App Privacy Policy

1. Information we collect

We may collect the following categories of information as needed to provide the Service:

• Account information (identifiers used for sign-in, display name, etc.)
• Lesson-related information (meeting IDs, lesson titles, scheduled times, etc.)
• Usage information (screens viewed, button taps, call start/end times, in-call feature usage, etc.)
• For call quality and device analysis, audio routing information (category identifiers for microphone/speaker, shortened device labels provided by the OS, etc.; Bluetooth device friendly names may be included)
• Subscription-related information (plan purchased, renewal status, etc.)
• General device information (OS type and version, app version, etc.)

Because the Service provides video and audio calls, we may request access to the following device features:

• Camera
• Microphone
• Notifications (push notifications)
• Calendar (when you use features that register lesson schedules)

These permissions are used only to provide calls and lesson scheduling. You can revoke them in device settings (some features may become unavailable).

2. How we use information

We use collected information primarily for:

• Providing, maintaining, and improving the Service
• Supporting music lessons (scheduling, QR invitations, call connectivity)
• Preventing misuse and ensuring security
• Analytics, new feature development, and quality improvements
• Managing subscriptions, billing, and customer support
• Communicating important notices (spec changes, incidents, etc.)

3. Analytics and third-party services

We may use the following services to understand usage and improve quality:

• Google Analytics (Google Analytics 4, Google LLC)
• Firebase Analytics / Google Analytics for Firebase (Google LLC)
• Apple services such as the App Store / StoreKit, push notifications, iCloud / CloudKit, etc.
• Amazon Web Services (AWS): call control, cloud recording, and push notification infrastructure (Amazon.com, Inc.)

These services may collect anonymized device and event data. Examples of app events include screen views, call join/leave (reason, duration bucket, host/guest role, audio mode), feature usage (virtual backgrounds, filters, etc.), audio routing snapshots, and funnel-related actions (join confirmation, calendar add, lesson deletion, opening legal documents from settings, etc.). We do not send email addresses or precise device identifiers for direct identification.

Please also review each provider’s privacy policy for details on data collection and purposes.

4. Where data is stored

We primarily store data in:

• Apple iCloud / CloudKit (lesson data, QR scan history, user profile, etc.)
• On-device storage (settings and some caches)
• Firebase and related analytics infrastructure (usage data)
• Amazon Web Services (AWS S3): cloud recording data (when the recording feature is used)

5. Sharing with third parties

Except as required by law, we do not provide personal information to third parties without your consent. Service providers listed under “Analytics and third-party services” are handled as processors where applicable, not as independent third-party recipients for disclosure purposes.

6. Security

We implement appropriate safeguards—including access controls, encryption in transit where applicable, and permission management—to help protect information against unauthorized access, loss, or alteration.

7. Minors

If you are a minor, please use the Service with the consent of a parent or guardian. Parents and guardians should review this Policy regarding children’s information.

Additional notice for EU/EEA users

If GDPR or similar data-protection laws apply to you, we process personal data based on the legal grounds of providing the Service, performing a contract, maintaining security, complying with legal obligations, and our legitimate interests.

Subject to applicable law, you may request access, correction, deletion, restriction of processing, objection to processing, data portability, and withdrawal of consent. Please contact us through the contact form if you wish to exercise these rights.

Because we use service providers such as Apple, Google/Firebase, Agora, and Netlify, personal data may be processed in Japan, the United States, or other countries and regions. Where applicable, we aim to rely on appropriate safeguards such as each provider’s data-processing terms and standard contractual clauses. We retain data only for as long as necessary for the purposes described in this Policy, or as needed for legal, billing, security, fraud-prevention, and support reasons.

8. Account and data deletion; sign-out (iOS app)

In the iOS app, you can take the following actions from Settings:

• Sign out: Removes the on-device association with your Apple account. You may be able to continue as a guest. Data in CloudKit may not be deleted automatically.
• Delete account and data: When signed in with an Apple account, after confirmation (including typing “delete” where prompted), we delete, within the scope of this operation, Meeting records you host, GuestSavedMeeting copies you saved as a guest, UserProfile display name, and related records in this app’s iCloud container (CloudKit), and may remove some on-device caches and sign-in trial records. If you have used the recording feature, cloud recording data stored on AWS S3 is also included in the deletion scope. Depending on connectivity, some data may not be deleted.

In-app purchases (subscriptions) must be cancelled or managed separately in Apple’s subscription settings. Account deletion in the app does not automatically cancel billing.

Data that exists only on another user’s device or in their cloud cannot always be removed through this app alone.

Some values stored in iCloud for the same Apple ID (e.g. call-time sync via key-value storage, CloudKit records for sign-in trials or subscription cycles) may be excluded from deletion for technical or billing-consistency reasons.

To remove an Apple ID or disconnect “Sign in with Apple” at the OS level, use Apple’s account or device settings. See also our FAQ.

9. Contact

For questions about this Policy or our handling of personal information, please use the contact form on this site.

10. Changes

We may update this Policy without prior notice to reflect legal requirements or service changes. Material changes will be announced on the website or in the app where appropriate.

11. Operator

The Service is operated by:

• Operator: STONEHASH SOLUTION
• Contact: Contact form

Effective: March 13, 2026
Last updated: June 17, 2026 (added cloud recording and AWS references) / May 7, 2026 (updated EU/EEA supplemental notice) / May 6, 2026 (EU/EEA notice and analytics consent) / May 4, 2026 (separated app-specific page) / April 21, 2026 (in-app “Delete account and data” and section numbering) / April 4, 2026 (analytics events and audio routing)