Privacy Policy

This Privacy Policy explains how Pruvi App (“we”, “us”, or “our”) collects, uses, shares, and protects your personal data when you use our music app and website. We are committed to complying with applicable data protection laws, including:

  • EU General Data Protection Regulation (GDPR)

  • United Kingdom General Data Protection Regulation (UK GDPR), Data Protection Act 2018, Privacy and Electronic Communications Regulations (PECR), and Data (Use and Access) Act 2025 (DUAA)

  • California Consumer Privacy Act (CCPA)

  • Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA), Canada’s Anti-Spam Legislation (CASL), and substantially similar provincial laws (including Quebec Law 25, Alberta PIPA, and British Columbia PIPA).

Pruvi acts as the data controller.

1. Information We Collect

We may collect the following categories of personal data:

  • Personal identifiers: name, email address, account details

  • Device information: IP address, device type, operating system

  • Usage data: tracks played, frequency, duration of sessions

  • Log and crash data

  • Analytics data: collected via third-party services (e.g. Firebase, Amplitude, Google Cloud)

  • Marketing and preference data: opt-ins, communications history

  • Location data (if you choose to enable location-based features)

2. Legal Bases for Processing

  • EU/EEA (GDPR): contract, legitimate interests, consent, legal obligations

  • UK (UK GDPR, DUAA): as above, plus recognised legitimate interests (e.g. safety, crime prevention); expanded transparency for automated decision-making and “stop-the-clock” rights in access requests

  • Canada (PIPEDA, provincial laws): meaningful consent, identified purposes, accountability

  • California (CCPA): collection, use, disclosure, and rights as described in Section 5

3. How We Use Information

We use your personal data to:

  • Provide and personalize the service, including music recommendations

  • Improve services, fix bugs, and develop new features

  • Send service and marketing communications (with appropriate consent/opt-out options)

  • Ensure security, prevent fraud, and comply with law enforcement requests

  • Conduct analytics and improve app performance

  • Manage age-appropriate experiences for children

4. Data Sharing & International Transfers

We do not sell your personal data.

We may share personal data with:

  • Service providers (e.g. Firebase, Amplitude, Google Cloud, analytics and crash reporting tools)

  • Advertising/marketing partners (only where you consent)

International Transfers

  • EU/EEA: SCCs or equivalent safeguards

  • UK: ICO-approved transfer mechanisms

  • Canada: we remain accountable and use contractual protections; in Quebec, we disclose international transfers and third-party categories

5. Your Rights

EU/EEA (GDPR)

  • Access, rectification, erasure, restriction, portability, objection, withdraw consent, lodge complaints

UK (UK GDPR, DUAA, PECR, AADC)

  • Same as GDPR, plus:

    • Right to human review of solely automated decisions with significant effect

    • Stronger transparency around profiling

    • Right to refuse cookies/SDKs except strictly necessary ones

    • Children’s rights under AADC (high-privacy by default, no manipulative design)

Canada (PIPEDA + provincial laws)

  • Access and correction

  • Withdraw consent

  • Information about international transfers and third-party disclosures

  • Quebec: right to data portability, disclosure of profiling/automated decisions, high-privacy defaults

  • Alberta/BC: right to know policies/practices, right to complain to provincial commissioners

California (CCPA)

  • Right to know, access, delete, opt out of sale/sharing (we do not sell data), non-discrimination

How to Exercise Rights

Contact: contact@pruvi.app. We may verify your identity.

6. Cookies, Tracking & Marketing

  • Cookies & SDKs: We use cookies and similar technologies for analytics, crash reporting, and (with consent) advertising. Under PECR/UK GDPR, non-essential cookies require consent. In Canada, we follow CASL and Law 25 disclosures.

  • Marketing:

    • UK: consent or soft opt-in, with opt-out at any time

    • Canada: CASL requires express or implied consent, clear sender identification, and unsubscribe mechanisms

    • California: opt-out rights apply even though we do not sell data

‹ Terms of Service