Back

Privacy Policy

Last updated: April 5, 2026

Jsonify Playlist ("we", "us", or "our") is committed to protecting your privacy. This policy explains what data we collect, why we collect it, and how it is used.

1. Data We Collect

Email address — collected when you create an account via Google sign-in or email/password. Stored in Firebase Authentication (Google).

Spotify profile URL — optionally provided by you so we can load your public playlists on the dashboard. Stored in Firestore.

Google Drive OAuth tokens — if you connect Google Drive, we store encrypted access and refresh tokens in Firestore so we can export JSON files to a folder in your Drive on your behalf. We never read files outside the folder we create.

Credit and purchase history — we store credit balances, subscription tier, and billing timestamps in Firestore so we can track your export allowance.

Payment information — payments are processed entirely by Polar. We never see, store, or handle your card number or bank details.

2. How We Use Your Data

  • Authenticate your account and maintain your session
  • Load and convert your Spotify playlists to JSON
  • Export JSON files to your Google Drive folder
  • Track and deduct credits when you export playlists
  • Process subscription and credit-pack purchases via Polar
  • Send transactional emails (e.g., payment receipts) via Polar — we do not send marketing emails

3. Third-Party Services

Firebase / Google — provides authentication and the Firestore database where your account data is stored. Subject to Google's Privacy Policy.

Polar — handles all payment processing, subscriptions, and invoicing. Subject to Polar's Privacy Policy.

Spotify Web API — used to fetch playlist data. We only read playlist metadata and tracks; we do not modify your Spotify library. Subject to Spotify's Privacy Policy.

Google Drive API — used only when you explicitly connect your Drive. We create one folder and write JSON files to it. We do not read, modify, or delete any other Drive content.

4. Cookies

We use one essential cookie: __session — a secure, HttpOnly cookie that holds your authentication session. It is strictly necessary for the service to function and is not used for tracking or advertising.

Temporary OAuth state cookies (gdrive_oauth_state, spotify_oauth_state) are set during the OAuth authorization flow and deleted immediately after the redirect completes.

We do not use any analytics, advertising, or third-party tracking cookies.

5. Data Retention

Your account data (email, credits, connection tokens) is retained for as long as your account is active.

JSON files exported to Google Drive are stored in your own Drive — not on our servers. We have no copies of your exported playlists.

If you request account deletion, all associated data in Firestore (credits, OAuth tokens, settings) will be permanently deleted within 30 days.

6. Your Rights

You have the right to:

  • Request a copy of the data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and all associated data
  • Disconnect Google Drive or revoke Spotify access at any time via Settings

To exercise any of these rights, contact us at support@jsonify-playlist.com.

7. Changes to This Policy

We may update this policy from time to time. Material changes will be noted at the top of this page with a new "Last updated" date. Continued use of the service after changes constitutes your acceptance of the updated policy.

Contact

Questions about this policy? support@jsonify-playlist.com

afb20be