Privacy Policy

1. Introduction

This Privacy Policy describes how information is handled in connection with the Sonic-Prism website at sonic-prism.com (the "Site") and related communications you choose to send us. Sonic-Prism is a Windows desktop media player; when you purchase or use the Software through Steam, Valve Corporation’s privacy practices also apply—see Valve’s policies at https://store.steampowered.com/privacy_agreement/.

2. Who we are

This Site is operated for Sonic-Prism by Max-Axiom (the "Licensor" referred to in our Terms of Use). For privacy questions, email support@sonic-prism.com or reach us on https://discord.com/invite/aWe9K69hEY.

3. Information we collect

Information you provide. If you email us or contact us through Discord, we receive whatever information you include (for example, your email address and the content of your message).

Site functionality (browser storage). This Site uses your browser’s local storage to remember UI preferences—such as header hover sound volume/mute, background motion settings, and (on pages that show the news feed) cached post data and feed display options. This data stays on your device unless you clear site data in your browser.

Technical data. Like most websites, hosting infrastructure and your browser may process routine technical information when you load pages (for example, IP address, user agent, and approximate request timing) as needed to deliver the Site. We do not use third-party advertising or analytics trackers on this Site.

Third-party content. Some pages load decorative images from external hosts (for example, placeholder images). Those providers may receive standard connection data from your browser when those assets load.

Do Not Track. Our website does not currently change its behavior in response to "Do Not Track" signals, as we do not employ third-party behavioral tracking.

4. How we use information

We use information you send us to respond to support and inquiries. We use locally stored data solely to provide Site features (remembering settings and, where applicable, improving load behavior for the feed). We do not sell your personal information.

5. Sharing

We do not sell or rent your personal information. We may share information only as needed to operate the Site (for example, with hosting providers that process requests on our behalf) or when required by law. If you use Steam or Discord, their respective privacy policies govern those services.

6. Retention

Support communications are kept only as long as needed to handle your request and for ordinary business records. Local storage on your device persists until you clear it in your browser settings.

7. Your privacy rights (overview)

Laws in your country or state may give you specific rights over personal information about you. Sections 8 and 9 below describe rights for residents of the European Economic Area, United Kingdom, Switzerland, and California. Where another law applies to you, you may have similar rights—contact us and we will respond in line with applicable law.

How to submit a request. Email support@sonic-prism.com with enough detail for us to verify and fulfill your request (for example, the email address you used to contact us). We will not discriminate against you for exercising privacy rights. You may clear locally stored Site data at any time through your browser or device settings without contacting us.

8. EEA, United Kingdom, and Switzerland (GDPR)

This section applies if you are located in the European Economic Area (EEA), the United Kingdom (UK), or Switzerland and the EU General Data Protection Regulation ("GDPR") or substantially similar UK or Swiss data protection law applies to our processing of your personal data.

Controller. For personal data we process in connection with this Site, the controller is Max-Axiom (operating in connection with Sonic-Prism). You may contact us at support@sonic-prism.com.

Purposes and legal bases (GDPR Article 6). We process personal data for the following purposes, relying on the legal bases indicated:

• Responding to your inquiries and providing support — Legitimate interests (operating our business and communicating with users who contact us) and, where applicable, performance of a contract or steps at your request prior to entering a contract.
• Operating, securing, and improving the Site; maintaining technical logs as needed for security and reliability — Legitimate interests (ensuring network and information security, fraud prevention, service improvement) where those interests are not overridden by your rights; where required, compliance with a legal obligation.
• Storing preferences in your browser (e.g., via local storage) — Legitimate interests (providing basic Site functionality you expect) and, where local law requires consent for similar technologies, consent (which you may withdraw as described below).
• Complying with law and defending legal claims — Legal obligation or legitimate interests as applicable.

Your GDPR rights. Subject to applicable conditions and exemptions, you have the right to: access your personal data (Article 15); rectify inaccurate data (Article 16); erase data ("right to be forgotten") in certain cases (Article 17); restrict processing in certain cases (Article 18); data portability for data you provided, where processing is automated and based on contract or consent (Article 20); object to processing based on legitimate interests or for direct marketing (Article 21); and not be subject to solely automated decisions with legal or similarly significant effects, where applicable (Article 22—we do not use such decision-making for the Site). Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of processing before withdrawal.

Complaints. You have the right to lodge a complaint with a data protection supervisory authority in your country of residence, place of work, or where an alleged infringement occurred.

International transfers. Your personal data may be processed in the United States and other countries that may not be deemed to provide an adequate level of protection by your local regulator. Where required, we use appropriate safeguards for transfers from the EEA, UK, or Switzerland—such as the European Commission’s Standard Contractual Clauses ("SCCs"), the UK International Data Transfer Agreement / Addendum, or Swiss equivalents—or we rely on another lawful transfer mechanism or derogation permitted by applicable law.

Retention. We retain personal data only as long as necessary for the purposes described in this Policy and applicable retention periods (see Section 6).

9. California residents (CCPA / CPRA)

This section applies solely to California residents and supplements the rest of this Privacy Policy. It describes our practices over the preceding twelve (12) months or current practices as stated herein, as required by the California Consumer Privacy Act of 2018 ("CCPA") as amended by the California Privacy Rights Act ("CPRA").

Categories of personal information collected. Depending on how you use the Site, we may collect the following categories of personal information as defined under California law: Identifiers (such as name, email address, online identifier, IP address); Internet or other electronic network activity information (such as browsing or interaction with the Site); Geolocation data (approximate location derived from IP address); and Inferences (we do not create profiles for advertising from Site use). We do not intentionally collect sensitive personal information as defined by the CPRA in connection with the Site.

Sources. Personal information comes from you (e.g., when you email us), automatically when you use the Site (e.g., technical data), and in limited cases from service providers that assist us in hosting or operating the Site.

Business or commercial purposes. We use categories of personal information for the business purposes described in Sections 3 and 4—such as operating the Site, responding to requests, security, and maintaining our relationship with you.

Disclosure and "sale" / "sharing." We may disclose personal information to service providers and contractors who assist us (for example, hosting providers) subject to contractual restrictions. We do not sell personal information as that term is defined under the CCPA. We do not share personal information for cross-context behavioral advertising as defined under the CCPA/CPRA. We do not knowingly sell or share the personal information of minors under 16.

Your California privacy rights. Subject to verification and applicable exceptions, California residents may request:

• Right to know / access: disclosure of the categories and specific pieces of personal information we have collected about you, and the categories of sources, purposes, and third parties (Sections 3–5 summarize much of this).
• Right to delete: deletion of personal information we collected from you, subject to legal exceptions.
• Right to correct: correction of inaccurate personal information we maintain.
• Right to opt out of sale or sharing: not applicable to our current practices as described above; we do not sell or share for cross-context behavioral advertising.
• Right to limit use of sensitive personal information: not applicable—we do not use sensitive personal information for purposes that would trigger this right on the Site.
• Non-discrimination: we will not discriminate against you for exercising CCPA/CPRA rights.

Submitting requests. Submit requests by emailing support@sonic-prism.com. We will verify your request in a reasonable manner consistent with the nature of the information (for example, by confirming control of an email address). You may designate an authorized agent to make a request on your behalf under California law; we may require written authorization or proof of agency.

California "Shine the Light." California Civil Code § 1798.83 permits California residents to request certain information regarding disclosure of personal information to third parties for their direct marketing purposes. We do not disclose personal information to third parties for their direct marketing purposes as described in that statute based on our current practices.

10. Children

The Site is not directed at children under 13 (or the minimum age in your jurisdiction), and we do not knowingly collect personal information from children.

11. Changes

We may update this Privacy Policy from time to time. The "Last updated" date at the top will change when we do. Continued use of the Site after an update means you accept the revised policy.