Privacy Policy
Last updated: 3/3/2026
At Kordra, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website or use our application (the "Service").
1. Who We Are (The Data Controller)
For the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, the Data Controller is Godsall.Dev (trading as "Kordra").
Contact Details:
Address: 124 City Road, London, EC1V 2NX, United Kingdom
Email: support@kordra.io
2. Information We Collect
We collect information that you provide directly to us when you register for an account, create a project, or communicate with us. This includes:
- Identity & Contact Data: Name, email address, and authentication credentials.
- Financial Data: Payment information (processed securely by Stripe; we do not store your full credit card details).
- User-Generated Content: Lyrics, song structures, prompts, and project data you create.
- Technical & Usage Data: IP address, browser type, device information, and data regarding how you interact with our Service.
3. How We Use Your Information & Our Lawful Basis
Under UK data protection law, we must have a valid legal basis to process your data. We use your information for the following purposes:
- To provide and maintain the Service (Contractual Necessity): Processing your registration, generating your music projects, and handling payments.
- To improve our Service and ensure security (Legitimate Interests): Analyzing technical data to troubleshoot bugs, monitoring usage to improve features, and sending critical security alerts.
- To communicate with you (Consent / Legitimate Interests): Responding to your support requests or sending you marketing updates (only if you have opted in).
4. Sharing Your Data & Third-Party Services
We do not sell your personal data. We only share your data with trusted third-party processors necessary to operate our Service:
- Payment Processors: Stripe (for secure subscription billing).
- Hosting & Database Providers: Supabase (for secure cloud storage and database hosting).
- AI Providers: Third-party AI models used to generate your requested content.
5. International Data Transfers
Because some of our third-party service providers (like Stripe, Supabase, and our AI partners) are based outside of the UK (e.g., in the United States), your data may be transferred internationally. Whenever we transfer your personal data out of the UK, we ensure a similar degree of protection is afforded to it by utilizing UK-approved standard contractual clauses or verifying the recipient country has an adequacy decision.
6. Data Retention
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, or accounting requirements. If you delete your account, your user-generated content and personal data will be deleted or anonymized, except where we are required by law to retain transaction records.
7. Your Data Protection Rights
Under the UK GDPR, you have the following rights regarding your personal data:
- The right to access: Request a copy of the personal data we hold about you.
- The right to rectification: Request that we correct any inaccurate or incomplete data.
- The right to erasure ("Right to be forgotten"): Request that we delete your personal data.
- The right to restrict or object to processing: Ask us to pause or stop processing your data under certain circumstances.
- The right to data portability: Request the transfer of your data to you or a third party.
To exercise any of these rights, please contact us at support@kordra.io. We have one month to respond to your request.
8. Data Security
We have implemented appropriate technical and organizational security measures designed to protect your data from being accidentally lost, used, or accessed in an unauthorized way. However, no method of transmission over the internet or electronic storage is 100% secure.
9. How to Complain
If you have any concerns about our use of your personal information, you can make a complaint to us at support@kordra.io. You can also complain to the Information Commissioner’s Office (ICO) if you are unhappy with how we have used your data.
ICO website: https://www.ico.org.uk
10. Changes to this Policy
We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new Privacy Policy on this page and updating the "Last updated" date.