← Drumion
PricingTerms of ServicePrivacy PolicyRefund Policy

Privacy Policy

Effective date: May 2026

This Privacy Policy explains how Drumion collects, uses, stores, and protects personal information when you use our website and web application. Drumion is a subscription-based web application for drummers, music teachers, and students. By using Drumion, you agree to the collection and use of information as described in this Privacy Policy.

1. Who We Are

Drumion is operated by GrooveLab, an Individual Entrepreneur registered in Georgia (“we”, “our”, “us”). If you have any questions about this Privacy Policy or your personal data, please contact us at: support@drumion.app

2. Information We Collect

We collect only the information needed to provide, maintain, and improve Drumion.

Account Information

When you create an account, we may collect:

  • name;
  • email address;
  • password or authentication credentials;
  • account settings;
  • subscription status.

Passwords may be managed through our authentication provider and are not stored by us in plain text.

Subscription and Billing Information

Paid subscriptions are processed by Paddle, our payment provider and Merchant of Record.

We may receive limited billing-related information from Paddle, such as:

  • subscription plan;
  • subscription status;
  • transaction status;
  • renewal or cancellation status;
  • customer email;
  • country or region for tax and billing purposes;
  • invoice or receipt reference.

Drumion does not store your full credit card number, CVV, or full payment card details. Payment card data is handled securely by Paddle.

Usage Information

When you use Drumion, we may collect information about how the service is used, such as:

  • features you access;
  • practice or learning activity within the app;
  • saved exercises, grooves, lessons, or similar content;
  • teacher-student relationships created inside the app;
  • technical logs needed for security and troubleshooting.

Teacher and Student Information

If you use Drumion as a teacher, you may add or manage student-related information.

This may include:

  • student name;
  • student email address, if invited or connected through the service;
  • lesson notes;
  • assignments;
  • practice materials;
  • progress-related information.

Teachers are responsible for ensuring they have the necessary permission to add student information to Drumion, especially when working with minors.

Technical Information

We may automatically collect technical information, such as:

  • IP address;
  • browser type and version;
  • device type;
  • operating system;
  • approximate location based on IP;
  • log data;
  • error reports;
  • date and time of access.

3. How We Use Information

We use personal information to:

  • create and manage user accounts;
  • provide access to Drumion features;
  • manage subscriptions and account status;
  • process billing-related events through Paddle;
  • provide customer support;
  • improve and maintain the service;
  • detect and prevent fraud, abuse, and security issues;
  • comply with legal obligations;
  • communicate important service updates.

We do not sell your personal information.

4. Legal Bases for Processing

Where GDPR or similar privacy laws apply, we process personal data based on one or more of the following legal bases:

  • Contract — to provide Drumion and manage your subscription;
  • Legitimate interests — to maintain, secure, and improve the service;
  • Consent — where consent is required, for example for certain communications or optional features;
  • Legal obligation — where we must keep records or comply with applicable laws.

5. Payment Processing and Paddle

Payments are processed by Paddle, which acts as Merchant of Record for Drumion.

Paddle may collect and process payment and billing information, including:

  • name;
  • email address;
  • billing address;
  • payment method details;
  • tax information;
  • transaction details.

Paddle is responsible for payment processing, tax calculation, tax collection, and tax remittance where applicable. Drumion does not control Paddle’s full payment environment. Paddle processes data according to its own privacy policy.

6. Data Storage and Supabase

Drumion uses Supabase for authentication, database, and backend infrastructure.

Our application data is stored using Supabase infrastructure in the European Union region. Supabase may process data on our behalf as a service provider, including account data, authentication data, and application data.

7. Cookies and Similar Technologies

Drumion may use cookies or similar technologies to:

  • keep users signed in;
  • remember preferences;
  • secure the service;
  • understand basic usage patterns;
  • support payment and checkout flows.

Some cookies may be required for the service to function properly.

Where required by law, we will request consent for non-essential cookies.

8. Emails and Communications

We may send you emails related to:

  • account creation and login;
  • subscription and billing status;
  • security notices;
  • service updates;
  • support responses;
  • important legal or policy changes.

We may also send optional product or marketing emails if you have agreed to receive them. You can unsubscribe from marketing emails at any time.

9. Data Sharing

We share personal information only when necessary:

  • with Supabase, to provide authentication, database, and backend services;
  • with Paddle, to process subscriptions, billing, taxes, and payments;
  • with service providers who help us operate Drumion;
  • when required by law or legal process;
  • to protect the rights, safety, and security of Drumion, users, or others;
  • in connection with a business transfer, such as a merger or acquisition.

We do not sell personal data.

10. International Data Transfers

Drumion is operated from Georgia and uses service providers that may process data in other countries. Application data is stored with Supabase in the EU region. However, some service providers, including Paddle or support tools, may process data internationally. Where required, we rely on appropriate safeguards such as standard contractual clauses.

11. Data Retention

We keep personal information only as long as necessary for the purposes described in this Privacy Policy.

In general:

  • account data is kept while your account is active;
  • subscription and billing records may be kept as required for tax, accounting, legal, or compliance purposes;
  • support communications may be kept for a reasonable period;
  • technical logs are kept for a limited period unless needed for security or legal reasons.

You may request deletion of your account by contacting us at: support@drumion.app. Some information may need to be retained where required by law or for legitimate business purposes.

12. Your Privacy Rights

Depending on your location (e.g. EEA, UK, or similar jurisdictions), you may have rights to:

  • access your personal data;
  • correct inaccurate data;
  • delete your personal data;
  • restrict or object to processing;
  • request data portability;
  • withdraw consent where processing is based on consent;
  • lodge a complaint with a data protection authority.

To exercise your rights, contact us at: support@drumion.app. We may need to verify your identity before responding.

13. Children's Privacy

Drumion may be used by music teachers who work with students, including minors.

Drumion is not intended for children to create accounts without appropriate consent where required by law.

If a teacher adds information about a minor student, the teacher is responsible for obtaining any required consent from a parent or legal guardian. If you believe that a child's personal information has been provided without appropriate consent, please contact us at: support@drumion.app

14. Security

We use reasonable technical and organisational measures to protect personal information.

These measures may include:

  • secure authentication;
  • encrypted connections;
  • access controls;
  • database security measures;
  • limited access to personal data;
  • monitoring and logging for security purposes.

However, no online service can be guaranteed to be completely secure.

15. Third-Party Links

Drumion may contain links to third-party websites or services. We are not responsible for the privacy practices, content, or security of third-party services that we do not control.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will take reasonable steps to notify users (e.g. update the effective date, show an in-app notice, or send an email where appropriate). Your continued use of Drumion after the updated policy becomes effective means you acknowledge the updated policy.

17. Contact

If you have any questions about this Privacy Policy or your personal data, please contact us at: support@drumion.app

© 2026 Drumion. All rights reserved.
support@drumion.app