At Fragments.fm ("we," "us," "our"), operated by A08 Consulting, we are committed to protecting your privacy and handling your personal data responsibly. This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you use our music storytelling platform and related services (the "Services").
This Privacy Policy applies to all users of Fragments.fm, including visitors, registered users, and subscribers.
Data Controller
A08 Consulting is the data controller responsible for your personal data:
A08 Consulting
Ratakatu 9 B 11
00120 Helsinki, Finland
Business ID: 3446829-3
VAT ID: FI34468293
Email: legal@fragments.fm
For questions about this Privacy Policy or our data practices, contact us at legal@fragments.fm.
We collect information in the following ways:
Account Information
User Content
Payment Information
Communications
Connected Services
Usage Data
Device and Technical Information
Cookies and Similar Technologies
Log Data
We use your personal data for the following purposes and legal bases:
| Purpose | Legal Basis (GDPR Art. 6) |
|---|---|
| Providing the Services – Creating and managing your account, enabling you to create and share stories, processing transactions | Performance of contract |
| Communication – Sending service-related messages, responding to your inquiries, providing customer support | Performance of contract |
| Payment processing – Processing subscriptions and purchases, sending invoices and receipts | Performance of contract |
| Service improvement – Analyzing usage patterns, fixing bugs, developing new features | Legitimate interests |
| Security – Detecting and preventing fraud, abuse, and security incidents; enforcing our terms | Legitimate interests |
| Personalization – Customizing your experience based on your preferences and usage | Legitimate interests |
| Marketing – Sending promotional communications about new features and offers (with your consent) | Consent |
| Legal compliance – Complying with legal obligations, responding to legal requests | Legal obligation |
Legitimate Interests: Where we rely on legitimate interests, we have assessed that our interests do not override your fundamental rights and freedoms. You may object to processing based on legitimate interests as described in Section 5.
We do not sell your personal data. We share your information only in the following circumstances:
When you choose to share your stories publicly or with specific users, that content is visible to those audiences.
We share data with third-party service providers who help us operate the Services, including:
| Provider Type | Purpose | Data Shared |
|---|---|---|
| Cloud hosting | Infrastructure and storage | All data processed through Services |
| Payment processors | Payment processing | Payment and billing information |
| Email services | Transactional and marketing emails | Email address, name |
| Analytics | Usage analysis and improvement | Usage data, device information |
| Customer support | Help desk and support tickets | Contact information, support communications |
All service providers are contractually obligated to protect your data and may only use it for the purposes we specify.
We may disclose your information if required to do so by law or if we believe in good faith that such disclosure is necessary to:
If A08 Consulting is involved in a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have.
We may share aggregated or anonymized data that cannot reasonably be used to identify you for any purpose, including research and analytics.
Under the General Data Protection Regulation (GDPR) and Finnish data protection law, you have the following rights regarding your personal data:
You have the right to request a copy of the personal data we hold about you and information about how we process it.
You have the right to request correction of inaccurate personal data and to have incomplete data completed.
You have the right to request deletion of your personal data in certain circumstances, including when:
You have the right to request that we restrict processing of your data in certain circumstances, such as when you contest the accuracy of the data or object to processing.
You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller where technically feasible.
You have the right to object to processing based on legitimate interests or for direct marketing purposes. If you object to direct marketing, we will stop processing your data for that purpose.
Where we process your data based on consent, you have the right to withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing before withdrawal.
You have the right to lodge a complaint with a supervisory authority. In Finland, the relevant authority is:
Office of the Data Protection Ombudsman (Tietosuojavaltuutetun toimisto)
Lintulahdenkuja 4, 00530 Helsinki, Finland
Website: www.tietosuoja.fi
Email: tietosuoja@om.fi
To exercise any of these rights, contact us at legal@fragments.fm. We will respond to your request within one month. If your request is complex or we receive many requests, we may extend this period by up to two additional months, in which case we will inform you.
We may need to verify your identity before processing your request. We will not charge a fee for most requests, but we may charge a reasonable fee or refuse to act on requests that are manifestly unfounded or excessive.
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements.
| Data Type | Retention Period |
|---|---|
| Account information | Duration of account plus 30 days after deletion request |
| User Content | Duration of account plus 30 days after deletion (unless shared with other users who retain access) |
| Payment records | 7 years (Finnish accounting law requirement) |
| Support communications | 3 years after resolution |
| Usage and analytics data | 26 months |
| Server logs | 90 days |
| Marketing consent records | Duration of consent plus 3 years |
After the retention period expires, we will securely delete or anonymize your data. Some data may be retained longer if required by law or for legitimate business purposes (e.g., defending legal claims).
Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA), including countries that may not provide the same level of data protection as Finland or the EU.
When we transfer data outside the EEA, we ensure appropriate safeguards are in place, including:
You may request information about the safeguards we use for international transfers by contacting us at legal@fragments.fm.
We use cookies and similar technologies to operate and improve the Services.
| Cookie Type | Purpose | Duration |
|---|---|---|
| Strictly Necessary | Essential for the Services to function (e.g., authentication, security) | Session or persistent |
| Functional | Remember your preferences and settings | Up to 1 year |
| Analytics | Understand how users interact with the Services | Up to 2 years |
| Marketing | Deliver relevant advertisements (only with consent) | Up to 1 year |
When you first visit Fragments.fm, we will ask for your consent to use non-essential cookies. You can change your preferences at any time through our cookie settings or your browser settings. Blocking certain cookies may affect functionality.
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:
Technical Measures
Organizational Measures
Beta Notice: While we implement reasonable security measures, please be aware that the Services are in beta. No method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data.
If you become aware of any security breach or unauthorized access to your account, please notify us immediately at support@fragments.fm.
Fragments.fm is not intended for children under 18 years of age. We do not knowingly collect personal data from children under 18.
If we become aware that we have collected personal data from a child under 18, we will take steps to delete that information as quickly as possible. If you believe we may have collected data from a child under 18, please contact us at legal@fragments.fm.
The Services may contain links to third-party websites or integrate with third-party services (such as music streaming platforms). This Privacy Policy does not apply to those third-party services.
We encourage you to read the privacy policies of any third-party services you access through Fragments.fm. We are not responsible for the privacy practices of third parties.
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors.
How We Notify You:
Your Continued Use: Your continued use of the Services after any changes indicates your acceptance of the updated Privacy Policy. If you do not agree to the changes, you should stop using the Services and may request deletion of your account.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
A08 Consulting
Ratakatu 9 B 11
00120 Helsinki, Finland
General inquiries and support: support@fragments.fm
Privacy, legal, and data protection matters: legal@fragments.fm
We aim to respond to all privacy-related inquiries within one month.
By using Fragments.fm, you acknowledge that you have read and understood this Privacy Policy.
By subscribing, you agree to receive occasional updates about Fragments.fm. Privacy Policy