Privacy statement

Version 1.0 - November 10, 2025

This Privacy Statement explains how Chord P.C. (“Chord”, “we”, “us”, or “our”) collects, uses, stores, and protects your personal data when you use our website, applications, and services (collectively, the “Services”). We are committed to protecting your privacy and handling your data in a transparent and secure manner in accordance with applicable data protection laws, including the EU General Data Protection Regulation (“GDPR”).

By accessing or using Chord, you acknowledge that you have read and understood this Privacy Policy.

Who we are

Chord P.C.

GEMI Registration: 185399903000

VAT: EL802922342

Address: Karaiskaki 28, Athens, 105 54, Greece

Email: support@chord.fm

Chord P.C. is the data controller for personal data processed through our Services.

Personal data we collect

Personal data we collect

We collect different categories of personal data depending on how you interact with our Services.

Account Information: When you create an account, we collect your name, email address, and password. If you choose to sign in using Google OAuth, we receive basic profile details such as your name and email address.

Usage Data and Device Information: When you access Chord, we automatically collect information such as your IP address, browser type and version, device type, operating system, interaction patterns, timestamps, and diagnostic events. We use analytics and monitoring tools, including Google Analytics, PostHog, and Sentry, to help us understand how the Services are used and to detect errors.

Recording and Content Data: When you use Chord to record or upload audio or video, we store your recordings (either as complete files or chunks), as well as metadata associated with the recording process such as device and browser information. We also store user-submitted media like profile pictures and uploaded content, transcriptions, and AI-generated outputs such as enhanced audio when you request these features.

Payment and Billing Data: When you make a purchase or subscribe to a plan, our third-party payment processor handles your payment details. We receive limited information such as transaction amounts and billing details. We do not store or process full payment card details.

Communication Data: If you contact us; such as through support requests, emails, or feedback; we collect the information you provide in those communications.

How we collect your data

We collect personal data directly from you when you create an account, upload or record content, communicate with us, or otherwise use the Services. We also collect data automatically through cookies, logging systems, and analytics tools. In some cases, data is provided to us when you use third-party integrations such as authentication providers or payment processors.

Cookies and similar technologies

We use cookies and similar technologies to operate the website, maintain security, improve performance, and measure usage. For more information about the types of cookies we use and how you can manage your preferences, please refer to our Cookie Policy.

How we use your personal data

We use personal data to provide, operate, and improve our Services. This includes creating and managing accounts, authenticating users, enabling recording and uploading features, generating transcriptions and enhancements at your request, and ensuring the reliability and security of the platform.

We also use personal data to analyze usage trends, optimize performance, detect misuse, and provide customer support. When you make purchases or subscribe to paid features, we use your information to process transactions and maintain billing records.

When you contact us, we use your information to respond and assist you. We may also use personal data to comply with legal obligations, enforce our terms, and protect the rights and safety of Chord, our users, and the public.

When we share your data

We do not sell personal data. We share data only when necessary to operate our Services or comply with the law.

We work with trusted service providers who assist with cloud hosting, storage, authentication, analytics, AI-based processing, customer support, payment processing, and operational infrastructure. These providers act as data processors and are bound by confidentiality and security obligations. They may only process your information based on our instructions.

We may disclose personal data if required to comply with legal obligations, regulatory inquiries, valid law enforcement requests, or to protect the rights, safety, or property of Chord, our users, or others. In the event of a corporate restructuring, merger, or acquisition, personal data may be transferred to the successor entity subject to confidentiality protections.

International data transfers

Because our infrastructure and providers operate globally, your personal data may be transferred to and processed in countries outside the European Economic Area (“EEA”). Whenever such transfers occur, we implement appropriate safeguards such as Standard Contractual Clauses or rely on adequacy decisions or other protective measures to ensure your data receives a comparable level of protection.

Data retention

We retain personal data only for as long as necessary for the purposes described in this Statement or as required by law. Recordings and uploaded content remain stored until you delete them. System logs are retained for 14 days. Account information is kept while your account remains active. Billing and financial records may be retained for the period required under applicable laws. AI-generated outputs such as transcriptions and enhanced audio remain until deleted by you or upon request. When data is no longer required, we delete or anonymize it.

Your rights

Depending on your location and applicable laws, you may have the right to:

  • Access your personal data

  • Correct inaccurate or incomplete data

  • Delete your personal data

  • Restrict or object to certain processing activities

  • Receive your data in a portable format

  • Withdraw consent where processing is based on consent

  • Lodge a complaint with a supervisory authority

To exercise any of these rights, contact us at support@chord.fm. We may request verification of your identity before acting on your request.

Children’s privacy

Chord is not intended for children under the age of 13, and we do not knowingly collect personal data from them. If we become aware that a child under 13 has provided personal data, we will delete it promptly. In some cases, data may be collected from parents or guardians with explicit consent when legally required.

Security

We implement appropriate technical and organizational measures to protect personal data, including:

  • Encryption in transit and at rest

  • Access controls

  • Monitoring and alerting

  • Secure infrastructure hosted with reputable cloud providers

However, no online service is entirely risk-free; we cannot guarantee absolute security.

Account and data deletion

If you request deletion of your account, we will remove your personal data and user-generated content from our systems. Some deletions require manual processing. Certain records, such as billing and tax-related information, may be retained as required by law.

Changes to this policy

We may update this Privacy Statement occasionally to reflect changes in our practices or legal requirements. Updates will be posted on this page with a revised “Versioned” date. If changes are material, we may notify you through email or in-app notifications.