Privacy Policy
How DoreArt AI collects, uses, shares, and protects your information.
Last updated: 2026-07-19
Introduction
DoreArt AI ("DoreArt AI," "we," "our," or "us") provides browser-based AI music tools, including music generation, song extension, and audio mashup workflows. This Privacy Policy explains what information we collect, why we use it, how it may be shared, and the choices available to you.
For privacy questions or requests, contact us at support@doreartai.com. If a law requires a different legal-entity name, registered address, or privacy contact for the operator of the service, that information should be added to this policy before relying on it for that jurisdiction.
1. Information We Collect
Information you provide
- Account and profile information: Your email address, name, profile image, password or password-related authentication data, and information received when you sign in through Google or GitHub.
- Creative inputs: Prompts, lyrics, styles, titles, tags, model choices, controls, and other instructions you submit.
- Uploaded media: Audio files, images, video, reference recordings, vocals, and other files you upload for generation, extension, mashup, profile, or support purposes.
- Generated and service data: Generated audio, cover images, task status, generation settings, credit usage, download entitlements, and related history.
- Support information: Support-ticket subjects, messages, and optional image attachments.
- Billing information: Payment and billing details provided during checkout. Payment processors handle full card or other payment credentials; we receive transaction, invoice, payment-provider, billing-email, and subscription information needed to provide the service and keep financial records.
Information collected automatically
We and our service providers may collect IP address, browser and device information, user agent, session and authentication information, locale, referring or campaign information, request and security logs, and information about how you use the service. We use necessary cookies or similar technologies for authentication, locale selection, security, and service operation.
If enabled for this deployment, we may use Google Analytics or Plausible to understand traffic and product usage. These tools may use cookies or similar identifiers according to their own policies. We do not currently configure behavioral advertising through DoreArt AI.
2. How We Use Information
We use information to:
- create and secure accounts, authenticate users, and send verification or password-reset emails;
- provide AI generation, extension, mashup, preview, storage, and download features;
- process payments, subscriptions, credits, refunds, disputes, invoices, and entitlement checks;
- provide support, respond to tickets, and investigate service issues;
- prevent fraud, abuse, unauthorized access, and infringement;
- maintain, debug, secure, and improve the service and its reliability;
- comply with legal obligations, enforce our agreements, and protect our rights, users, and service; and
- measure usage when analytics are enabled and permitted by applicable law.
If the GDPR, UK GDPR, or a similar law applies, our legal bases may include performance of a contract, our legitimate interests in operating and securing the service, compliance with legal obligations, and consent where consent is required. You may withdraw consent where processing is based on consent; withdrawal does not affect processing that occurred before withdrawal.
3. How We Share Information
We share only the information reasonably needed for the purposes above with the following categories of recipients:
- Hosting, security, and storage providers: Cloudflare and configured object-storage providers may process account, technical, uploaded, and generated data to host, secure, deliver, and store the service.
- AI providers: Prompts, lyrics, settings, uploaded media, and related task data may be sent to the AI provider configured for the requested tool. The provider may process that data under its own terms and privacy policy. Do not upload confidential, sensitive, or third-party material unless you are authorized to do so.
- Payment providers: Depending on the checkout configuration, Stripe, PayPal, Creem, Alipay, WeChat Pay, or another enabled provider may process payment and subscription information.
- Authentication and email providers: Google or GitHub may process sign-in information, and Resend or another configured email provider may process recipient and message information to deliver service emails.
- Analytics providers: Google Analytics or Plausible may receive technical and usage information when enabled.
- Professional advisers and authorities: We may disclose information to advisers, law-enforcement authorities, courts, or transaction counterparties when required by law or reasonably necessary to prevent fraud, protect rights, respond to legal process, or complete a business transaction such as a merger or sale.
We do not sell personal information for money. We do not share personal information for cross-context behavioral advertising under the current service configuration. If that changes, we will update this policy and provide any opt-out rights required by law.
4. AI Processing and User Responsibility
The service sends creative inputs and uploaded media to the configured AI provider so that the requested result can be produced. Different providers may have different retention, security, location, and model-training practices. You should review the applicable provider terms before uploading unreleased, confidential, client-owned, or personal material.
You are responsible for ensuring that your prompts, lyrics, recordings, images, voices, and other uploads do not contain personal information or material that you are not authorized to submit for processing. More information about ownership and permitted use is in the Terms of Service.
5. International Transfers
Our providers may process information in countries other than the country where you live. Where a data-protection law such as the GDPR applies, we use a lawful transfer mechanism where required, such as an adequacy decision, appropriate contractual safeguards, or another mechanism permitted by applicable law. The safeguards available for a particular provider or transfer may depend on the provider and the data involved.
6. Retention and Deletion
We retain information only for as long as reasonably necessary for the purposes described in this policy. Retention depends on the type of information and may include:
- account and authentication records while your account is active and for a reasonable period afterward for security, fraud prevention, and legal compliance;
- orders, invoices, payment, subscription, credit, refund, and dispute records for the period required for accounting, tax, payment-network, fraud-prevention, and legal purposes;
- prompts, uploaded media, generated assets, task records, and support tickets while needed to provide the service, maintain download access, resolve support issues, enforce agreements, and protect the service; and
- backups, logs, and copies held by providers for the period determined by their backup, security, and retention practices.
We do not promise a single fixed deletion period for every data category or every third-party provider. If you want us to delete or restrict information, email support@doreartai.com from the account email where possible. We may need to verify your identity, and we may retain information that we must keep for legal, security, accounting, dispute, or fraud-prevention reasons. Deletion from DoreArt AI does not necessarily delete copies already held by an AI, payment, email, hosting, or storage provider; those copies are governed by the provider's applicable policies and contracts.
7. Your Privacy Rights
Depending on where you live and subject to legal exceptions, you may have the right to request access to, correction of, deletion of, restriction of, or a portable copy of your personal information. You may also have the right to object to certain processing, withdraw consent, or complain to your local data-protection authority.
California residents may also have rights to know, correct, delete, limit the use of sensitive personal information, opt out of sale or sharing for cross-context behavioral advertising, and receive equal treatment when exercising those rights. We do not sell personal information for money. To submit a request, contact support@doreartai.com and describe the request and the email address associated with your account. We will process verified requests within the time required by applicable law.
8. Children's Privacy
DoreArt AI is intended for adults and is not directed to children under 13. We do not knowingly collect personal information from children under 13. If we learn that we have done so, we will take reasonable steps to delete it. If you believe a child has provided information to us, contact support@doreartai.com.
9. Security
We use reasonable administrative, technical, and organizational measures to protect information. No online service, transmission, or storage system can be guaranteed to be completely secure. You are responsible for protecting your account credentials and for avoiding uploads of material that requires security controls the service does not provide.
10. Changes to This Policy
We may update this policy when our service, providers, or legal obligations change. We will post the updated version and change the "last updated" date. If a change is material, we will provide any additional notice required by applicable law.
Contact Us
For privacy questions, rights requests, or complaints, contact support@doreartai.com.
