Privacy Policy

Effective June 11, 2026

This page describes what Tunova ("we", "us") collects, why, and what we never do with it. It is written to be read, not skimmed past.

What we collect

• Account data. Your email address and sign-in state, handled by our authentication provider, Clerk.
• API usage records. Prompts you submit, job metadata (timing, status, model), URLs of generated tracks, and your token ledger — every charge, refund, and top-up.
• Payment status. Top-ups are processed by OxaPay. We receive the payment status and amount; we never see your wallet keys. There are no card payments, so we hold no card data.

What we don't do

• We don't sell your data.
• We don't run ads.
• We don't use tracking pixels or analytics cookies — only the functional cookies authentication requires.

Who processes your data

• Clerk — authentication (email, sessions).
• OxaPay — crypto payments (payment status, amounts).
• Cloudflare — infrastructure the service runs on.
• Linode (Akamai) — servers parts of the service run on.
• Suno — generation. Your prompts are sent to Suno to render music; their handling of that data is governed by their own policies.

Retention

We keep account data while your account is active, and afterwards only as required (for example, accounting records). The usage ledger is kept for billing integrity — it is the record that proves what you were and weren't charged for.

Your rights

You can request an export of your data or deletion of your account by emailing [email protected]. On deletion we remove your account data; ledger entries may be retained where billing or legal obligations require it.

Cookies

Functional only: the Clerk session cookies that keep you signed in. Nothing else.

Changes and contact

If this policy changes, the updated version appears on this page with a new effective date. Questions: [email protected].