRAINING COMMITMENT

Consistent with Section 8 of our Terms of Service, KORA SOUND makes the following commitments regarding your personal information and content:

We will never use your personal information, content, or metadata to train, fine-tune, or develop any artificial intelligence or machine learning model.
We will never sell, license, or transfer your personal information or content to any third-party AI developers, data brokers, or research institutions for any AI-related purpose.
Our third-party infrastructure providers are contractually prohibited from using your data or content for AI training or data harvesting.

10. INTERNATIONAL DATA TRANSFERS

KORA SOUND is operated from the United States. If you access the Platform from outside the United States, your information will be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your country. By using the Platform, you consent to this transfer. For users in the EEA or UK, we rely on Standard Contractual Clauses or other approved transfer mechanisms where required by GDPR.

11. THIRD-PARTY LINKS

The Platform may contain links to third-party websites or services (such as social media profiles, AI tool providers, or external resources). We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party site you visit.

12. CHANGES TO THIS PRIVACY POLICY

KORA SOUND reserves the right to update this Privacy Policy at any time. We will provide at least 14 days’ notice of material changes via email to your registered address and by posting a notice on the Platform. The “Last Updated” date at the top of this page will reflect the most recent revision. Continued use of the Platform after the effective date of the revised Privacy Policy constitutes your acceptance of the changes.

13. CONTACT US

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

KORA SOUND LLC

General Inquiries: info@korasound.studio

Support: support@korasound.studio

Legal & Privacy: legal@korasound.studio

St. Petersburg, Florida, USA