GDPR Compliance

We use cookies to ensure you get the best experience on our website. By continuing to use our site, you accept our use of cookies, privacy policy and terms of service.

Privacy policy

This Privacy Policy explains how Audiack Ltd (“Audiack”, “we”, “us”, “our”) collects, uses, shares, and protects your information when you use the Audiack audition-tracking application and website (the “Service”). It also explains your rights under the UK GDPR and related laws.

Who we are & contact

  • Controller: Audiack Ltd, ⚙️Registered company number & address.
  • Contact (privacy): support@audiack.com
  • If we appoint a Data Protection Officer (DPO) or EU/UK representative, details will appear here.

What information we collect

  • Account data: name, email, password (hashed), country, plan/tier, preferences.
  • Service data you add: audition entries, projects, notes, contacts (e.g., casting directors, agents), files (e.g., self-tape links), calendar dates, outcomes, reminders, income/expense entries you choose to track.
  • Transactional data: subscription status, invoices, last 4 digits of card, expiry month/year (stored by our payment processor; we don’t store full card numbers).
  • Device & usage: IP address, device/browser type, pages viewed, actions, timestamps, referral/source, approximate location derived from IP.
  • Support data: messages, attachments, bug reports, feedback.
  • Cookies & similar: session/auth cookies, preferences, analytics cookies. See our Cookie Policy.

Why we use your information (purposes & legal bases)

We process personal data for the purposes below under the legal bases indicated:

  • Provide and operate the Service (create and maintain your account, save auditions, reminders, files) — performance of a contract.
  • Payments & subscriptions (billing, fraud prevention, receipts) — performance of a contract and legitimate interests; some records kept to meet legal obligations (tax/audit).
  • Customer support & communications (service emails, notices) — performance of a contract and legitimate interests.
  • Service improvement & analytics (usage metrics, diagnostics) — legitimate interests. Where required for analytics/marketing cookies, we rely on consent.
  • Security & abuse prevention (login protection, suspicious activity detection) — legitimate interests and legal obligations.
  • Marketing (news, tips, offers) — consent where required; you can opt out at any time.

Do you have to provide data?

Some information is necessary to create an account and use the Service (e.g., email, password). If you do not provide required fields, we may be unable to create or maintain your account. Adding audition/finance/contact data is optional and controlled by you.

How we share information

  • Processors / vendors: trusted service providers who help deliver the Service (e.g., hosting, email delivery, analytics, support tools, error monitoring, file storage) under contracts and confidentiality obligations.
  • Payments: Stripe (or similar) processes payments; they act as an independent controller for card data. See their privacy notice.
  • Legal & compliance: if required by law, court order, or to protect rights, safety, and security.
  • Business transfers: in a merger, acquisition, or asset sale, data may transfer subject to this Policy’s protections.
  • We do not sell your personal data.

International transfers

We may transfer data outside the UK/EEA (e.g., to the US) where our vendors are located. When we do, we use appropriate safeguards such as the UK International Data Transfer Agreement (IDTA), UK Addendum to the EU Standard Contractual Clauses (SCCs), or other legally recognised mechanisms.

Retention

We keep personal data only as long as needed for the purposes described:

  • Account & Service data: for your subscription term and a reasonable period thereafter if needed to answer queries, provide exports, or meet legal obligations.
  • Financial/transaction records: typically 6–7 years for tax/audit.
  • We may anonymise data for long-term analytics and product improvement.

Security

We use appropriate technical and organisational measures to protect data (encryption in transit, access controls, secure development practices). No system is 100% secure. Please keep your credentials safe and notify us immediately if you suspect unauthorised access.

Your rights (UK GDPR)

You have the right to:

  • Access your personal data and receive a copy.
  • Correct inaccurate or incomplete data.
  • Delete your data in certain circumstances.
  • Restrict or object to certain processing.
  • Data portability (receive data in a structured, commonly used format).
  • Withdraw consent at any time where processing is based on consent.
  • Lodge a complaint with the UK Information Commissioner’s Office (ICO): ico.org.uk.

To exercise rights, contact support@audiack.com. We may need to verify your identity.

Children

Audiack is for individuals aged 18+. We do not knowingly collect personal data from children. If you believe a child has provided data, please contact us so we can delete it.

Cookies & analytics

We use essential cookies for login and security, and (with consent where required) analytics and preference cookies. For details and controls, see our Cookie Policy.

Third-party services you connect

If you connect third-party tools (e.g., calendars, cloud storage), their processing is governed by their own policies. Please review them before connecting. We are not responsible for third-party practices.

Automated decision-making

Audiack does not conduct automated decision-making producing legal or similarly significant effects about you. We may use non-intrusive analytics to improve features and user experience.

Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be notified via the Service or by email. Your continued use after the effective date means you accept the updated policy.

How to contact us

Last updated: 10 Sep, 2025