PRIVACY POLICY

Egységmester Korlátolt Felelősségű Társaság (short name: Egységmester Kft.), located at 2330 Dunaharaszti, Gyóni Géza köz 8., Hungary, company registration number 13-09-162959, tax number 24291608-2-13, is the data controller responsible for personal data processed through AudioSommelier.pro unless a third-party provider acts as an independent controller for its own services.

For privacy questions or rights requests, contact us at hello@audiosommelier.pro or through the contact form.

Account Data: email address, authentication identifiers, account status, profile details and subscription state, used to create and operate your account.

Premium and Billing Data: Stripe customer/subscription identifiers, subscription status, renewal dates, payment event metadata, tax/invoice references and customer portal status. We do not receive or store your full card number or full financial account details. Stripe processes payment data under its own privacy terms, including the Stripe Privacy Policy.

Tasting and Vault Data: saved tasting items, notes, selected categories, guided tasting progress, Flights and generated tasting guidance, used to provide the Premium product.

AI Interaction Data: prompts, selected items, tasting context and generated responses, used to return requested AI guidance. We do not use your personal tasting notes or Vault history to train foundational AI models.

Audio and Voice Data: text for narration, audio generation requests, generated audio state and related diagnostics where audio features are used.

Legal Consent Data: records showing acceptance of legal drinking age, Terms of Service, Privacy Policy and immediate digital content access/withdrawal acknowledgement before checkout.

Contact and Support Data: name, email, subject, message content, page path, user agent and delivery/storage status when you contact support.

Affiliate, Provider and QR Data: referral identifiers, provider attribution, QR scan events, guest access sessions and conversion attribution where these features are used.

Analytics and Technical Data: basic page/event diagnostics may be used only where analytics consent is present. Necessary local storage is used for authentication, checkout intent, affiliate attribution, cookie choices and app preferences. See our Cookie Policy.

We process account, Premium, Vault, AI and subscription data primarily to perform our contract with you. We process legal consent, billing, tax, fraud prevention and security data to comply with legal obligations and legitimate interests. We process analytics only where consent is present. We process support messages to respond to your request and maintain service quality.

AI features generate educational tasting guidance based on the prompts and tasting context you provide. AI output may be inaccurate and should not be treated as professional, medical, health, dietary, legal, purchasing, or safety advice.

We do not sell your personal data. We do not use your personal data, tasting notes, or Smart Vault history to train foundational AI models. We send only the information needed to generate the requested response or audio experience.

We share personal data only with service providers needed to operate, secure, bill, host and improve the Platform. Current categories include backend/auth/database providers, payment and merchant-of-record providers, AI text providers, text-to-speech providers, email delivery providers, rate-limiting infrastructure where configured, analytics providers where consented, and hosting providers.

The current public subprocessors list is available at /subprocessors.

Account and Profile Data: retained while your account exists, then deleted or anonymized after account closure unless legal, security, billing, tax, or dispute obligations require longer retention.

Vault, Tasting, Flight and AI Content: retained while your account is active or until deleted where deletion is available, subject to backup, security and legal retention limits.

Legal Consent Records: retained as long as needed to prove legal age, Terms, Privacy and digital content withdrawal consent, including for limitation periods, disputes and compliance audits.

Billing, Subscription, Invoice and Tax Records: retained for the periods required by applicable tax, accounting, chargeback, fraud prevention and payment laws or provider rules.

Contact and Support Messages: normally retained for up to 24 months after the last support interaction unless a longer period is required for a dispute, safety, legal, fraud prevention, or account administration reason.

Affiliate, Provider and QR Attribution Records: retained while needed for attribution, fraud review, commission review, compliance, accounting and dispute handling.

Analytics Consent and Cookie Choices: retained in local storage until you change your choice, clear browser storage, or the stored choice expires through future product controls.

Depending on your location, you may have rights to access, correct, delete, restrict, object to processing, receive a portable copy of data, withdraw consent, and lodge a complaint with a supervisory authority. EU/EEA users may contact their national data protection authority.

To exercise rights, email hello@audiosommelier.pro. We will respond within the time required by applicable law and may need to verify your identity before acting on a request.

We use access controls, HTTPS, provider security controls and separation of public frontend code from server-side secrets. No internet service is perfectly secure, and you should protect your account credentials.

Some providers may process data outside your country. Where required, we rely on provider transfer safeguards such as standard contractual clauses, adequacy decisions, or equivalent mechanisms.