Privacy Policy
March 5, 2026

Privacy Policy

Effective Date: March 5, 2026

KaraMeet (“we”, “us”, or “our”) operates the KaraMeet mobile application and website (collectively, the “Service”). This Privacy Policy explains what information we collect, how we use it, who we share it with, and the choices you have. By using KaraMeet, you agree to the practices described here. This policy applies to all users including singers, venue owners, karaoke hosts, and KJ staff.

1. Information We Collect

1.1 Information You Provide

  • Full name and email address
  • Display name (your unique public handle visible to other singers)
  • Password (stored as a one-way cryptographic hash — we never store your plain-text password)
  • ZIP code and city, used to show you karaoke shows nearby
  • Profile photo, which you optionally upload and crop in the app
  • Social media links (Instagram, Facebook, TikTok, YouTube, Twitter/X) — optional, venue owners only
  • Host or KJ display name — venue owners only
  • Song list: songs you add to your personal list, along with key change settings per song
  • Group names, descriptions, and membership information you create or join
  • Outing plans: which shows your group is attending and your RSVP status
  • Feature requests, votes, and song addition requests you submit

1.2 Information We Collect Automatically

When you use KaraMeet, we automatically collect:

Activity & Presence Data

  • Last seen timestamp: updated approximately every 90 seconds while the app is open. This powers our "users online" analytics and helps venue owners understand when singers are most active.
  • Timezone: your IANA timezone string (e.g., "America/Chicago") detected from your browser or device. Used to display local times and to power regional activity analytics.
  • Last login date and time.

Location Data

  • We collect your ZIP code, which you enter manually. We convert this to approximate geographic coordinates using a public geocoding service. We do not collect GPS or precise real-time device location.
  • Venue addresses entered by venue owners are similarly geocoded for distance-based show discovery.

Check-In & Star Data

  • When you check in at a karaoke show using a nightly PIN, we record the event, the date and time, and the venue, and award one star to your account and one star to the show.
  • Check-in records are stored permanently as part of your star reputation history and contribute to city-based leaderboards.
  • We record a lock timestamp after each check-in to prevent deal-hopping on the same night.

Payment Data

  • We use Stripe, Apple In-App Purchase, or Google Play Billing to process subscription payments depending on how you access the app. We do not store your credit card number or full payment details. We store only your plan tier and the relevant billing identifier from the payment processor.

1.3 Information From Third Parties

  • Google Sign-In: If you sign in with Google, we receive your email address, name, and a unique Google identifier. We do not receive your Google password.
  • Spotify: When you search for songs, we query the Spotify API for song metadata (title, artist, album art). We do not access your Spotify account or playlists.
  • Cloudflare R2: Photos you upload are stored in Cloudflare R2 cloud storage and are accessible via a public URL once uploaded.

2. How We Use Your Information

2.1 To Provide the Service

  • Create and maintain your account
  • Show you karaoke shows near your ZIP code
  • Power song recommendations based on your song list
  • Connect you with singers through groups, outings, and the friends system
  • Process group check-ins and award stars and badges
  • Enable venue owners to manage show listings, group deals, and staff access
  • Manage subscription billing and plan features

2.2 To Personalise Your Experience

  • Display your star count, earned badges, and city leaderboard ranking
  • Show you shows within your discovery radius
  • Surface song suggestions matched to your preferences and history
  • Show venue owners when their audience is most active using anonymised timezone data

2.3 Safety and Integrity

  • Enforce nightly check-in lock periods to prevent group deal abuse
  • Detect and prevent automated account creation via reCAPTCHA
  • Investigate reports of abusive or inappropriate content
  • Block accounts that violate our Terms of Service

2.4 Communication

  • Send email verification codes when you sign up
  • Send password reset emails when requested
  • Send service-related notices (subscription changes, plan downgrades)

We do not send marketing emails unless you have explicitly opted in.

3. How We Share Your Information

We do not sell your personal information. We share information only in the following circumstances:

3.1 With Other Users (By Design)

  • Your display name, star count, and earned badges are visible to other singers on your profile, in friend searches, and in group member lists.
  • Your city leaderboard ranking is visible to other singers in the same city.
  • Show listings you create (venue owners) are publicly visible to all singers.
  • Group membership is visible to other members of the same group.

3.2 With Service Providers

  • Neon (PostgreSQL) — database hosting
  • Vercel — application hosting and deployment
  • Cloudflare R2 — photo and document storage
  • Stripe / Apple / Google — subscription payment processing
  • Google (reCAPTCHA, Maps, OAuth) — spam prevention, geocoding, sign-in
  • Spotify — song metadata search
  • Resend — transactional emails

3.3 Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, or if we believe disclosure is necessary to protect the safety of any person or to investigate fraud or abuse.

4. Data Retention

  • Account data is retained while your account is active. If you delete your account, we delete your personal data within 30 days, except where retention is required by law.
  • Check-in and star records may be retained in anonymised, aggregated form after account deletion to preserve leaderboard integrity.
  • Photos stored in Cloudflare R2 are deleted when you remove them or delete your account, with orphaned files cleaned up within 30 days.

5. Your Rights and Choices

  • Access and correction: Update your profile information directly in the app under Profile.
  • Account deletion: Delete your account from the Profile page at any time.
  • Data portability: Contact us at privacy@karameet.app to request a copy of your data.
  • California residents (CCPA): You have the right to know what data we collect, request deletion, and opt out of data sales (we do not sell data).
  • European residents (GDPR): You have rights to access, rectify, erase, restrict, or object to processing of your data.

6. Children's Privacy

KaraMeet is not directed to children under 13 and we do not knowingly collect data from children under 13. If you believe your child has provided us with personal information, contact us at privacy@karameet.app and we will delete it promptly. Users aged 13–17 should use the Service with parental consent.

7. Security

  • Passwords are hashed using bcrypt — we cannot recover your plain-text password
  • All data is transmitted over HTTPS (TLS encryption)
  • Payment processing is handled by Stripe, Apple, or Google; we never process raw card data
  • Nightly check-in PINs expire and rotate automatically

No method of electronic storage is 100% secure. We cannot guarantee absolute security.

8. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the Effective Date above and notify you of material changes by email or in-app notice. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

9. Contact Us

Questions, concerns, or data requests:

KaraMeet Privacy Team

Email: privacy@karameet.app

Website: www.karameet.app

Last updated: March 5, 2026

Terms of Service