Label Grid LLC (“Labelgrid,” “we,” “us,” or “our”), based in Denver, Colorado, is committed to safeguarding your privacy. This Privacy Policy explains our practices for collecting, using, sharing, and protecting your Personal Data (as defined below) when you use our website or other services as described in the relevant terms (“Services”).
1. Who We Are and Contact Information
Label Grid LLC
Location: Denver, Colorado, USA
Contact Email: [email protected]
We are the data controller, meaning the party responsible for determining the purposes and methods for processing your Personal Data.
2. Types of Personal Data Collected and How we Collect It
“Personal Data” means information that directly, indirectly, or in connection with other information — such as a personal identification number — identifies, relates to, or otherwise allows for the identification or identifiability of a natural person or household.
LabelGrid collects various types of Personal Data to provide and enhance our Services. The Personal Data collected depends on your interactions with us and may include:
- Contact Information: Name, email, address, country, phone number, date of birth, VAT number, tax ID, Twitter handle, and field of activity.
- Account and Login Data: Username, password, IP address, device information, browser details, session duration, clicks, interaction events, and IP-based geolocation.
- Company and Financial Details: Company name, tax ID (or social security number if you are being paid in your individual capacity), purchase history, billing address, bank details, and payment information.
- Usage and Tracking Data: Information collected automatically through labelgrid.com (or third-party services), including IP addresses, URI addresses, request times, server responses, browser and OS features, visit duration, page sequence, and device information, session statistics, diagnostic events, page events, mouse movements, layout details, custom events.
Personal Data may be provided by users to us directly, for example during registration, by filing in an online form or contacting us, or collected automatically (e.g., Usage Data) when using our Services. Some information is mandatory; if not provided, it may impact service functionality.
3. How and Why we use your Personal Data
The table below explains what we use your Personal Data for and why, and the legal grounds we rely on.
| Purpose/Use | Type of Personal Data | Legal basis |
| Account Management and Security: Registering users, securing account access, and maintaining login history. | Contact Information | Performance of a Contract |
| Payments: Processing royalty and distribution payments using secure financial details. | Contact Information Company and Financial Details | Performance of a Contract |
| Analytics and Advertising: Enhancing service through Google Analytics, Meta Pixel, Microsoft Clarity, and other analytics tools. | Usage and Tracking Data | Consent |
| Communications: Including about changes to our terms or policies, changes to the Services, or dealing with your requests, complaints and queries. | Contact Information | Performance of a Contract Legitimate Interest (to process and respond to your requests and manage our relationship with you). |
| Marketing: Sending promotional communications. | Contact Information | Consent. You can opt-out of email marketing at any time by using the unsubscribe links contained in any email that we send you or by contacting us using the details above. |
| Updating Customer Records: To ensure we have up-to-date information. | Contact Information Account and Login Data | Performance of a Contract Legitimate Interest (to ensure we can keep in touch with you). Legal Obligation |
| Fraud Prevention: Detecting and mitigating unauthorized access or suspicious activities. | Contact Information Account and Login Data Company and Financial Details Usage and Tracking Data | Legitimate Interest (to protect our business, interests, and rights). Legal Obligation |
| Legal Rights: To enforce legal rights or defend or take legal proceedings. | Contact Information | Legitimate Interest (to protect our business, interests, and rights). Legal Obligation |
| Business Continuity: To administer and protect our business, our Services, and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data). | Contact Information Usage and Tracking Data Account and Login Data | Legitimate Interest Legal Obligation |
4. Data Sharing
We only share data with third parties in line with this Privacy Policy and when necessary for our Services, as outlined below. We require all third parties to respect the security of your Personal Data.
Third Party Service Providers
The vendors and service provides in the table below perform services on our behalf.
| Provider | Category of Data | Place of Processing | Privacy Policy |
| Promo.ly | ID Verification, usage data | EU, U.S. | Privacy Policy |
| Bandcamp | User data, content | U.S. | Privacy Policy |
| YouTube API Client | Video content, session data | Global | Privacy Policy |
| Google Analytics 4 | Browser data, session data, IP | U.S., globally | Privacy Policy |
| Meta Pixel | Interaction data, usage data | U.S. | Privacy Policy |
| Microsoft Clarity | Session recording, interaction data | U.S. | Privacy Policy |
| Amazon Web Services | Hosting, various types of data | U.S., EU, globally | Privacy Policy |
| Hetzner | Hosting, various types of data | EU | Privacy Policy |
| PayPal | Payment details, purchase history | U.S., globally | Privacy Policy |
| Braintree (PayPal) | Payment data, billing address | U.S. | Privacy Policy |
| Stripe | Payment, billing address, session data | U.S., globally | Privacy Policy |
| Wise | Payment transactions | U.S., globally | Privacy Policy |
We may also share artists information that you provide to us on the platform with our DSP partners.
Business Transfers
We may also share Personal Data with third parties, in a merger or acquisition contest.
Legal Disclosures
We may disclose Personal Data with law enforcement agencies or regulatory bodies, where we are under a duty to disclose or share it to comply with a legal obligation.
International Transfers
The Personal Data that we collect will be processed in the United States, but we may share or transfer your Personal Data with external third parties who are based in other countries.
Where we transfer your Personal Data out of the UK/EU/EEA, we ensure a similar degree of protection is afforded to your Personal Data by using safeguards required by applicable laws, such as only transferring Personal Data to countries that have been deemed by the Information Commissioner or European Commission to provide an adequate level of protection for Personal Data, or by using specific contractual protections, such as approved standard contractual clauses. Please contact us if you would like more information about our safeguards for data transfers.
5. User Rights
Your privacy rights vary depending on your location. Some of these rights apply generally, while others will only apply in certain circumstances.
For EU, EEA and UK Users
- Be Informed: To be provided with clear, clear, transparent, and easily understandable information about how we use your Personal Data and your rights.
- Access, Correct, and Delete: Request access to, correction, completion, or erasure of your Personal Data.
- Data Portability: Request a copy of your Personal Data in a structured, machine-readable format.
- Restrict and Object to Processing: Block or suppress further use of your Personal Data or object to certain processing activities, including processing for direct marketing or where we are relying on our legitimate interests for processing.
- Withdraw Consent: Withdraw consent at any time for optional data processing, including for marketing purposes.
- Lodge a Complaint: You have the right to make a complaint at any time to the data protection authority in your country. We would, however, appreciate the chance to deal with your concerns before you approach the data protection authority, so please contact us in the first instance.
For Brazilian Users
- Access, Rectify, and Delete: Access, correct, or delete data.
- Data Portability: Transfer data to another service provider.
- Revoke Consent: Withdraw consent for data processing.
- File a Complaint: File with the ANPD, Brazil’s data protection authority.
For Swiss Users
Swiss privacy law provides access, correction, deletion, and data transfer rights, similar to the GDPR.
For U.S. Users
If you live in the US, depending on the state where you reside, you may have certain privacy rights. These rights may include the following:
- Know and Access: Right to request access to information about our collection, use, and disclosure of your Personal Data (such as categories or specific pieces of information we hold about you and categories of or specific third parties we disclose your Personal Data to).
- Delete: Right to request that we delete your Personal Data, subject to certain exceptions.
- Correct: Right to request that we correct inaccurate Personal Data we collected about you, subject to certain exceptions.
- Opt-Out: Opt out of certain processing of your Personal Data.
- Portability: Right to request that we provide a copy of the Personal Data we have collected about you in a portable and, to the extent technically feasible, readily usable format.
- Non-Discrimination: Exercise privacy rights without discrimination (e.g., it negatively impacting your ability to use our products or services).
- Appeal: Right to appeal our decision in the event that you requested to exercise any of the privacy rights applicable to you and we denied your request.
Exercising your rights
How to request deletion of your personal data:
- If you used Facebook Login:
- Go to your Facebook account → Settings & Privacy → Settings → Apps and Websites → locate LabelGrid and select Remove to disconnect your Facebook account from LabelGrid.
- If you used Google Login:
- Go to your Google Account → Security → Third-party apps with account access → select LabelGrid → choose Remove Access to disconnect your Google account from LabelGrid.
- To request deletion of your LabelGrid account and personal data:
- Send an email to [email protected] with the subject line “Delete My Data” and include your full name and the email address linked to your account.
- Once we verify your identity, we will cancel your account and delete your personal data from our active systems.
- We will confirm completion within 30 days.
6. Data Retention and Storage
We will only retain your Personal Data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements.
We retain personal data as follows:
- Active Accounts: Data retained while your account remains active.
- Inactive Accounts: Data is deleted after 6 years of inactivity unless otherwise required by law.
- Legal Obligations: Data may be retained longer if necessary to comply with regulatory obligations or resolve disputes.
- Release Data: Certain data related to releases cannot be deleted to maintain system functionality.
Data is securely stored with Amazon Web Services, Hetzner, and Google servers with encryption and role-based access control.
7. Data Security
We implement appropriate technical and organizational security measures to protect Personal Data from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. This includes:
- Data Encryption: Stored data is encrypted on AWS and Hetzner servers.
- Access Control: Access is limited to authorized personnel only on a need-to-know basis. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.
- Regular Security Updates: Security practices are reviewed and updated regularly.
8. Cookies and Tracking Technologies
To learn more about our use of cookies and similar tracking technologies and your options to manage them, please see our Cookie Policy.
9. Updates to This Policy
We may update this Privacy Policy as needed to reflect changes in law or company practices. All updates will be available on this page, with significant changes communicated directly to users.
10. Inform us of Changes
It is important that the Personal Data we hold about you is accurate and current. Please keep us informed if your Personal Data changes during your relationship with us.
11. Third-party links
Our website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy practices. When you leave our website, we encourage you to read the privacy policy of every website you visit.