rooot./Privacy Policy

Privacy Policy.

Last updated: April 14, 2026

01The short version

We collect the minimum we need to run rooot. — your account info, what you download, and what you pay for. We don’t sell your data. We don’t run ads. We use a small number of trusted services that make rooot. work — see section 4 for the full list.

The rest of this page is the long version.

02Information we collect

Account

Email, display name, password hash, avatar selection. Required to create an account.

Billing

Subscription tier, credit balance, purchase history. Card details are handled by Stripe — we never see or store them.

Usage

Sounds you preview, like, download, and producers you follow. Used to personalize your feed and for aggregate analytics.

Preferences

Genres, download folder label, notification settings. Set during onboarding or in Settings.

Technical

IP address, browser type, device info, approximate location. Collected automatically for security, abuse prevention, and service delivery.

Support

Messages you send us, including any info you include. Used to respond to your request.

What we don’t collect: audio fingerprints of what you upload to your own DAW, files on your computer outside the rooot. download folder, or browsing activity outside of rooot.

03How we use your information

Running the service. Authenticate you, deliver downloads, charge you correctly, personalize your feed.
Customer support. Respond to questions and fix problems.
Product improvement. Aggregate, anonymized analytics to understand what’s working and what isn’t.
Security & abuse. Detect fraud, prevent account takeovers, enforce our Terms.
Communications. Transactional emails (receipts, password resets, security alerts). Marketing emails only if you opt in.

We do not use your data to train AI models, and we do not sell or rent your personal information to third parties.

05Cookies & similar technologies

We use cookies for two purposes:

Authentication. Keep you signed in. These cookies are set by Supabase, our authentication provider, and include a session token plus a brief OAuth verifier during sign-in.
Analytics. We use Vercel Analytics and Vercel Speed Insights to measure traffic and page-load performance. These are first-party analytics — we don’t share the data with advertisers or third parties.

UI preferences (like accent color and layout density) are saved to your account in our database, not in cookies — they follow you across devices when you sign in.

We don’t use advertising cookies or third-party tracking pixels.

06How long we keep data

Account data: as long as your account is active.
Purchase / download records: 7 years after the transaction, for tax and legal compliance.
Server logs: 30 days.
Support messages: 2 years.

When you delete your account, we delete personal data within 30 days, except records we’re legally required to retain (e.g. tax records).

07Your rights

Depending on where you live (GDPR in the EU/UK, CCPA in California, etc.), you may have the right to:

Access a copy of the personal data we hold about you.
Correct inaccurate information.
Delete your account and personal data.
Export your data in a portable format.
Object to certain uses of your data.

To make a request, email privacy@rooot.online. We’ll respond within 30 days.

08How we protect your data

Passwords are hashed with modern algorithms. We never see them in plain text.
Data is encrypted in transit (TLS) and at rest.
Access to production systems is limited to employees who need it.
We use Stripe for payments so card data never touches our servers.

No system is 100% secure. If a breach happens that affects you, we’ll notify you as required by law.

09Children

rooot. is not intended for children under 13. We don’t knowingly collect personal information from anyone under 13. If you believe a child has created an account, email privacy@rooot.online and we’ll delete it.

10International users

rooot. is operated from the United States. If you use rooot. from outside the US, your information is transferred to and processed in the US. Where required, we rely on standard contractual clauses for data transfers out of the EU/UK.

11Changes to this policy

We may update this policy at any time. The latest version is always posted here, and changes take effect immediately. By continuing to use rooot. after an update, you agree to the new policy.

12Contact us

Privacy questions or requests: privacy@rooot.online. General support: support page.

Also see: Terms of Service · Support

01The short version

The rest of this page is the long version.

02Information we collect

Account

Email, display name, password hash, avatar selection. Required to create an account.

Billing

Subscription tier, credit balance, purchase history. Card details are handled by Stripe — we never see or store them.

Usage

Sounds you preview, like, download, and producers you follow. Used to personalize your feed and for aggregate analytics.

Preferences

Genres, download folder label, notification settings. Set during onboarding or in Settings.

Technical

IP address, browser type, device info, approximate location. Collected automatically for security, abuse prevention, and service delivery.

Support

Messages you send us, including any info you include. Used to respond to your request.

What we don’t collect: audio fingerprints of what you upload to your own DAW, files on your computer outside the rooot. download folder, or browsing activity outside of rooot.

03How we use your information

Running the service. Authenticate you, deliver downloads, charge you correctly, personalize your feed.
Customer support. Respond to questions and fix problems.
Product improvement. Aggregate, anonymized analytics to understand what’s working and what isn’t.
Security & abuse. Detect fraud, prevent account takeovers, enforce our Terms.
Communications. Transactional emails (receipts, password resets, security alerts). Marketing emails only if you opt in.

We do not use your data to train AI models, and we do not sell or rent your personal information to third parties.

05Cookies & similar technologies

We use cookies for two purposes:

Authentication. Keep you signed in. These cookies are set by Supabase, our authentication provider, and include a session token plus a brief OAuth verifier during sign-in.
Analytics. We use Vercel Analytics and Vercel Speed Insights to measure traffic and page-load performance. These are first-party analytics — we don’t share the data with advertisers or third parties.

UI preferences (like accent color and layout density) are saved to your account in our database, not in cookies — they follow you across devices when you sign in.

We don’t use advertising cookies or third-party tracking pixels.

06How long we keep data

Account data: as long as your account is active.
Purchase / download records: 7 years after the transaction, for tax and legal compliance.
Server logs: 30 days.
Support messages: 2 years.

When you delete your account, we delete personal data within 30 days, except records we’re legally required to retain (e.g. tax records).

07Your rights

Depending on where you live (GDPR in the EU/UK, CCPA in California, etc.), you may have the right to:

Access a copy of the personal data we hold about you.
Correct inaccurate information.
Delete your account and personal data.
Export your data in a portable format.
Object to certain uses of your data.

To make a request, email privacy@rooot.online. We’ll respond within 30 days.

08How we protect your data

Passwords are hashed with modern algorithms. We never see them in plain text.
Data is encrypted in transit (TLS) and at rest.
Access to production systems is limited to employees who need it.
We use Stripe for payments so card data never touches our servers.

No system is 100% secure. If a breach happens that affects you, we’ll notify you as required by law.

09Children

10International users

11Changes to this policy

We may update this policy at any time. The latest version is always posted here, and changes take effect immediately. By continuing to use rooot. after an update, you agree to the new policy.

12Contact us

Privacy questions or requests: privacy@rooot.online. General support: support page.

Also see: Terms of Service · Support

01The short version

02Information we collect

03How we use your information

04Who we share with

05Cookies & similar technologies

06How long we keep data

07Your rights

08How we protect your data

09Children

10International users

11Changes to this policy

12Contact us

01The short version

02Information we collect

03How we use your information

04Who we share with

05Cookies & similar technologies

06How long we keep data

07Your rights

08How we protect your data

09Children

10International users

11Changes to this policy

12Contact us