Mixee

Privacy Policy

Last updated: May 2026

This Privacy Notice explains how Mixee (Mixee (Sole Proprietor), "we", "us") collects, uses, and protects personal data when you use mixee.de and related services ("Mixee").

1. Who we are

Mixee (Sole Proprietor), trading as Mixee, is the data controller for personal data processed via the Service. Contact: hello@mixee.de.
Postal address: Address available on request — please contact hello@mixee.de.

2. Personal data we collect

  • Account data: name, email address, login credentials (hashed).
  • Usage data: uploaded audio files, mastering jobs, render settings, credit usage.
  • Technical data: IP address, device fingerprint, browser type, log data.
  • Support data: messages you send to hello@mixee.de.
  • Marketing data: email preferences, unsubscribe status.

3. Purposes and legal bases

  • Provide the Service (account creation, mastering, downloads) — contract performance.
  • Security & fraud prevention (rate-limiting, device fingerprinting, abuse detection) — legitimate interests.
  • Service improvement (aggregated analytics, error logs) — legitimate interests.
  • Customer supportcontract performance / legitimate interests.
  • Transactional emails (welcome, render-complete, low-credit warning) — contract performance.
  • Marketing emails, where applicable — consent (you can withdraw at any time).
  • Legal compliance (tax records via Paddle, fraud reports) — legal obligation.

4. Sharing your data

We share personal data only with:

  • Paddle.com Market Ltd. — our Merchant of Record. Paddle handles payments, billing, tax, invoicing, refunds, and subscription management on our behalf. See Paddle's privacy notice at paddle.com/legal/privacy.
  • Hosting & infrastructure providers (Cloudflare, Supabase, Hetzner) for serving the Service and storing data.
  • Email delivery providers for sending transactional emails.
  • Professional advisers (legal, accounting) where strictly necessary.
  • Public authorities where legally required.

5. International transfers

Some of our providers may process data outside the EU/EEA. Where this happens, we rely on adequacy decisions or Standard Contractual Clauses (SCCs) approved by the European Commission to protect your data.

6. Retention

  • Account data: kept until you delete your account, then removed within 30 days (except where law requires longer retention).
  • Uploaded audio and rendered masters: deleted after 30 days, or earlier on request.
  • Billing records held by Paddle: as required by tax law (typically 7–10 years).
  • Server logs: up to 90 days.

7. Your rights

Under GDPR you have the right to: access, rectification, erasure, restriction, portability, objection, and to withdraw consent at any time. You also have the right to lodge a complaint with your local data protection authority. We aim to respond to requests within one month. To exercise any right, email hello@mixee.de.

8. Security

We apply appropriate technical and organisational measures to protect personal data, including TLS encryption in transit, encryption at rest where applicable, access controls, and least-privilege service accounts. No system is 100% secure — please use a strong unique password.

9. Cookies

Mixee uses only essential cookies (authentication session, CSRF protection, security challenges). We do not use advertising or third-party tracking cookies. If we add analytics or marketing cookies in the future, we will request your consent first.

10. Children

Mixee is not directed at children under 16. Do not use the Service if you are under this age.

11. Changes to this notice

We may update this notice from time to time. Material changes will be communicated by email or via a prominent notice in the Service.