BandJAM Privacy Policy

Effective Date: January 1, 2025

BandJAM Privacy Policy

Effective Date: January 1, 2025

Thank you for visiting BandJAM, LLC (“BandJAM,” “we,” “us,” or “our”). We are a Delaware limited liability company operating in California, offering a platform that enables businesses (“Clients”) to book musicians (“Musicians”) for music sessions and gigs. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website (“Site”) and related services (“Services”).

Scope of this Policy

This Privacy Policy applies to information we collect through:
• Our website, web application, and any other platforms we use to facilitate our Services.
• Communications (email or otherwise) related to our Services.
• Any other forms of interaction with us, unless a separate or updated policy is provided.

By accessing or using our Site or Services, you agree to this Privacy Policy. If you do not agree, please discontinue use.

Information We Collect

2.1 Personal Information

We collect various categories of personal information (“Personal Information”) to fulfill our Services, including but not limited to:
• Contact Details: Name, email address, phone number, and mailing address.
• Payment Details: We may collect limited payment information to facilitate transactions; however, full payment details are typically collected and processed by our third-party payment processor (Stripe). We do not store complete credit/debit card numbers on our servers.
• Demographic Information: Age range, gender, or other demographic details you or our Clients may provide.
• Account Information: Username, password, and any profile data you provide when creating an account (whether you’re a business or a musician).
• Usage Data: Information about how you interact with our Site, including IP address, browser type, operating system, and browsing behavior (collected through cookies or other tracking technologies).

2.2 Health-Related Information / HIPAA

• Potential PHI Collection: In some instances, our Clients may provide limited health-related or medical information about individuals under their care or supervision (e.g., names, ages, sex, and basic health status) for purposes of customizing or facilitating certain music sessions. This data may constitute Protected Health Information (“PHI”) under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).
• Business Associate: To the extent we handle PHI on behalf of a Client that is a HIPAA-covered entity (e.g., a healthcare provider or facility), we may function as a Business Associate and will enter into a Business Associate Agreement (“BAA”) with that Client. This Privacy Policy supplements any BAA and is not intended to modify or limit obligations contained in the BAA.

How We Use Your Information

We use the information we collect for various purposes, including to:
1. Provide and Maintain our Services – Facilitate bookings, manage user accounts, handle payments (via third-party payment processors), and ensure quality of service.
2. Communicate with You – Send administrative information, updates, and promotional content if you opt in to receive such messages.
3. Analyze Usage and Improve Services – Monitor and analyze trends, usage, and activities to develop new features or enhance existing functionality.
4. Ensure Security – Detect, prevent, or investigate security breaches or fraud.
5. Comply with Legal Obligations – Respond to legal requests, enforce our Terms of Service, or otherwise comply with applicable laws and regulations (including HIPAA, when applicable).

Disclosure of Your Information

We may share your information in the following circumstances:
1. Service Providers:
• Payment Processors (Stripe) – We use Stripe to process payments. Stripe’s use of your data is governed by its own privacy policy.
• Hosting & Analytics Providers – We partner with hosting services and analytics tools (e.g., Google Analytics) to help us operate our Site.
2. Business Associates (HIPAA):
• If we receive PHI as part of our Services for a HIPAA-covered Client, we may share PHI only as permitted under a BAA or as required by law.
3. Legal Compliance & Protection:
• We may disclose Personal Information if required to do so by law or in the good-faith belief that such action is necessary to:
• Comply with a legal obligation (subpoena, court order, etc.).
• Protect and defend our rights or property.
• Prevent or investigate possible wrongdoing related to our Site or Services.
• Protect the personal safety of users or the public.
4. Business Transfers:
• If we (or our assets) are acquired or merged with another entity, or in the unlikely event of bankruptcy, your information may be transferred to the acquiring entity.

Cookies & Tracking Technologies

We use cookies, pixels, and other tracking technologies to collect information about your browsing activities on our Site. This information allows us to:
• Understand user behavior and preferences.
• Improve functionality and user experience.
• Offer relevant promotions or advertisements.

You can typically instruct your browser to refuse all cookies or to indicate when a cookie is being sent. Note, however, that certain features of our Site may not function properly without cookies.

Data Security & HIPAA Compliance

6.1 Security Measures

We implement reasonable organizational, technical, and administrative measures to protect your information, including:
• Encryption: We use encryption protocols (e.g., SSL/TLS) to secure data in transit.
• Secure Servers: We store data on servers with restricted access, requiring authentication for all authorized personnel.
• Limited Access: Only employees or contractors who need access to fulfill their job responsibilities are granted access to Personal Information and any PHI.

6.2 HIPAA-Specific Protections

When acting as a Business Associate, we will:
• Enter into a Business Associate Agreement (BAA) with the covered entity (i.e., the Client) to ensure the protection of PHI in compliance with HIPAA.
• Use and disclose PHI only as permitted by the BAA and applicable law.
• Maintain appropriate safeguards to prevent unauthorized use or disclosure of PHI.
• Report any security incident or breach involving PHI to the covered entity in accordance with the BAA.

6.3 No Guarantee

While we strive to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

User Choices & Rights

7.1 Opt-Out of Communications

You may opt out of receiving marketing emails from us by clicking the “unsubscribe” link in any marketing email or by contacting us at admin@bandjam.co.

7.2 Access, Correction, & Deletion

• Access/Correction: If you wish to access or correct the information we hold about you, please contact us at admin@bandjam.co.
• Deletion Requests: You can request deletion of your Personal Information by emailing admin@bandjam.co. We will make reasonable efforts to delete your data, except to the extent we are required or permitted by law to retain it (e.g., maintaining transaction records, compliance with a BAA).

8. Data Retention

We do not have a specific retention policy for all data but generally retain user profiles, booking history, and other information for as long as reasonably necessary to provide our Services, fulfill contractual or legal obligations, and maintain appropriate business records. Once no longer needed, we securely delete or anonymize data in accordance with applicable laws and our internal data retention procedures.

9. Minors

Our Services are not intended for minors (individuals under the age of 18), and we do not knowingly collect Personal Information from minors. If you become aware that a minor has provided us with Personal Information, please contact us immediately at admin@bandjam.co so we can delete it.

Additional Disclaimers

No Medical Advice: BandJAM does not provide medical advice, diagnosis, or treatment. Any health-related information accessible through our Site or Services is provided solely by the Client (or the client’s care providers).
User-Generated Content: We are not responsible for user-generated content, including information shared by our Clients or Musicians.
No International Use: We do not currently offer or market our Services internationally. We focus on U.S.-based Clients and Musicians.
Arbitration: Any disputes arising from this Privacy Policy or your use of the Site/Services will be resolved through arbitration, as outlined in our Terms of Service.

Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Effective Date” at the top of this page. We encourage you to review this Privacy Policy periodically for any updates. Your continued use of our Site or Services after any modifications indicates your acknowledgment of the changes and acceptance of the updated policy.

Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

BandJAM, LLC
Email: admin@bandjam.co

We use cookies to improve your experience on our website. By continuing to browse, you agree to our use of cookies. Learn more