Soundside Design

Privacy Policy

These policies apply to all Soundside Design LLC products including soundside.ai and hackthemarket.ai.

Last Updated: February 24, 2026

This Privacy Policy describes how Soundside Design LLC ("we," "us," or "our") collects, uses, and discloses your information when you use our services, including access through the Model Context Protocol (MCP) and third-party AI assistants.

1. Information We Collect

  • Account Information: We collect the email address you provide when you register, as well as any profile data associated with your sign-in provider (e.g., Google, GitHub).
  • Usage Information: We collect data about your interaction with our services, including tool calls, API requests, credit consumption, timestamps, and session metadata.
  • Content You Create: We collect information about the media, documents, analyses, and other content you produce using our services.
  • MCP Connector Data: When you connect through an MCP-compatible client (such as Claude by Anthropic), we receive the tool call parameters, prompts, and instructions that the client sends on your behalf.

2. How We Use Your Information

  • To provide and maintain our services.
  • To manage your account, billing, and credit balance.
  • To communicate with you about your account or our services.
  • To improve our platform, tools, and workflows.
  • To analyze usage patterns and optimize performance.
  • To enforce our terms of service and prevent abuse.

3. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following limited circumstances:

  • Third-Party AI Service Providers: To generate media and process analyses on your behalf, we transmit data to third-party providers including:
    • Luma Labs — image and video generation
    • MiniMax — video and music generation
    • xAI (Grok) — image and video generation
    • Google (Vertex AI / Veo) — video generation
    • ElevenLabs — audio and voice generation
    • Anthropic — text generation and evaluation
  • MCP Client Platforms: Tool call results are returned to the client platform. The client's handling of this data is governed by their own privacy policy.
  • Infrastructure Providers: We use Supabase for authentication and database services, and Google Cloud Platform for storage and compute.
  • Legal Requirements: We may disclose your information if required by law.

4. Data Security

  • Encryption of data in transit (TLS/HTTPS) and at rest.
  • OAuth 2.0 authorization for MCP connector access.
  • Row-level security on all database tables.
  • Scoped API keys with credit-based usage limits.

5. Data Retention

  • Generated Content: Retained for as long as your account is active. You may delete individual assets at any time.
  • Usage Records: Retained for billing and audit purposes for as long as your account is active.
  • Session Tokens: Short-lived and automatically expire.
  • Account Deletion: Upon deletion, we remove your personal data and content within 30 days, except where retention is required by law.

6. Your Rights and Choices

  • Request a copy of the personal data we hold about you.
  • Request correction of inaccurate personal data.
  • Request deletion of your account and associated data.
  • Disconnect MCP connectors at any time.

To exercise these rights, contact us at info@soundsidedesign.com.

7. Changes to This Privacy Policy

We may update this Privacy Policy from time to time by posting the new version on this page and updating the "Last Updated" date.

8. Contact Us

If you have any questions, contact us at info@soundsidedesign.com.

9. Data Processing Agreement

For details on how we process personal data as a data processor, see our Data Processing Agreement.