VoroVoroBack to home

Privacy Policy

Last updated: June 17, 2026

This Privacy Policy explains what information Voro (“Voro,” “we,” “us”) collects, how we use it, and the choices you have. By using Voro you agree to this Policy.

1. Information we collect

  • Account data: your name, email address, role, and workspace details.
  • Release data you enter: song titles, artists, artwork and audio file names/images, collaborators (including their names, emails, phone, PRO/IPI), splits, documents and signature status, and metadata.
  • Signature data: for signature requests, the signer’s name and email, their typed signature, consent, and timestamps (sent / viewed / signed).
  • Technical data: basic, privacy-friendly, cookieless usage analytics (page views) where enabled, and standard server logs.

2. How we use it

To provide and operate the Service; to create and store your releases and documents; to send signature requests and account-related communications you initiate; to secure and improve the Service; and to comply with law. We do not sell your personal information or your release data, and we do not use it to train third-party advertising models.

3. Service providers (sub-processors)

We use trusted providers to run the Service:

  • Supabase — authentication, database, and storage (hosted on AWS).
  • Vercel — application hosting and delivery.
  • Plausible — cookieless, privacy-friendly analytics (where enabled).
  • Email provider — to deliver signature-request and account emails (where enabled).

These providers process data only to provide their services to us under their terms.

4. Third-party personal data

When you add a collaborator or send a document for signature, you provide us with that person’s information. You are responsible for having a lawful basis to share it. We process it to provide the Service and will honor verified deletion requests.

5. International transfers

Our infrastructure is currently hosted in the United States. If you access Voro from outside the U.S., your information will be transferred to and processed in the U.S. Where required (e.g., for EU/UK users), transfers rely on appropriate safeguards such as Standard Contractual Clauses with our providers.

6. Your rights

Depending on where you live (including under GDPR and the CCPA/CPRA), you may have rights to access, correct, delete, or export your personal information, and to object to or restrict certain processing. We do not sell or “share” personal information. To exercise rights, contact privacy@voro.fm.

7. Retention

We keep your information for as long as your account is active or as needed to provide the Service, then delete or anonymize it within a reasonable period, unless a longer period is required by law.

8. Security

We use industry-standard measures, including row-level security to isolate each workspace’s data and encryption in transit. No method of transmission or storage is 100% secure. If a breach affects your data, we will notify you and authorities as required by law.

9. Children

The Service is not directed to children under 18, and we do not knowingly collect their personal information. If you believe a minor has provided us data, contact us and we will delete it.

10. Changes & contact

We may update this Policy; material changes will be reflected by updating the date above. Questions or requests: privacy@voro.fm.