Privacy Policy

The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to personally identify you.

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. Their contact details can be found in the legal notice of this website.

How do we collect your data?

Your data is collected by you providing it to us. This may be data that you enter in a contact form. Other data is collected automatically or with your consent when you visit the website by our IT systems. This is primarily technical data (e.g. internet browser, operating system or time of page access).

We use the following external AI services as processors or recipients of your data:

By using Suno Inc., your data is transferred to the United States of America. The USA is considered a third country within the meaning of the GDPR.

Legal basis for data transfer: The transfer is based on Art. 49(1)(b) GDPR (necessity for contract performance). The creation of your personalized song requires the use of Suno's AI platform; a comparable service cannot be provided without this service.

We note that the level of data protection in the USA does not correspond to that of the EU. In particular, US authorities may gain access to your data under certain circumstances. Suno states that it takes appropriate technical and organizational security measures to protect your data.

The following data is processed by AI systems:

• Name(s) of the gift recipient(s)
• Personal stories, anecdotes, and memories
• Occasion for the gift (e.g., wedding, birthday)
• Special requests and details
• Preferred music style

AI processing is carried out for the purpose of creating your personalized song:

• Generation of individual song lyrics based on your story
• Creation of a suitable melody and musical composition
• Production of the final song in the desired audio formats

The processing of your data by AI systems is carried out on the basis of Art. 6 (1) (b) GDPR (contract performance). The provision of the mentioned data is necessary for the creation of your personalized song. Without this information, the contractually owed service cannot be provided.

We take appropriate technical and organizational measures to protect your data during AI processing. Data transmission is encrypted. We delete input data on our systems after completion of song creation according to the periods stated below. Please note that deletion at Suno is subject to Suno Inc.'s policies (see their privacy notice).

AI processing is used exclusively for the creative production of your song. There is no automated decision-making within the meaning of Art. 22 GDPR that produces legal effects concerning you or similarly significantly affects you.

In accordance with the EU Artificial Intelligence Regulation (EU 2024/1689, in force since August 2024), we inform you transparently about the use of AI systems in creating your song:

• Your song is created with AI assistance – AI generates music and vocals, while our team writes the lyrics and curates the final result
• We use the service Suno Inc. (USA) for this purpose. The provider may use input data in accordance with its terms of service to improve its services and AI models (see notice above)
• The created song is an individually generated work for you

Your right to human review: You can request at any time that a Liedify employee reviews and evaluates the AI result. Use our revision process or contact us directly at hallo@liedify.com.

• Input data (story, names, wishes): 30 days after delivery of the song on our systems, then irreversible deletion. Retention at Suno Inc. is governed by their privacy notice.
• Media files (MP3, WAV, cover artwork, lyric card, video): 12 months after delivery on our servers, then automatic deletion. We recommend saving the files locally immediately after receipt.
• Order data and invoices: 10 years pursuant to § 257 HGB and § 147 AO
• Email address (for delivery): together with order data, 10 years
• Email address (newsletter, if consented): until consent is withdrawn

On our website, you can send us an inquiry via the contact form. We collect the following data:

• Your name
• Your email address
• Your message

This data is processed exclusively for the purpose of handling your inquiry. The data you enter is forwarded to our email address via Resend (processor, see below). No disclosure to unrelated third parties takes place. The data is deleted after the inquiry is resolved, unless statutory retention obligations apply.

Legal basis: Art. 6(1)(a) GDPR (consent). Consent can be withdrawn at any time with effect for the future by contacting us by email. In the event of withdrawal, the data will be deleted promptly unless statutory retention obligations apply.

Since Resend Inc. is a US-based company, data is transferred to the United States when sending emails. The USA is considered a third country within the meaning of the GDPR. The transfer is based on EU Standard Contractual Clauses (SCC) pursuant to Art. 46(2)(c) GDPR, which Resend provides in its Data Processing Agreement (DPA).

Art. 6(1)(a) GDPR (consent). Consent is given by activating a separate checkbox during the order process. Consent is voluntary and does not affect the order process.

• Maximum 2 reminder emails within 48 hours of abandonment
• Content: notification about the incomplete order, no further advertising

• Email address
• Selected package / cart contents
• Time of abandonment

Data stored in connection with cart reminders is deleted no later than 30 days after abandonment, provided no purchase has been made.

You can withdraw your consent at any time with effect for the future – by clicking the unsubscribe link in the reminder email or by emailing hallo@liedify.com. After withdrawal, no further reminder emails will be sent and your data will be deleted promptly.

Cart reminder emails are sent via our email service provider Resend (see Section 8).

§ 7 para. 3 UWG (legitimate interest within an existing customer relationship) and Art. 6(1)(f) GDPR. You may object at any time.

Every review request email contains an unsubscribe link. After clicking this link, you will not receive further review requests. Alternatively, you can opt out by emailing hallo@liedify.com.

We use Google Consent Mode v2 to respect your cookie settings. By default, all tracking cookies are disabled. Analysis and marketing cookies are only activated when you consent in the cookie banner. Google receives the following signals:

• ad_storage: Storage of advertising cookies
• ad_user_data: Transmission of user data to Google for advertising purposes
• ad_personalization: Personalized advertising
• analytics_storage: Storage of analytics cookies

Legal basis: Art. 6 (1) (a) GDPR (Consent)

• Analysis of visitor behavior (page views, time on site, bounce rate)
• Improvement of our website and services
• Measurement of advertising effectiveness

Google may also process data in the USA. The transfer is based on EU Standard Contractual Clauses and the EU-US Data Privacy Framework.

• Page views and interactions on our website
• Device information (browser, operating system)
• IP address (truncated)
• Conversion events (e.g., order completed)

In addition to the browser pixel, we use the Meta Conversions API to transmit purchase events server-side to Meta. This happens without cookies and serves to accurately measure advertising conversions. The following data is transmitted (hashed):

• Email address (SHA-256 hashed)
• Purchase amount and order information

• Page views and interactions
• Device information
• Conversion events (e.g., order)

In addition, we use the TikTok Events API for server-side conversion tracking. Email addresses are transmitted in hashed form.