Privacy Policy � Google Sign-In (OAuth)

Quick summary

This policy explains how we use Google Sign-In (OAuth 2.0) to authenticate users. In general, we collect only basic profile information (name, email address, and, when available, profile photo) to create and manage your account. We do not access your Gmail, Google Drive, Calendar, YouTube, or other Google services unless explicitly stated and authorized by you.

1. What is Google Sign-In (OAuth)

Google Sign-In allows you to access Music Monster using your Google account. This process uses the OAuth 2.0 protocol, through which Google confirms your identity and returns only the information you have authorized.

2. Data we collect when you use Google Sign-In

When you choose Sign in with Google, we may receive and store:

Name (as displayed on your Google account)
Email address (primary Google account email)
Profile photo (when available)
Google Account ID (a technical identifier used to link your account)

This typically corresponds to the scopes openid, email, and profile.

3. How we use this data

To create and manage your account on Music Monster
To authenticate your access and maintain your session
To protect the service against fraud and unauthorized access
To provide support when you contact us

4. What we do NOT do

We do not read your Gmail messages
We do not access your Google Drive files
We do not access your Calendar, YouTube, Photos, or other Google services
We do not post or act on your behalf on Google services

If additional permissions are ever required, you will be clearly informed and asked to grant consent.

5. Data sharing

We do not sell your personal data. We may share limited information only when necessary with:

Hosting and infrastructure providers (to operate the service)
Security and anti-fraud services
Legal authorities, when required by law or court order

6. Cookies and sessions

We may use cookies or similar technologies to maintain your authenticated session, enhance user experience, and ensure security. You can control cookies via your browser settings, but some cookies are essential for login functionality.

7. Data storage, security, and retention

We store only the data necessary for authentication and service operation.
We use security measures such as HTTPS encryption and access controls.
We retain data while your account is active or as required by law.

8. Your rights

You may have the right to:

Request access to your personal data
Request correction of inaccurate or outdated data
Request deletion or anonymization, when applicable
Withdraw consent, when applicable

9. Revoking Google access

You can revoke Music Monster 's access to your Google account at any time through your Google Account security settings under Third-party access.

10. Contact

If you have any questions about this Privacy Policy or data usage, contact us at:

Email: [YOUR SUPPORT EMAIL]

11. Changes to this policy

We may update this policy from time to time to reflect changes in the service or legal requirements. The Last updated date will always indicate the most recent revision.