This Privacy Policy explains how VEGA ("VEGA", "we") handles your information across the VEGA apps, the vega-mgmt.com website, team portals, and related services — including data accessed through Google APIs.
VEGA is primarily a desktop app: most of the business data you enter (catalog, releases, gigs, contracts, invoices, files) is stored locally on your own computer. We only store in our cloud what's needed for account and sharing features, described below.
Account: your name, email, and a securely hashed password.
Activity: basic signals such as last sign-in, used to keep your account and prevent abuse.
Device identifier: a hashed identifier of your computer, used solely to prevent free-trial abuse and fraud — not to track you across the web.
Payments: handled by Stripe. We receive your subscription status but never store your full card number.
Shared content: anything you choose to push to the cloud — team-portal data, Music Share uploads, shared files — so it can be shown to the people you share it with.
To provide and improve the Service, process subscriptions, prevent fraud and trial abuse, and send you service emails (welcome, password resets, trial reminders, and account notices) through our email provider (Resend). We do not use your data for advertising, and we do not sell it.
We keep account data while your account is active. Inactive, non-paying accounts may have their cloud data deleted after about six months, following advance email warnings. You can request deletion of your account and cloud data at any time by emailing us. Deleting cloud data does not remove the data stored locally on your own device — that's always under your control.
You can access, correct, or delete your account information and request a copy of your data by contacting us. We honor applicable privacy rights, including under GDPR and CCPA where they apply.
Our website uses a single sign-in cookie to keep you logged in. We don't use advertising or cross-site tracking cookies.
If you choose to connect Google Calendar, VEGA requests permission to manage your calendars (https://www.googleapis.com/auth/calendar) for one purpose: to create and update a dedicated "VEGA" calendar in your Google account with your own shows, flights and release dates. The sync is one-way (VEGA writes to your calendar). Your Google sign-in token is stored locally on your device and is never sent to VEGA's servers or any third party. You can disconnect at any time in the app, which stops all access.
VEGA's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. We do not use Google Calendar data for advertising, do not sell it, and do not allow humans to read it except as needed for security or to comply with the law.
Passwords are stored hashed, data is encrypted in transit, and we limit access to personal data. No system is perfectly secure, so please use a strong, unique password.
VEGA isn't intended for anyone under 16, and we don't knowingly collect their data.
We may update this policy; material changes will be posted here. Questions or requests: support@vega-mgmt.com.