Back to Home

Instuneai Privacy Policy

Effective Date: March 10, 2025
Website Name: Instuneai
Website URL: https://www.instuneai.com
Contact Email: [email protected]

Instuneai (hereinafter "we") is fully aware of the importance of personal information security and privacy protection. We strictly comply with relevant laws and regulations including the Personal Information Protection Law of the People's Republic of China, the Cybersecurity Law, and the Interim Measures for the Management of Generative AI Services, and have formulated this Privacy Policy to clarify how we collect, use, store, and protect users' personal information, as well as the rights enjoyed by users. This Privacy Policy is the core agreement between users and us regarding the processing of personal information. Please read and understand the entire content of this policy carefully. By using the Instuneai website and related services, you are deemed to have agreed to our processing of your personal information in accordance with this policy.

I. Scope of Application

1.1 Applicable Parties

This Privacy Policy applies only to all services provided by us through the Instuneai website (https://www.instuneai.com), including AI music generation, image content analysis, and other services, covering all related activities such as user registration, login, service usage, and credit purchases.

1.2 Exclusions

This policy does not apply to the following circumstances:

  1. Third-party services or links provided through our website (such as Google OAuth login, Stripe payment, etc.). Their privacy policies are independently formulated and enforced by third parties, and we assume no responsibility;
  2. Personal information that users voluntarily disclose to third parties during the use of our services, or information generated through interactions with third parties via our services;
  3. Information that we do not collect, store, or use, including information retained or transmitted by users themselves;
  4. Information that has been anonymized and is irreversible, making it impossible to identify specific individuals. Such information is not subject to this Privacy Policy.

II. Types of Information Collected

We adhere to the principles of "lawfulness, legitimacy, necessity, and minimization," collecting only user information necessary to provide our services and not collecting personal information unrelated to our services. The specific types collected are as follows:

2.1 Information Voluntarily Provided by Users

  1. Registration and login information: When users log in via Google OAuth, we will obtain information associated with the user's Google account (including email address, username, profile picture, etc.) for account registration, identity verification, and login validation, without requiring users to provide additional personal information;
  2. Service usage information: Images actively uploaded by users and text descriptions input when using the AI music generation feature (for AI analysis and music generation); payment-related information provided when users purchase credits (submitted directly to the Stripe payment platform; we do not store complete payment information);
  3. Contact and feedback information: Name, contact details, and problem descriptions provided when users contact us via email for inquiries or feedback, used to respond to user requests and resolve service-related issues.

2.2 Automatically Collected Information

During users' use of our services, we automatically collect certain non-personally identifiable information through technical means to optimize the service experience and ensure service security, including:

  1. Device information: Device model, operating system version, browser type, IP address, device identifier, etc., when users access the website, used to identify abnormal access and ensure service stability;
  2. Usage behavior information: Login times, service features used, operation records, credit purchase and consumption records, music generation operation records, etc., used to analyze user needs and optimize service processes and AI algorithms;
  3. Log information: Normal logs generated during website operation (e.g., access logs, error logs), used to troubleshoot service failures and ensure service security. Log information does not contain sensitive content that can identify users.

2.3 Information Not Collected

We do not collect personal sensitive information unrelated to our services such as ID numbers, bank card numbers, communication records, location trajectories, or contact lists, nor do we require users to provide unnecessary personal information.

III. Use of Information

We use collected user information only for service functionality, security assurance, and quality optimization, in strict accordance with this policy and relevant laws and regulations, and not for any purpose without user consent. Specific uses include:

  1. Core service provision: Using uploaded images and text descriptions for AI analysis to generate music meeting user needs; using login information for identity verification and ensuring account security and normal service use;
  2. Service optimization and improvement: Analyzing user habits based on device and usage behavior information to optimize AI generation algorithms, website interface, and service processes; troubleshooting service failures, fixing system vulnerabilities, and ensuring service stability;
  3. Credit management and payment: Recording credit purchase and consumption for credit queries and redemption; transmitting necessary order information to Stripe during credit purchases to complete payments, not for other purposes;
  4. Responding to user requests: Using provided contact information and feedback to respond to inquiries, complaints, and suggestions;
  5. Compliance and security: Using relevant information to cooperate with regulatory inspections and investigations per laws and regulations; identifying and preventing malicious access, fraud, and other illegal activities;
  6. Other purposes with explicit user consent: If user information is to be used for purposes beyond this policy, we will notify users in a prominent manner in advance and use it only after obtaining explicit consent.

IV. Information Storage and Security

4.1 Storage Period

We strictly control the storage period of user information in accordance with the principle that the storage period matches the service purpose. Specific periods are as follows:

  1. User-uploaded original images and text descriptions are not stored long-term; they are automatically deleted according to service procedures after AI music generation, with a maximum of 72 hours;
  2. Generated music files are for users' personal use only and are typically automatically deleted within 24 hours of generation. Users may save them locally before deletion;
  3. Registration and login information (Google-associated information) and credit purchase/consumption records are stored for the duration of the user account. Upon account cancellation, we will delete all related information within 15 business days (unless otherwise required by law);
  4. Device information, usage behavior information, and log information are stored for no more than 6 months, after which they will be automatically anonymized or deleted. Anonymized data for service optimization may be retained long-term.

4.2 Storage Methods

We store user information on servers that comply with industry security standards, using encryption, access control, and other technical measures to ensure storage security, including:

  1. Encrypting uploaded images, text descriptions, and generated music files to prevent unauthorized access or tampering;
  2. Encrypting login information and credit records with tiered access management, accessible only by authorized personnel;
  3. Deploying servers in secure facilities with firewalls and intrusion detection systems to prevent network attacks and data breaches;
  4. Strictly complying with data storage laws and regulations; user information is not stored on overseas servers (unless otherwise required by law).

4.3 Security Measures

We have established comprehensive information security management systems and adopt both technical and administrative measures to protect user information, including:

  1. Technical measures: Advanced encryption and data backup; regular backups to prevent data loss; regular security audits and vulnerability remediation;
  2. Administrative measures: Strict information security policies, security training for personnel, clear access controls, and confidentiality agreements;
  3. Emergency response: Procedures for information breaches; immediate remediation and notification to users and regulators as required by law.

4.4 Information Deletion and Destruction

When user information reaches its storage period or upon user request for deletion or account cancellation, we will take thorough deletion and destruction measures to ensure information cannot be recovered.

V. Use of Cookies

5.1 Purpose of Cookies

To optimize user experience and ensure normal service operation, we use cookies in users' browsers for the following purposes:

  1. Remembering login status to avoid repeated logins;
  2. Recording user preferences (e.g., interface settings, usage habits) to improve service experience;
  3. Analyzing website traffic and user behavior to optimize performance and service processes;
  4. Identifying abnormal access to prevent malicious login and fraud.

5.2 Cookie Management

Users may enable, disable, or delete cookies through browser settings. Disabling cookies may affect certain service functions (e.g., inability to maintain login status).

We do not collect users' sensitive personal information through cookies nor use cookies for purposes beyond this policy.

VI. Third-Party Services

Our services may involve third-party integrations. Third parties independently collect and process user information according to their own privacy policies. We assume no responsibility for third-party privacy practices. Key third parties include:

6.1 Google OAuth Login

Users may log in via Google OAuth, provided by Google. When users choose Google login, they are redirected to Google's authorization page. We receive only basic information (email, username, avatar) for registration and login validation. We do not access other Google account privacy information. Google's collection, use, and storage of user information are governed by Google's privacy policy.

6.2 Stripe Payment

Credit purchases are processed through Stripe. When users initiate payment, they are redirected to Stripe. We do not collect or store complete payment information; we receive only payment results (success/failure, order ID) for credit allocation. Stripe, as a PCI DSS Level 1 certified payment provider, securely handles payment information per Stripe's privacy policy.

6.3 Other Third-Party Services

If we integrate additional third-party services, we will notify users in advance and obtain consent before integration.

VII. User Rights

Under relevant laws, users enjoy rights including the right to know, access, correct, delete, cancel accounts, and withdraw consent. We facilitate the exercise of these rights:

VIII. Policy Changes

  1. We may revise this Privacy Policy periodically based on legal updates, service changes, and user needs;
  2. Changes will be posted prominently on the Instuneai website with the effective date;
  3. If changes affect core user rights, we will notify users separately (e.g., via pop-up or email). Continued use constitutes acceptance;
  4. Users may review the latest policy on our website at any time. Users who disagree may stop using our services and apply for account cancellation.

IX. Contact Information

For questions, suggestions, complaints, or to exercise user rights, please contact us:

We will respond and process within 15 business days.

X. Other Provisions

  1. This Privacy Policy takes effect on March 10, 2025, and supersedes all prior privacy-related agreements;
  2. If any provision conflicts with applicable laws, the laws shall prevail;
  3. We reserve the final right to interpret this Privacy Policy.

Instuneai
March 10, 2025