Legal

Privacy Policy

Last updated: April 11, 2026

Overview

Setlist (“we,” “us,” or “our”) operates a platform connecting musicians and venues in the local live music community. This Privacy Policy explains how we collect, use, and protect information when you use our service at setlist.app.

By using Setlist, you agree to the collection and use of information as described in this policy.

Information We Collect

We collect the following types of information:

Information from Google Sign-In

When you sign in using Google OAuth, Google provides us with the following data from your Google account:

  • Your full name
  • Your email address
  • Your Google profile picture (if available)

We request only the minimum scopes necessary: openid, profile, and email. We do not access your Gmail, Google Calendar, Google Drive, or any other Google services.

Information You Provide

When you create a profile, you may provide:

  • Band or venue name
  • Bio, genre, location, and other profile details
  • Profile photos and media links
  • Social media handles for public metrics display

Usage Data

We may collect basic usage information such as pages visited and features used, for the purpose of improving the platform. This data is not sold or shared with third parties for advertising purposes.

How We Use Your Information

We use the information we collect to:

  • Create and maintain your Setlist account and profile
  • Authenticate you when you log in
  • Connect musicians and venues on the platform
  • Send transactional emails (booking confirmations, messages)
  • Improve and develop platform features
  • Comply with legal obligations

We do not sell your personal information to third parties.

Data Sharing

We share your information only in the following circumstances:

  • Other users: Profile information you add (band name, bio, photos, etc.) is visible to other Setlist users per your privacy settings.
  • Service providers: We use Supabase for database and authentication infrastructure. Your data is stored securely on their platform in accordance with their privacy policy.
  • Legal requirements: We may disclose information if required by law or to protect the rights and safety of our users or the public.

Data Retention

We retain your account and profile information for as long as your account is active. If you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required for legal or compliance reasons.

Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Revoke Google OAuth access at any time via your Google Account permissions

To exercise these rights, contact us at hello@setlist.app.

Security

We use industry-standard security measures including HTTPS encryption for all data transmission and secure, managed authentication infrastructure via Supabase. However, no method of transmission over the internet is 100% secure.

Children's Privacy

Setlist is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us immediately.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of significant changes by updating the “Last updated” date above. Continued use of Setlist after changes constitutes acceptance of the updated policy.

Contact

If you have questions about this Privacy Policy, please contact us at:

Setlist

Salt Lake City, Utah

hello@setlist.app