Privacy Policy

This Privacy Policy explains how Take One Audio collects, uses, shares, and protects information related to our website, software products, customer accounts, licensing, downloads, demos, subscriptions, support, and related communications.

Take One Audio is the business using Take One Audio as its trade name or DBA. In this policy, "Take One Audio," "we," "us," and "our" refer to that business. Where we decide why and how personal information is processed, Take One Audio is the privacy controller or business for that information. We do not publish a physical mailing address on this site. You can contact us at the email address in the Contact section below.

Some third parties, such as Lemon Squeezy when acting as merchant of record, may act as separate controllers or businesses for parts of the checkout, payment, tax, fraud-prevention, invoice, refund, subscription, and chargeback process. Their own privacy terms may also apply.

We may collect the following categories of information:

• account information, such as name, email address, account ID, authentication status, sign-in method, and profile details;
• order and billing metadata, such as product purchased, order ID, subscription status, license status, refund status, tax region, invoice identifiers, checkout identifiers, and payment processor identifiers;
• checkout and consent records, such as terms version, privacy version, acceptance checkbox status, order acknowledgement, subscription acknowledgement, renewal consent, timestamp, IP address, user agent, and related audit metadata;
• licensing and activation data, such as license keys, activation records, deactivation records, demo status, product version, platform, device name if provided by the app, and hashed device identifiers;
• download and delivery data, such as requested product, release version, platform, channel, timestamp, entitlement status, IP hash, and user agent;
• demo email verification data, such as email address, verification status, token status, expiration times, download status, and related audit records;
• support and community information, such as messages, screenshots, logs, bug reports, forum posts, and any files or details you choose to send;
• communication information, such as transactional email delivery, support replies, preference records, unsubscribe status, and marketing consent if marketing is offered; and
• technical information, such as IP address, user agent, browser, operating system, referring page, request logs, error logs, security events, cookie or session identifiers, and approximate region inferred from network or checkout information.

We collect information directly from you when you create an account, start a demo, download software, buy a license, activate a product, cancel a subscription, request a refund, contact support, or post in community features. We also collect information automatically from the website, software, licensing systems, security logs, cookies, and similar technologies.

We may receive information from service providers and partners that help us operate the service, including authentication providers, checkout and merchant-of-record providers, hosting providers, database providers, email providers, storage providers, analytics providers if enabled, and support tools if enabled.

For licensing, activation, demo enforcement, abuse prevention, and entitlement checks, the software may send a stable device identifier or machine fingerprint. We store hashed device identifiers for these purposes. We do not intentionally store raw machine fingerprints after hashing unless temporarily necessary for security, debugging, or abuse-prevention investigation.

Unless a product feature expressly uploads or syncs data, Take One Audio software is not intended to collect your Pro Tools sessions, audio files, cue sheets, project files, macros, automation data, or production documents. If you send project files, screenshots, logs, or other materials to support, we will use them to investigate and respond to your request.

Payments are processed by Lemon Squeezy, which may act as the merchant of record for purchases made through our checkout. We do not receive or store full payment card numbers.

We receive purchase, subscription, refund, license, customer, order, checkout, and tax metadata from Lemon Squeezy so we can provide downloads, account access, license checks, subscription access, receipts, support, refunds, fraud prevention, and compliance records.

We use information to:

• provide, secure, and maintain the website and products;
• create, authenticate, and manage accounts;
• process purchases, subscriptions, renewals, cancellations, refunds, taxes, receipts, and chargebacks;
• issue, sync, check, activate, deactivate, suspend, and revoke licenses;
• provide demos, downloads, updates, release access, and account entitlements;
• send demo verification codes, receipts, account notices, security notices, and other transactional emails;
• record checkout assent, subscription consent, trial-to-paid consent, cancellation requests, and order acknowledgements;
• respond to support requests and diagnose product issues;
• prevent fraud, chargeback abuse, unauthorized sharing, license-key publication, and security incidents;
• improve products, documentation, support, security, and customer workflows;
• enforce our Terms of Service and other legal terms; and
• comply with legal, tax, accounting, consumer-protection, and operational obligations.

Where EU, UK, or similar law requires a legal basis, we process personal information under one or more of the following legal bases: performance of a contract with you, including account, checkout, licensing, delivery, subscription, refund, and support activities; compliance with legal obligations, including tax, accounting, consumer-protection, sanctions, and fraud-prevention duties; legitimate interests, including product security, anti-abuse enforcement, license enforcement, product improvement, support quality, and ordinary business administration; and consent, including where required for marketing, non-essential cookies, trial-to-paid conversion, immediate digital-content supply, or withdrawal of certain consumer cancellation rights.

Where processing is based on consent, you may withdraw consent at any time, but withdrawal does not affect processing that occurred before withdrawal or processing that is allowed under another legal basis.

We may share information with service providers, processors, contractors, and platforms that help operate the website, products, accounts, payments, databases, downloads, email, logs, security, analytics, support, and compliance workflows. These providers may process information only as needed to provide their services to us or as otherwise allowed by their terms and applicable law.

Current providers may include Clerk for authentication and user management; Lemon Squeezy for checkout, merchant-of-record, payment, tax, invoice, refund, license, and subscription services; Vercel and Vercel Blob for hosting, serverless infrastructure, deployment, logs, and file storage; Neon for database hosting; DreamHost or Resend for transactional email; YouTube's privacy-enhanced embed for setup videos; and analytics or support vendors if we enable them.

When a provider processes personal information for us as our processor or service provider, we use commercially reasonable steps to maintain appropriate contractual terms, such as data-processing agreements, service-provider terms, confidentiality commitments, security obligations, transfer terms, and subprocessor disclosures where required. We review vendor DPA and subprocessor materials for Clerk, Lemon Squeezy, Vercel, Neon, DreamHost, Resend, and any analytics or support vendor before relying on that vendor for production personal-information processing. Some providers may use their own subprocessors, and some providers may act as independent controllers or businesses for specific activities.

We may also disclose information if required by law, to protect rights and security, to investigate fraud or abuse, in connection with a business transfer, or with your direction or consent.

The website may use cookies, local storage, pixels, and similar technologies for sign-in, account security, checkout behavior, anti-abuse checks, load balancing, session management, CSRF protection, demo verification, downloads, and basic site operation. Authentication cookies are necessary for account and download access.

We do not currently use third-party advertising pixels or cross-context behavioral advertising cookies on the Take One Audio website. We do not currently sell or share personal information for cross-context behavioral advertising as those terms are defined under California privacy law. If we add non-essential analytics, advertising, remarketing, or similar tracking, we will update this policy and request consent or provide opt-out controls where required.

Embedded media, such as setup videos served through YouTube's privacy-enhanced embed, may set cookies or collect technical information when the video player loads or you interact with it. Your browser may allow you to block or delete cookies, but some account, checkout, demo, or download features may stop working.

We keep personal information only as long as reasonably necessary for the purposes described in this policy, unless a longer period is required or allowed for legal, tax, accounting, security, backup, fraud-prevention, dispute, or compliance reasons. Our general retention targets are:

• account profile and authentication records: while the account is active and generally up to 2 years after account closure or inactivity, unless needed for licenses, disputes, tax records, or security;
• order, invoice, tax, refund, subscription, cancellation, and chargeback records: generally 7 years after the transaction or subscription ends;
• license, entitlement, activation, deactivation, and hashed device records: while the license, subscription, or demo remains active and generally up to 3 years after expiration, replacement, refund, revocation, or last activity; perpetual-license records may be kept while the license remains valid so we can honor and verify the license;
• checkout assent, terms acceptance, subscription consent, trial-to-paid consent, cancellation, and acknowledgement records: generally at least 3 years, or 1 year after the subscription ends, whichever is longer, where needed for automatic-renewal, consumer-protection, or dispute records;
• demo email verification records, verification codes, and download tokens: generally up to 90 days after expiration or download, except abuse-prevention summaries may be kept up to 2 years;
• download events, IP hashes, user agents, request logs, error logs, and security logs: generally 12 to 24 months, unless a security, fraud, abuse, or operational issue requires longer retention;
• support emails, bug reports, screenshots, and files you send us: generally 3 years after the support matter closes, unless you ask us to delete them earlier and we no longer need them;
• marketing consent and unsubscribe records: until you withdraw consent, opt out, or the record is no longer needed; suppression records may be kept to honor opt-outs; and
• backups: generally 30 to 90 days before rotation or deletion, unless a backup must be preserved for security, legal, or recovery reasons.

These periods are targets, not guarantees of immediate deletion. We may delete, anonymize, or aggregate information sooner when it is no longer needed.

Depending on where you live, you may have rights to request access to, correction of, deletion of, portability of, or restriction of personal information. You may also have the right to object to certain processing, withdraw consent where processing is based on consent, opt out of certain disclosures, or appeal a decision we make about a privacy request.

To make a request, email us at the contact address below. We may need to verify your identity before responding. Some requests may be limited by legal, security, fraud-prevention, tax, accounting, chargeback, licensing, backup, consumer-protection, or operational requirements.

To appeal a privacy-rights decision, reply to our decision email or email hello@takeoneaudio.com with the subject line "Privacy Appeal."

If EU, UK, Swiss, or similar data-protection law applies, you may have rights to access, rectify, erase, restrict, object to, or receive a portable copy of your personal information. You may also have the right to object to processing based on legitimate interests, withdraw consent, and lodge a complaint with your local supervisory authority.

Take One Audio is operated from the United States. If you access the website or products from outside the United States, your information may be processed in the United States and other countries where our service providers operate. Where required, we use appropriate transfer mechanisms, such as standard contractual clauses, data-processing terms, adequacy decisions, supplementary safeguards, or recognized data-transfer frameworks used by our service providers.

We have not appointed a data protection officer or EU/UK representative unless required by applicable law. Privacy questions and requests can be sent to the contact email below.

This section is intended for California residents and applies to the extent the California Consumer Privacy Act, as amended by the California Privacy Rights Act, applies to Take One Audio. We are not representing that the CCPA applies to us in every circumstance, but we use the CCPA/CPRA-defined meanings of "sell," "share," "personal information," "sensitive personal information," "service provider," and "contractor" in this section.

Based on our current practices, we do not sell personal information and do not share personal information for cross-context behavioral advertising as those terms are defined by the CCPA/CPRA. We do not knowingly sell or share personal information of consumers under 16. We do not use or disclose sensitive personal information for purposes that require a "Limit the Use of My Sensitive Personal Information" link.

In the past 12 months, we may have collected and disclosed to service providers or contractors the following categories of personal information for the purposes described in this policy: identifiers; customer records and account information; commercial information; internet or other electronic network activity; approximate location such as region or tax country; support content that you choose to provide; and inferences or preferences only if derived from your account, product, or communication activity. We disclose these categories to providers such as authentication, checkout, hosting, database, storage, email, security, analytics if enabled, and support vendors if enabled.

California residents may have rights to know, access, delete, correct, and receive information about certain disclosures of personal information, as well as rights to opt out of CCPA-defined sale or sharing if those activities occur. We will not discriminate against you for exercising applicable privacy rights. To exercise a right, email us at the contact address below. Authorized agents may submit requests if they provide proof of authority and we can verify the request.

We may send transactional and service messages about accounts, demos, downloads, purchases, receipts, subscriptions, renewals, cancellations, refunds, license status, security, support, and important product changes. These messages are not optional when necessary to provide the product or comply with legal obligations.

If we offer marketing emails, we will use consent or another legal basis where required and will provide an unsubscribe method. Opting out of marketing does not stop transactional or service messages.

We use practical administrative, technical, and organizational safeguards to protect account, licensing, checkout, download, database, and support systems. No online system is perfectly secure, so please contact us if you believe your account, license, or personal information has been misused.

Paid Take One Audio products may only be purchased or used by adults or legal-majority users. Free website and demo interactions are not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided personal information to us, contact us so we can review and delete it where required.

We may update this Privacy Policy from time to time. If changes are material, we will take reasonable steps to notify users, such as updating this page, changing the date above, sending an account notice, or including notice in checkout or product communications.

For privacy questions, rights requests, refunds, cancellation help, licensing questions, or security concerns, email hello@takeoneaudio.com. We do not publish a physical mailing address on this site.