Legal

Radio Starlight — Privacy Policy

Last updated: 2025‑09‑21

TL;DR: Radio Starlight is a local‑first studio. We don’t run a central service that profiles you, and we don’t collect your program content by default. If you choose cloud AI providers or publish using the open Starlight Catalog Service protocol, your content is sent to those providers or made public according to your direction. We also sell Pro via Apple In‑App Purchase; Apple processes the payment. We do not track you for ads and we do not show Apple’s ATT prompt. You control what you send and what you publish.

1) Who we are & scope

This Privacy Policy explains how Radio Starlight (“we”, “our”, “us”) handles information in the Radio Starlight iOS app (distributed via Apple’s App Store) and related sites (the “Services”). It covers:

Controller & contact. The data controller is craftclay K.K., Oda, Mine city, Yamaguchi, 754-0211, Japan. Email: [email protected]

No account required. The app does not require a user account. If we introduce accounts in the future, we will provide in‑app account deletion and update this Policy.

2) How Radio Starlight works (privacy overview)

  • Local‑first studio. You design segments, prompts, personalities, Sound Sets, and show art on your device. This content stays local unless you choose to send or publish it.

  • Bring your own content. Add Feeds (RSS/Atom/JSON), connect APIs, and point to public web pages. Requests originate from your device (or any proxy you configure).

  • Bring your own AI. You choose text and image models for generation:

    • On‑device (Apple): Apple’s Foundation Models and Image Playground can keep generation on compatible Apple hardware.
    • Cloud APIs: e.g., OpenAI, Google Gemini, or others you configure. Prompts and inputs you send are transmitted to those providers under their terms.

  • Open publishing (opt‑in). If you publish a designed program or generated broadcast—and its sources, personalities, and Sound Sets—via the Starlight Catalog Service protocol, that content and metadata can become public and remixable.

2A) No tracking & ATT

We do not engage in “tracking” as defined by Apple (we don’t link your data with data from other companies’ apps or websites for targeted advertising, and we don’t share with data brokers). We do not show Apple’s App Tracking Transparency (ATT) prompt. If we add tracking in the future, we will request permission first and update this Policy.

3) Information we do not collect by default

We do not operate a centralized cloud that ingests your shows, prompts, personalities, Sound Sets, cover art, or your configured sources. We do not track your listening or editing behavior across devices by default.

4) Information processed on your device

Stored locally unless you choose to share or publish:

  • Program designs (segments, prompts, structure) and generated scripts
  • Cover images/avatars, personalities, and Sound Sets metadata
  • Source lists (feed URLs, API endpoints, page URLs)
  • Any API keys or tokens you enter, plus model settings/preferences

Your choices: You can delete or export this data using your device’s file management and any in‑app export tools.

5) When information is sent to third parties (your direction)

  • Cloud AI providers you select (User Content for App Functionality). If you choose a cloud LLM or image model (e.g., OpenAI, Google Gemini), the prompts, source excerpts, and generation settings you send will be transmitted to that provider to deliver the feature. They are independent controllers/processors; their privacy policies and retention practices apply. We do not receive this content unless you send it to us (e.g., in support).
  • External content sources. When fetching feeds/APIs/pages, request details (including your IP address and user agent) are visible to the destination or any proxy you configure. Some APIs log queries for abuse prevention/analytics.
  • Catalog publishing. If you publish using the Starlight Catalog Service protocol to a catalog you or a third party operates, the catalog operator will receive and host the content and metadata you publish under their terms.
  • Cloud storage you choose. If you save or sync to services like iCloud Drive or others, those providers’ policies apply to stored files and metadata.

Tip: Avoid including sensitive personal data in prompts or published metadata. Use on‑device models when privacy or offline operation is critical.

5A) Subscriptions & payments (Apple In‑App Purchase)

If you purchase Pro via Apple In‑App Purchase, Apple processes your payment information. We receive purchase receipts/identifiers but not your full card or billing details.

6) Open publishing: transparency & remix

Publishing via the Starlight Catalog Service protocol is opt‑in. When you publish, your program/broadcast and associated metadata (including the feeds/APIs/pages used, personalities, and Sound Sets) may become public, shareable, and remixable. Others may clone or build upon your published work. Removing content from your device does not remove content already published elsewhere. To modify or remove published material, use the policies/tools of the catalog(s) where you published. We cannot guarantee removal from third‑party mirrors or remixes. If you include personal data in a published catalog, you act as the publisher of that content.

7) Optional diagnostics & support

By default, the app does not send analytics to us.

  • Support. If you contact [email protected], we will receive the information you include (e.g., your email address and any logs you choose to attach) and use it to respond.
  • In‑app diagnostics (optional). Any optional crash/diagnostic reports you explicitly enable will transmit only the data described in that prompt or setting.
  • OS‑level crash sharing (optional). If you enable Apple’s “Share with App Developers” setting, Apple may provide anonymized crash logs to us. We do not use these to identify you.

8) Legal bases for processing (EEA/UK)

Where applicable, we rely on:

  • Performance of a contract (providing the features you request)
  • Your consent (e.g., when you choose cloud AI providers or publish)
  • Legitimate interests (e.g., securing our Services, responding to support)

You may withdraw consent at any time in the relevant setting. This will not affect processing already performed based on consent before withdrawal.

9) Your rights & controls

  • Access / Export / Deletion (local data). Manage content stored on your device via file management or in‑app tools.
  • Cloud AI data. To access or delete data held by AI providers you selected, contact those providers directly.
  • Published catalogs. Use the tools and policies of the catalog(s) where you published to request edits or removal. Because of remixing and mirroring, complete removal may not be possible.
  • Region‑specific rights (e.g., EEA/UK/California). Subject to law, you may have rights to access, correct, delete, or restrict processing. Because we do not maintain centralized copies of your shows by default, we may ask you to act locally or contact relevant third parties to exercise those rights. You may also have the right to lodge a complaint with a supervisory authority.

10) Security

We design the app to be local‑first and provide on‑device generation options. However, no method of transmission or storage is 100% secure. Protect your device, API keys, and any published catalogs you operate (e.g., access controls, backups).

10A) Platform privacy manifests & Required‑Reason APIs

We maintain an Apple privacy manifest and declare any Required‑Reason APIs used by our code or third‑party SDKs. We prohibit device fingerprinting and do not use these APIs to track users.

11) Children

The Services are not directed to children under the age required by local law (e.g., 13 in the U.S., 16 in parts of the EEA). We do not knowingly collect personal information from such children. If you believe a child has provided personal information to us, contact [email protected].

12) International transfers

If you choose cloud AI providers or catalogs hosted in other countries, your data may be processed outside your jurisdiction. Those providers’ transfer mechanisms and safeguards apply.

13) Retention

  • Local data: Remains on your device until you delete it.
  • Support communications: Retained as needed to respond and for recordkeeping.
  • Third‑party providers and catalogs: Follow their own retention schedules; consult their policies.

14) California disclosures (CPRA)

We do not “sell” or “share” your personal information as defined by the CPRA. Because we do not maintain centralized copies of your program content by default, requests regarding data held by cloud AI providers, catalogs, or storage services should be directed to those third parties.

15) Changes to this Policy

We may update this Policy to reflect features, legal requirements, or operational changes. We will revise the Last updated date above and, when appropriate, provide additional notice in the app or on our website. We also keep our App Store “App Privacy” disclosures aligned with this Policy.

16) Contact

Questions or requests: [email protected] Controller identity & address (for notices): craftclay K.K., Oda, Mine city, Yamaguchi, 754-0211, Japan.