Music Theory Learning - App Privacy Policy

Last updated: May 17, 2026

Introduction

This Privacy Policy explains how we collect, use, store, and protect personal data when users access and use our training and assessment platform.

We are committed to collecting only the minimum amount of personal data necessary to operate the service.

Personal Data We Collect

Teacher Accounts

For teacher accounts, we may collect:

• verified email address
• teacher name or display name provided by the user

Teacher names are not independently verified.

Student Accounts

For student accounts, we may collect:

• student name or display name provided by the user
• training progress
• assessment and test results
• performance history related to use of the platform

Student names are not independently verified.

We do not intentionally collect additional personal profile information unless explicitly provided by users or administrators.

Purpose of Processing

We process personal data for the following purposes:

• creating and managing user accounts
• authenticating users
• providing training and assessment functionality
• storing user progress and results
• enabling teachers or authorized administrators to review results
• maintaining platform security and reliability
• preventing misuse of the service

Legal Basis for Processing (GDPR)

Where the GDPR applies, we process personal data under the following legal bases:

• performance of a contract to provide the platform and related services
• legitimate interests in maintaining platform security, reliability, and administration
• compliance with legal obligations where applicable

Service Providers and Infrastructure

We use third-party infrastructure providers to operate the platform.

Authentication and database services are provided by Supabase, which processes data on our behalf as a data processor.

These providers may process data in countries outside the user’s country of residence. Where required, appropriate safeguards are used for international data transfers.

Data Sharing

We do not sell personal data.

Personal data may be shared only with:

• authorized teachers or school administrators
• service providers necessary to operate the platform
• authorities where required by law

We do not use student data for advertising or marketing profiling.

Data Retention

We retain personal data only for as long as necessary to provide the service and fulfill legal or operational obligations.

Account and assessment data may be deleted:

• upon user request
• after prolonged inactivity
• or when no longer required for educational purposes

Backup copies may remain temporarily in secure backup systems.

Security Measures

We implement reasonable technical and organizational measures designed to protect personal data, including:

• encrypted connections (HTTPS)
• authentication controls
• restricted administrative access
• managed cloud infrastructure providers

No method of electronic storage or transmission is completely secure, but we work to protect data using industry-standard practices.

Children and Educational Use

The platform may be used in educational contexts involving minors.

Student accounts may be created and managed by teachers, schools, or authorized educational organizations.

We do not knowingly use student data for advertising purposes or commercial profiling.

Cookies and Analytics

The platform may use essential cookies or similar technologies required for authentication and operation of the service.

We do not use advertising trackers or third-party marketing cookies.

Automated Decision-Making

Assessment and training results are stored for educational purposes only.

We do not use fully automated decision-making that produces legal or similarly significant effects on users.

User Rights

Depending on applicable law, users may have the right to:

• access their personal data
• request correction of inaccurate data
• request deletion of personal data
• restrict or object to processing
• request data portability
• lodge a complaint with a supervisory authority

Requests may be submitted using the contact information listed above.

International Data Transfers

Where personal data is transferred internationally, we use appropriate safeguards as required by applicable data protection laws.

Changes to This Policy

We may update this Privacy Policy from time to time.

Updated versions will be posted on this page with a revised “Last updated” date.

Contact

If you have questions regarding this Privacy Policy or personal data processing, contact:

admaDIC
Rainer Schwarze & Annett Schwarze GbR
Leopoldstr. 2-8
32051 Herford
Germany
support@admadic.com