Your privacy is important to us. This policy explains how we collect, use, and protect your information.
Last updated: 7/14/2026
Overview
Suno Meta Tags Creator is a music AI platform that helps artists create and enhance their musical content. We are committed to protecting your privacy and handling your data responsibly.
Data We Collect
Account Information
Email address and authentication data (via Supabase Auth)
Profile information you provide
Usage statistics and preferences
Content and Usage Data
Audio files you upload for processing
Song metadata, lyrics, and musical information
Generated content and AI interactions
Usage patterns and feature interactions
AI-Generated Artifacts
AI-generated lyrics, song titles, and descriptions
Audio analysis results and metadata extraction
Generated video content and visualizations
AI model training data and improvement metrics
Prompt engineering data and optimization results
Technical Information
IP address and browser information
Device type and operating system
Cookies and local storage data
Security and Audit Data
IP address logs for fraud prevention and account security
Access logs and authentication events
Security audit trails and system monitoring data
Credit transaction logs and abuse prevention data
Third-Party Services
We integrate with several third-party services to provide our functionality:
Supabase
Provides authentication, database, and real-time services. Data is processed according to Supabase's privacy policy and GDPR compliance.
Stripe
Handles payment processing and billing. Payment data is processed securely by Stripe and not stored on our servers.
DeepSeek AI
Powers our AI lyrics generation. Song data sent to DeepSeek is processed for content generation and not retained by the service.
Moonshot AI (Kimi)
Provides multilingual AI lyrics generation and image understanding (for example, describing an uploaded portrait reference for the Music Video Generator). Content sent to Moonshot AI is processed for content generation according to Moonshot AI's privacy policy.
fal.ai
Powers AI image, video and avatar generation for the Music Video Generator. Uploaded audio, portrait reference images and generated frames are processed by fal.ai to render your video scenes, according to fal.ai's privacy policy.
Amazon Web Services (S3)
Final music videos of premium users are stored in a private Amazon S3 bucket located in the EU (Frankfurt region) so they can be re-downloaded at any time. Stored videos are removed when you delete the corresponding video project.
Google Analytics
Help us understand how visitors interact with our website by collecting anonymous usage statistics via Google Analytics.
Cloudflare
All traffic to our website is routed through Cloudflare's global network, which provides content delivery (CDN), security and DDoS protection. Cloudflare processes visitor IP addresses and technical request data to operate this service. We also use Cloudflare Web Analytics, a privacy-first, cookieless tool that collects aggregated performance metrics without storing personal identifiers or tracking visitors across sites. Data is processed according to Cloudflare's privacy policy; Cloudflare participates in the EU-U.S. Data Privacy Framework.
How We Use Your Data
Provide and improve our music AI services
Process audio files and generate content
Manage your account and billing
Send important service communications
Analyze usage patterns to enhance user experience
Ensure security and prevent abuse
Send newsletters and promotional communications (you can unsubscribe at any time)
Data Retention
We implement automated data retention policies to protect your privacy and comply with legal requirements:
Account data: Retained while your account is active
Audio files: Temporarily processed and deleted within 24 hours (up to 72 hours for music video source audio)
Generated content: Stored as long as you keep it in your account
Usage analytics: Anonymized data retained for service improvement
IP address logs: Automatically deleted after 90 days for fraud prevention
Security audit logs: Retained for 12 months for compliance and security monitoring
AI-generated artifacts: Retained while associated with your active projects
Credit transaction logs: Retained for 24 months for billing and fraud prevention
Music videos: final MP4 files are available for download for 24 hours after assembly; for premium users a durable copy is kept on Amazon S3 until the video project is deleted
Note: Data retention periods may be extended if required by law or for legitimate business purposes such as resolving disputes or enforcing our terms.
Your Rights
Under GDPR and other privacy laws, you have the following rights:
Access: Request a copy of your personal data
Correction: Update or correct your information
Deletion: Request deletion of your data
Portability: Export your data in a structured format
You can control cookie preferences through our cookie consent banner or browser settings.
Data Security
We implement industry-standard security measures including:
Encryption in transit and at rest
Secure authentication via Supabase
Regular security audits and updates
Limited access controls and monitoring
Audit and IP Monitoring
To ensure platform security and prevent abuse, we implement comprehensive monitoring:
IP Address Security
IP addresses are automatically checked during registration to prevent fraud
Suspicious IP patterns are flagged and monitored for security purposes
IP logs are used for credit system abuse prevention and account verification
Geolocation data may be used for security and compliance purposes
Security Audit Logging
All access to IP data is logged and monitored via our edge function infrastructure
Authentication events and security-related actions are tracked
Audit logs help us detect and respond to potential security threats
Access logs are encrypted and stored securely with limited retention periods
Automated Security Measures
Real-time fraud detection using IP analysis and behavioral patterns
Automated data retention policies ensure compliance with privacy regulations
Security alerts and monitoring help protect user accounts and data
Regular automated security scans and vulnerability assessments
International Transfers
Our services may involve data transfers to countries outside your jurisdiction. We ensure adequate protection through:
Standard Contractual Clauses (SCCs)
Adequacy decisions where applicable
Partner compliance with privacy frameworks
Children's Privacy
Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us.
Policy Changes
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "last updated" date.
Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us: