reqrave
HomeHow It WorksFeaturesFor DJsAbout

Privacy Policy

Last updated: 27 February 2026

1. Introduction

DJ Tunez ("we", "our", "us") is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share information about you when you use the DJ Tunez platform, including our website and mobile applications.

This policy is compliant with the General Data Protection Regulation (GDPR) as applicable in the European Union and EEA. Our data controller is DJ Tunez, based in the Netherlands.

2. Data We Collect

From fans (requesters):
  • Email address (required to submit a song request and receive payment confirmation).
  • Payment information - processed entirely by Stripe; we never receive or store your card details.
  • Song request data: track title, artist, timestamp, event ID.
  • IP address and device/browser metadata (collected automatically for security purposes).

From DJs (registered users):
  • Name, email address, and password (via Firebase Authentication).
  • Profile information: stage name, bio, currency, avatar, and wallpaper images.
  • Stripe Connect account ID and onboarding status (we do not store your full banking details).
  • Event data: event name, venue, date, genre preferences, ticket pricing.
  • Transaction history associated with your events.

3. How We Use Your Data

We use the data we collect to:
  • Process song requests and facilitate payments between fans and DJs.
  • Send payment confirmation emails to fans.
  • Maintain and secure DJ accounts.
  • Display the live song request queue to the DJ.
  • Provide customer support and respond to contact form submissions.
  • Comply with legal and regulatory obligations.
  • Improve the platform through aggregated, anonymised usage analytics.
We do not sell your personal data to third parties. We do not use your data for advertising or profiling.

4. Legal Basis for Processing (GDPR)

  • Contract performance: Processing is necessary to fulfil the song request transaction.
  • Legitimate interests: Fraud prevention, platform security, and service improvement.
  • Legal obligation: Compliance with financial regulations and Stripe's KYC requirements.
  • Consent: Where you have explicitly opted in (e.g., marketing communications - not currently sent).

5. Data Sharing

We share personal data only with trusted third-party services required to operate the platform:
  • Stripe - Payment processing and DJ payouts. Stripe processes payment data under its own privacy policy and is GDPR-compliant.
  • Google Firebase - Authentication and real-time database. Data may be stored on Google Cloud servers within the EU region where possible.
  • Spotify - Music search and metadata. We use the Spotify API to return track information; we do not share your personal data with Spotify.
We may disclose data to law enforcement or regulatory authorities if required by law.

6. Data Retention

  • Song request data (including email) is retained for up to 12 months after the event.
  • DJ account data is retained for the duration of the account and up to 3 years after deletion for legal compliance.
  • Payment records are retained for 7 years in accordance with financial regulations.
  • Contact form submissions are retained for 12 months.

7. Your Rights (GDPR)

If you are located in the EU or EEA, you have the following rights:
  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your data ("right to be forgotten"), subject to legal retention requirements.
  • Restriction: Request that we limit how we process your data.
  • Portability: Request your data in a machine-readable format.
  • Objection: Object to processing based on legitimate interests.
  • Withdraw consent: Where processing is based on consent, withdraw it at any time.
To exercise any of these rights, contact us via the contact form. We will respond within 30 days.

8. Cookies & Local Storage

DJ Tunez uses minimal client-side storage:
  • localStorage: Stores your theme preference (light/dark) and Spotify API tokens (short-lived).
  • sessionStorage: Temporarily holds your pending song request during the Stripe payment redirect flow. This is cleared after the payment is confirmed.
We do not use third-party tracking cookies or advertising cookies.

9. Security

We take reasonable technical and organisational measures to protect your data, including:
  • HTTPS encryption for all data in transit.
  • Firebase Security Rules restricting database access to authorised users.
  • Payment data handled entirely by Stripe (PCI DSS Level 1 certified).
  • Firebase Authentication for secure DJ login.
No system is completely secure. If you believe your data has been compromised, contact us immediately.

10. Children's Privacy

The Service is not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects when it was last revised. Continued use of the Service after changes constitutes acceptance of the updated policy.

12. Contact & Complaints

If you have questions about this Privacy Policy or wish to exercise your rights, contact us via the contact form on our About page.

If you are unsatisfied with our response, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at www.autoriteitpersoonsgegevens.nl.