BEAT SHAPER
augmenting human creativity
Beat Shaper FlexCo (“Beat Shaper”) operates the website www.beatshaper.ai (the “Site”). This Privacy Policy describes how personal data are collected, used, and stored in line with the EU General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (DSG). The Site is intended only for individuals aged 18 or older.
Beat Shaper FlexCo
Ottakringer Straße 242/8/35, 1160 Vienna, Austria
Commercial Register FN 631081 k (Commercial Court Vienna)
E-mail: info@beatshaper.ai
No Data Protection Officer has been appointed; all privacy inquiries are handled via the above address.
Account data: Username, Google account identifier, e-mail address (collected when users sign in with Google).
Analytics data: Website-usage metrics gathered through Google Analytics 4 (“GA4”). Google truncates IP addresses before storage; Beat Shaper cannot view the full address.
Security & logs: Transient IP addresses in web-server and load-balancer access logs; retained for ≤30 days solely for fraud-prevention and troubleshooting. No additional personal data are logged.
Authenticate and manage user accounts: Performance of a contract (Art. 6 (1)(b))
Analyse Site performance and improve services (GA4): Consent (Art. 6 (1)(a)) - analytics cookies load only after opt-in
Send optional marketing e-mails: Consent (Art. 6 (1)(a)); users may withdraw at any time via the unsubscribe link
A cookie banner appears on first visit. Non-essential cookies (GA4) are set only after explicit consent. Users can later adjust their choice in "Cookie Settings" or install the Google opt-out add-on.
Google LLC (Google Sign-In & GA4): EU-US Data Privacy Framework certification plus Standard Contractual Clauses and IP-truncation as supplementary measures.
Amazon Web Services (EU regions) (Hosting & encrypted storage): Data stored exclusively in the EEA.
Each processor acts under a Data Processing Agreement that satisfies Art. 28 GDPR.
GA4 data may be remotely accessed from the United States by Google LLC support personnel. Transfers rely on Google’s certification under the EU-US Data Privacy Framework and, where required, the European Commission’s Standard Contractual Clauses, combined with encryption in transit, strict access controls, and IP-anonymisation.
Account data: Stored until the user deletes the account; purged from active databases within 30 days of deletion.
Analytics data (GA4): Retained for 14 months, then automatically removed or aggregated.
Back-ups: Encrypted; overwritten or deleted after 30 days.
Access logs: Deleted or anonymised within 30 days.
Users may at any time exercise the rights of access, rectification, erasure, restriction, portability, and objection, and may withdraw consent for marketing or analytics without affecting prior processing. Requests should be sent to info@beatshaper.ai. Users may also lodge a complaint with the Austrian Data Protection Authority (Datenschutzbehörde).
TLS/SSL encryption for all data in transit
AES-256 encryption at rest on AWS storage services
OAuth 2.0 tokens for Google authentication; passwords are never stored.
Role-based access controls, least-privilege principles, and periodic security reviews.
Vulnerability management and incident-response procedures.
Registration is limited to persons aged 18 or older. Accounts found to belong to minors will be deleted without delay.
Beat Shaper maintains an internal Records of Processing Activities (Art. 30 GDPR) covering all data categories, processors, safeguards, and retention periods. The register is reviewed whenever services or vendors change.
Material amendments will be announced on the Site and, where feasible, by e-mail to registered users. Continued use of the Site after such notice constitutes acceptance of the updated terms.
Use AI to generate custom beats and loops compatible with every digital audio workstation.