Effective as of 1 November 2016
2 Key highlights of what you’re consenting to
3 The information we collect
4 How we use the information we collect
5 Sharing information
6 Your preferences
7 Transfer to other countries
11 Accessing and updating user information
13 Information about cookies, other technologies, and third-party data collection
- Explain the way we use information that you share with us in order to build a great product and give you a great experience with it;
- Ensure that you understand what information we collect with your permission, and what we do — and do not do — with it;
- Hold us accountable for protecting your rights and your privacy under this policy.
All the information we collect is related to providing the Spotify service and its features.
Broadly speaking, there are two categories of information we collect: 1) information that we must have in order for you to use Spotify; and 2) information that we can use to provide additional features and improved experiences if you choose to share that information.
The first category includes:
- Registration information, including your name, birth date, address, and other information you provide when you sign up for Spotify.
- Broad, non-specific location, which we derive from your IP address. Our licenses to deliver music and other content to you are location-specific, so we need to know what country you’re in. This also enables us to make suggestions based on your general location, like concerts or performances.
- The music you listen to and your interactions with the Service. This allows us to make recommendations to you and suggest relevant content. You can choose whether or not to share this information with your friends, followers, or the public.
- Technical and sensor information necessary to operate Spotify. This includes the type of browser and device you use, data from the touchscreen, and information from your device’s accelerometer and gyroscope sensors. This enables you to control Spotify and allows us to do simple things like rotate videos and recommend music based on whether you’re sitting still or running.
The second category includes information that enables us to offer you additional features. We never receive any of the following information unless you expressly choose to share it with us. It’s as simple as that. Here are some examples:
- Your specific location: We will never gather or use your specific device location without first getting your explicit permission. This information enables us to create collaborative listening experiences (only with others who have also given permission), and to provide even better recommendations about locally popular music, live venues, and concerts.
- Your photos: We will only access images that you specifically choose, and we will never scan or import your photo library or camera roll. This allows you to choose individual pictures to change your profile picture or create cover art for a playlist. You can stop sharing photos and revoke access at any time.
- Your contacts: We will never scan or import your contacts unless you ask us to. If you choose to do so, we will only use your contact information to help you find friends or contacts who use Spotify.
- Your microphone: We will never access or use your microphone unless you give us explicit permission. This could enable you to control Spotify with your voice, and you will always have the ability to disable access to the microphone.
We will be clear with you about how and when we might share information.
In some contexts, we will share certain information. For example, like most services, if you sign up for Spotify through a third party like Facebook or a mobile provider, we share some information with them and they share some information with us in order to enable your account. And we also share de-identified information with our music industry partners to help them understand how the content they license to us is performing, with marketing partners who help us with promotional efforts, and with advertisers that allow us to offer a free service. There also may be times when you want us to share information. For example, when you make playlists, you might want those playlists to be visible to your friends… and you might not. Similarly, you can ask us to share information (like your email address) with artists or record labels, or other partners who may want to directly send you news or promotional offers, but you can also revoke that permission at any time.
By using or interacting with the Service, you are consenting to:
- the transfer of your information outside of the country where you live;
- the public availability of your information and the controls over such information as described in Sharing information.
We may collect and store the following information—
3.1 Registration data
When you sign up for the Service, we may ask you for information such as your username, password, email address, date of birth, gender, address, postal code, and country. If you connect to the Service using credentials from a Third Party Application (as defined in the Terms and Conditions of Use) (e.g., Facebook), you authorise us to collect your authentication information, such as your username and encrypted access credentials. We may also collect other information available on or through your Third Party Application account, including, for example, your name, profile picture, country, hometown, email address, date of birth, gender, friends’ names and profile pictures, and networks.
You may also choose to voluntarily add other information to your profile, such as your mobile phone number and mobile service provider.
When you use or interact with the Service, we may use a variety of technologies that collect information about how the Service is accessed and used. This information may include:
- information about your type of subscription and your interactions with the Service, such as interactions with songs, playlists, other audiovisual content, other Spotify users, Third Party Applications, and advertising, products, and services which are offered, linked to, or made available on or through the Service;
- the details of the queries you make and the date and time of your request;
- User Content (as defined in the Terms and Conditions of Use) you post to the Service including messages you send and/or receive via the Service;
- technical data, which may include URL information, cookie data, your IP address, the types of devices you are using to access or connect to the Spotify Service, unique device ID, device attributes, network connection type (e.g., WiFi, 3G, LTE) and provider, network and device performance, browser type, language, information enabling digital rights management, operating system, and Spotify application version.
- motion-generated or orientation-generated mobile sensor data (e.g., accelerometer or gyroscope).
3.3 Your mobile device
- Photos and Camera: We will not access your photos or camera without first getting your explicit permission and we will never scan or import your photo library or camera roll. If you give us permission to access photos or your camera, we will only use images that you specifically choose to share with us. (You may use our application to select the photo or photos you choose to share, but we will never import the photos you review except those you explicitly share.).
- Location: We will not gather or use the specific location of your mobile device (by using, for example, GPS or Bluetooth) without first getting your explicit permission. And if you choose to share location information but later change your mind, you will always have the ability to stop sharing. Please note that this does not include IP address. We will continue to use your IP address as described in Section 3.2 above, to determine, for example, what country you are in and comply with our licensing agreements.
- Voice: We will not access your microphone without first getting your explicit permission. You will always have the ability to disable microphone access.
3.4 Widget data
Other websites may integrate Spotify widgets (such as the Spotify Play Button or Spotify Follow Button). When you visit a site with a Spotify widget embedded, we may receive certain information, including information about the web page you visited. Spotify and the widget can recognise you, and the widget may be used to show personalised content or advertising. We know when you interact with a widget, and websites containing the widgets may receive this information.
3.5 Payment data
If you sign up for a Trial (as defined in the Terms and Conditions of Use), purchase any of our Paid Subscriptions (as defined in the Terms and Conditions of Use), or make other purchases through the Service, your credit or debit card information (such as card type and expiration date) and other financial data that we need to process your payment may be collected and stored by us and/or the payment processors with which we work. We may also collect some limited information, such as your postal code, mobile number, and details of your transaction history, all of which are necessary to provide the Service. In addition, the payment processors generally provide us with some limited information related to you, such as a unique token that enables you to make additional purchases using the information they’ve stored, and your card’s type, expiration date, and certain digits of your card number.
If you choose to pay by invoice, Spotify may need to collect and store additional information, like your name, date of birth, and phone number, and provide it to payment processors we work with to issue invoices, to enable credit checks and to send you invoices.
3.6 Sweepstakes, contests & surveys
3.7 Spotify service providers and partners
We may also receive information about you from our service providers and partners, which we use to personalise your Spotify experience, to measure ad quality and responses to ads, and to display ads that are more likely to be relevant to you. We also use this information as explained in the section How we use the information we collect below.
Consistent with the permissions you give us to collect the information, we may use the information we collect, including your personal information:
- to provide, personalise, and improve your experience with the Service and products, services, and advertising (including for third party products and services) made available on or outside the Service (including on other sites that you visit), for example by providing customised, personalised, or localised content, recommendations, features, and advertising on or outside of the Service;
- to ensure technical functionality of the Service, develop new products and services, and analyse your use of the Service, including your interaction with applications, advertising, products, and services that are made available, linked to, or offered through the Service;
- to communicate with you for Service-related or research purposes including via emails, notifications, text messages, or other messages, which you agree to receive;
- to communicate with you, either directly or through one of our partners, for marketing and promotional purposes via emails, notifications, or other messages, consistent with any permissions you may have communicated to us (e.g., through your Spotify account settings); in the section Your preferences below, we inform you of the controls you can use to opt out from receiving certain messages;
- to, if you explicitly provide us your permission, use your mobile phone number to send you informational, marketing and promotional text messages using an automatic dialing system; you are not required to provide consent as a condition of signing up for Spotify’s services;
- to enable and promote the Service and other services or products, either within or outside the Service, including features and content of the Service and products and services made available through the Service;
- to process your payment or prevent or detect fraud;
- to provide you with features, information, advertising, or other content which is influenced by your location and your location in relation to other Spotify users; and
This section describes how the information collected or generated through your use of the Spotify service may be shared by you or by us.
The Spotify Service is a social service that offers many ways to find, enjoy, and share content. We encourage you to take advantage of these social features with others on the Service.
Your name and/or username, profile picture, who you follow, who follows you, and your Spotify user profile will always be publicly available.
Playlists created or followed, your activity on the Service (e.g., what you listen to, music you share), recently played artists, your top tracks, your top artists, and User Content you post, upload, and/or contribute to the Service are made publicly available by default. Your activity on the Service (e.g., what you listen to, music you share) will automatically appear on the Service and will, for example, be accessible by users who follow you or view your Spotify profile. If you create a playlist, the playlist will be publicly displayed by default, which means that it will also be displayed publicly in third-party search engine results and may appear together with other public profile information, such as your picture and name and/or username. Although this information is made public by default, in Your preferences below, we describe the controls that you can use, along with other relevant settings associated with your Spotify account, to limit the sharing of your information.
Please remember that certain information is always publicly available, which means that it can be accessed by Third Party Applications through our APIs and developer tools. Based on your permissions, some additional information can be shared with Third Party Applications and with others through Third Party Applications. For example, you can use your settings to control whether your Spotify activity is posted to Facebook. Similarly, you may consent to provide Third Party Applications with access to your email address, subscription status, location, birthday, or similar information, upon their request.
We may use your public information to promote the Service and to help others find and follow you and/or your Spotify content, including through Facebook and other Third Party Applications and on websites that embed Spotify widgets. Your information may be used to notify others, including within the Service, via email, and through Facebook and Third Party Applications, about your use of the Service (e.g., that you have joined Spotify or activity related to a Spotify profile, such as adding or removing tracks from a playlist).
With your explicit permission, we may notify other users of your location. Likewise, with other Spotify users’ explicit permission, we may notify you about their whereabouts. We may offer you the ability to share this information to create shared experiences.
Learn more about how to manage notifications, your publicly available information, and what you share with others in Your preferences below.
5.1.2 Third Party Applications
If you connect your Spotify account to a Third Party Application, Spotify may automatically share your activity and activity-related stories with that service, including the content you consume. You understand and agree that that such information may be attributed to your account on the Third Party Application and may be published on such service. Although this information may be automatically shared by default, we inform you of the controls that you can use to limit the sharing of this information in the section Your preferences below. The Third Party Application may also provide similar controls.
If you log into a Third Party Application with your Spotify account, that Third Party Application may have access to certain information such as your playlists, content saved, and activity. With your explicit permission, we may also share additional information such as your email address, subscription status, location, or birthdate with such Third Party Applications.
Spotify also enables you to share a particular item of content or a playlist that you have created, on an individual basis, to Third Party Applications, other third party services, other Spotify users, and others. Please note that if you share content to a Third Party Application or a third party service, it will be viewable by others within the Spotify Service, regardless of your Spotify account settings.
5.1.3 Support Community
When you register for a Spotify Support Account on the Spotify Support Community, we will ask you to create a specific Spotify Support Community username, which will be publicly displayed to anyone who accesses the Spotify Support Community. If you choose not to create such a username, your Spotify username or your Facebook display name will be publicly displayed when you post User Content.
5.2.1 Marketing and advertising
We may share information with advertising partners in order to send you promotional communications about Spotify or to show you more tailored content, including relevant advertising for products and services that may be of interest to you, and to understand how users interact with advertisements. The information we share is in a de-identified format (for example, through the use of hashing) that does not personally identify you.
Please see the section Information about cookies, other technologies, and third-party data collection below for information about the cookies and other technologies that we and third parties use to serve you more relevant ads and your options.
5.2.2 Service providers and others
5.2.3 Rights holders
The Spotify service allows you to listen to fully-licensed streaming content. Spotify shares information with the rights holders that license this content to Spotify. The data that Spotify shares is in a de-identified format that does not identify you directly, unless you opt in to the sharing of your personal information.
5.2.4 Certain Spotify partners
If you access the Spotify Service through an offer that you received or purchased from a third party such as your mobile network operator, we may also share information with that third party about your use of the Spotify Service, such as whether and to what extent you have used the offer, activated a Spotify account, or actively used the Service.
5.2.5 Other sharing
In addition to the above, we may also share your information with third parties for these limited purposes:
- to allow a merger, acquisition, or sale of all or a portion of our assets;
- to respond to legal process (e.g., a court order or subpoena), if we believe in good faith that it is necessary to do so; to comply with requirements of mandatory applicable law; to protect the safety of any person; to protect the rights and property of Spotify, including to enforce the Terms and Conditions of Use and any other terms that you have agreed to; and to address fraud, security, or technical issues;
- to academic researchers for purposes including statistical analysis and academic study, but only in a de-identified format;
- to publish de-identified or aggregate information about the use of the Spotify Service; and
We provide you with settings to allow you to choose which communications you receive from us, manage your public information, and set your sharing preferences. However, as explained in the section Sharing by you, certain information may always be publicly available to others and other information is made publicly available to others by default. And if you share information to a Third Party Application, that information is viewable on Spotify, regardless of how you set your privacy settings.
To change whether certain information is publicly available, you can adjust the settings in your account. View instructions for adjusting the relevant settings on Spotify’s website.
Information that is publicly available, such as playlists, may be used, re-shared, or linked to by others on the Service or across the web, so please use Spotify carefully and be mindful of your settings. Remember that even if you remove a playlist or make a playlist private, others who already subscribe to it or who otherwise have access to it (e.g., via a link) may still have access to it. Also keep in mind that playlists and other information added to your profile may include personal information, such as username, which could enable other persons to find you within the Spotify Service or other services.
We may display advertisements from third parties and other content that links to third party websites. We cannot control or be held responsible for third parties’ privacy practices and content. Please read their privacy policies to find out how they collect and process your personal information.
We are committed to protecting our users’ information. Your password protects your user account, so you should use a unique and strong password, limit access to your computer and browser, and log out after having used the Spotify Service. While we take data protection precautions, no security measures are completely secure, and we do not guarantee the security of user information.
The Spotify Service is not directed to children under the age of 13. (In some countries, stricter age limits may apply. See our Terms and Conditions of Use.) We do not knowingly collect personal information from children under 13 or under the applicable age limit (the “Age Limit”). If you are under the Age Limit, do not use the Service and do not provide any personal information to us. If you are a parent of a child under the Age Limit and become aware that your child has provided personal information to Spotify, please contact us at email@example.com and you may request exercise of your applicable access, rectification, cancellation, and/or objection rights. If you are a California resident under the age of 18 and you wish to remove publicly available content, please contact us at firstname.lastname@example.org.
Occasionally we may, in our discretion, make changes to the Agreements. When we make material changes to the Agreements, we’ll provide you with prominent notice as appropriate under the circumstances, e.g., by displaying a prominent notice within the Service or by sending you an email. In some cases, we will notify you in advance, and your continued use of the Service after the changes have been made will constitute your acceptance of the changes. Please therefore make sure you read any such notice carefully. If you do not wish to continue using the Service under the new version of the Agreements, you may terminate the Agreements by contacting us through the Customer Service contact form.
13.1 What are cookies and other technologies?
A cookie is a small text file that is placed on your computer, mobile phone, or other device when you visit a website. The cookie will help website providers to recognise your device the next time you visit their website. There are other similar technologies such as pixel tags (transparent graphic images placed on a web page or in an email, which indicate that a page or email has been viewed), web bugs (similar to pixel tags), and web storage, which are used in desktop software or mobile devices.
There are also technologies such as mobile device identifiers and SDK integrations to help companies recognise your device when you return to an app or otherwise use the a service.
We use both session cookies (which expire once you close your web browser) and persistent cookies (which stay on your device for a set period of time or until you delete them). We use the following types of cookies for the purposes explained in this chart:
|Essential Operational||These cookies are necessary to allow us to operate the Spotify Service as you have requested. For example, they let us recognise what type of subscriber you are and then provide you with services accordingly.|
|Performance / Analytics||We use these cookies to analyse how the Spotify Service is accessed, is used, or is performing. We use this information to maintain, operate, and continually improve the Spotify Service. We may also obtain information from our email newsletters, including whether you opened or forwarded a newsletter or clicked on any of its content. This information tells us about our newsletters' effectiveness and helps us ensure that we're delivering information that you find interesting.|
|Functional||These cookies let us operate certain functions of the Spotify Service in line with the choices you make. These cookies mean that when you continue to use or come back to the Spotify Service, we can provide you with our services as you have asked for them to be provided, such as knowing your username, remembering how you have customised our services, and reminding you of content you have enjoyed.|
|Targeting / advertising||We use these cookies to serve you with advertisements that may be relevant to you and your interests. The information may also be used for frequency capping purposes (e.g., to ensure we do not display the same advertisement to you repeatedly) and to help us regulate the advertisements you receive and measure their effectiveness.|
|Spotify Ads||We work with web publishers, advertising networks, and service providers to deliver Spotify ads on other web sites and services. Cookies may be used to serve you with advertisements that may be relevant to you and your interests on other web sites and services and to regulate the advertisements you receive and measure their effectiveness.|
13.3 Manage your cookie and other preferences
Please note that if you choose to block cookies, doing so may impair the Spotify Service or prevent certain elements of it from functioning.
There is no accepted standard on how to respond to Do Not Track signals, and we do not respond to such signals. We use the AdChoices Icon on our website, and it may also appear on certain targeted advertisements that we (or a service provider acting on our behalf) send to you based on information about your online activities. You may click on the AdChoices icon or visit aboutads.info to receive more information about the collection and use of information about your online activities for online behavioral advertising or to learn how to opt out of having your data used for online behavioral advertising by Digital Advertising Alliance (DAA) participating companies. Canadian users can also visit youradchoices.ca. European users can also visit youronlinechoices.com to learn how to opt out of having their data used for online behavioral advertising by European Interactive Digital Advertising Alliance (EDAA) member companies.
Another available tool is the Network Advertising Initiative’s (NAI) Opt-Out Tool at networkadvertising.org/choices. This allows you to opt out from the use of information about your online activities for online behavioral advertising by NAI member companies.
On your mobile device, you may also have a “Limit Ad Tracking” setting (on iOS devices) or a setting to “Opt out of Interest-Based Ads” (on Android) which allows you to limit the use of information about your use of apps for purposes of serving ads targeted to your interests.
Please note that even if you opt out using the mechanisms above, you may still receive advertisements when using the Spotify Service.
We work with advertising partners to serve advertisements on the Spotify Service. One of the services we use to track activity related to the Service, e.g., by placing cookies, is Google Analytics by Google (Google, Inc. a company headquartered at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). We may use vendors, including Google, who use first-party cookies (such as the Google Analytics cookie) and third-party cookies (such as the DoubleClick cookie) together to inform, optimise, and serve ads based on your past visits to our websites, including Google Analytics for Display Advertising. Google provides tools to manage the collection and use of certain information by Google Analytics at tools.google.com/dlpage/gaoptout and by Google Analytics for Display Advertising or the Google Display Network by using Google’s Ads Settings at google.com/settings/ads.
You hereby consent to the use of the cookies and other technologies described above.
13.4 More information
Regeringsgatan 19, SE-111 53 Stockholm
© Spotify AB.