Merchant of Record: Payments are processed by Paddle.com Market Limited, who acts as the Merchant of Record for all transactions. Paddle handles payment data, invoicing, and tax compliance. This privacy policy covers the data that BunnyRadio collects and processes directly.
BunnyRadio and Paddle are independent data controllers. Each party independently complies with applicable data protection laws. Paddle shares buyer data (name, email address, purchase history) with BunnyRadio for order fulfillment and product support only. We will not use data received from Paddle for marketing purposes without your separate, explicit consent. See Paddle's Data Processing Addendum for details.
BunnyRadio ("we", "us", "our") operates the website bunnyradio.com and provides a SaaS platform for time-shifted FM radio listening. We are the data controller for the personal data described in this policy.
Contact: support@bunnyradio.com
We do not store credit card numbers, bank details, or billing addresses. All payment data is held by Paddle as Merchant of Record. See Paddle's Privacy Policy for details.
| Purpose | Lawful basis (GDPR Art. 6) | Data used |
|---|---|---|
| Provide the service | Contract (Art. 6(1)(b)) | Email, password, coverages |
| Process subscription | Contract (Art. 6(1)(b)) | Paddle customer ID, coverage selection |
| Security & fraud prevention | Legitimate interest (Art. 6(1)(f)) | IP address, session tokens |
| Improve the product | Legitimate interest (Art. 6(1)(f)) | Usage data (anonymized) |
| Analytics (conversion funnel) | Consent (Art. 6(1)(a)) | Anonymous client ID, page views, conversion events |
| Service notifications | Contract (Art. 6(1)(b)) |
We do not use your data for marketing emails unless you explicitly opt in. We do not sell, rent, or trade your personal data to third parties.
| Provider | Purpose | Location |
|---|---|---|
| Paddle.com Market Limited | Payment processing, invoicing, tax compliance | UK / EU |
| Amazon Web Services (AWS) | Hosting, CDN (CloudFront), database (RDS), storage (S3) | EU (Frankfurt) |
| AWS Amplify | Frontend hosting and SSR | EU (Frankfurt) |
| Google LLC (Google Analytics 4) | Pseudonymous usage analytics (opt-in only) | US (with EU-US Data Privacy Framework) |
| Meta Platforms Ireland Ltd | Advertising measurement and conversion tracking (opt-in only). Data: pseudonymised browser identifiers (_fbp cookie), page view events, conversion events | US (with EU-US Data Privacy Framework) |
Core infrastructure is hosted in the EU (AWS eu-central-1, Frankfurt). Your account data, listening history, and broadcast content never leave the EU.
When you opt in to analytics, anonymized usage data (page views, conversion events) is sent to Google Analytics via a server-side proxy. No personally identifiable information is included. This transfer is safeguarded by the European Commission's adequacy decision for the EU-US Data Privacy Framework (adopted 10 July 2023), under which Google LLC is a certified participant. No other personal data is transferred outside the EU/EEA.
| Cookie | Purpose | Duration | Type |
|---|---|---|---|
| token | Authentication session (HTTP-only, secure) | 1 day (30 days with Remember Me) | Essential |
| user_display | Display name and role indicator (client-readable, not HTTP-only) | 1 day (30 days with Remember Me) | Essential |
| CloudFront access cookies (3) | Secure access to time-shifted streams via CDN | Session | Essential |
| Paddle cookies | Checkout functionality and fraud prevention | Session | Essential |
When you grant analytics consent via the cookie banner, Google Analytics sets the following HTTP cookies. These are cleared immediately if you revoke consent.
| Cookie | Purpose | Duration | Type |
|---|---|---|---|
_ga | Google Analytics client identifier. Distinguishes unique users across sessions. | 180 days | Analytics (opt-in) |
_ga_<ID> | Per-stream variant of the Google Analytics client identifier. Same purpose, scoped to a specific data stream. | 180 days | Analytics (opt-in) |
_gid | Google Analytics session identifier. Distinguishes unique users within a 24-hour window. | 24 hours | Analytics (opt-in) |
_gat | Google Analytics throttle cookie. Limits the rate of requests sent to Google. | 1 minute | Analytics (opt-in) |
When you grant marketing consent via the cookie banner, Meta Pixel sets the following HTTP cookie. This is cleared immediately if you revoke consent.
| Cookie | Purpose | Duration | Type |
|---|---|---|---|
_fbp | Meta Pixel browser identifier. Used to measure ad effectiveness and attribute conversions. | 90 days | Marketing (opt-in) |
When you grant marketing consent via the cookie banner, we send hashed (SHA-256) versions of your email address and name to Meta via their Conversions API for conversion measurement. This one-way hashing means the original values cannot be recovered. This server-side data is used alongside the Meta Pixel to measure advertising effectiveness. This transfer is governed by Meta's Data Processing Terms. If you revoke marketing consent, no further data is sent.
When you grant analytics consent via the cookie banner, we store the following in your browser's localStorage:
| Key | Purpose | Duration | Type |
|---|---|---|---|
| bunnyradio_cid | Anonymous client identifier (random UUID, not linked to your account). Removed when analytics consent is revoked. | Until consent revoked | Analytics (opt-in) |
| bunnyradio_consent_v1 | Keeps your cookie preference and consent timestamp | 6 months (auto-renewal prompt) | Essential |
Analytics and marketing data is only collected after you grant explicit opt-in consent via our cookie banner. You can withdraw consent at any time, after which all associated cookies are cleared immediately and no further data is collected.
Under the General Data Protection Regulation, you have the right to:
To exercise any of these rights, email support@bunnyradio.com. We will respond within 30 days.
You also have the right to lodge a complaint with your local data protection supervisory authority.
We protect your data with industry-standard measures including encrypted connections (TLS 1.3), hashed passwords (bcrypt), HTTP-only secure cookies, and access controls. All data is stored in encrypted-at-rest AWS RDS and S3 instances within the EU.
BunnyRadio is not directed at anyone under the age of 16 (or the minimum age for digital consent in your EU member state, if lower). We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at support@bunnyradio.com. We will promptly delete the data from our systems.
We may update this privacy policy from time to time. Material changes will be communicated via email to registered users. The "last updated" date at the top reflects the most recent revision.
Questions? Contact us at support@bunnyradio.com.