Tapemetric

Legal

Privacy policy

Effective April 1, 2026

This policy explains what Tapemetric Technologies Pvt. Ltd. (“Tapemetric”, “we”) does with personal data when you use our analytics product. It applies both to our customers (the streaming platforms who pay us) and to the end-viewers of those platforms (whose events flow through our system).

Two kinds of users, two kinds of data

We process two distinct kinds of personal data, with different roles for us under DPDP and GDPR:

  • Customer account data — names, emails, billing details of the staff at our customer companies who use our admin panel. We are the data fiduciary (DPDP) / controller (GDPR) for this data.
  • End-viewer event data — the playback events your platform sends us through our SDK or API. We are the data processor (GDPR) / data fiduciary by-instruction (DPDP) for this data, processing it on your behalf.

What we collect from end-viewers

  • An anonymous ID generated by the SDK and stored in the browser’s localStorage.
  • A user ID — only if you call identify() on the SDK after login.
  • Playback events: play/pause/buffer/complete/seek timestamps, content ID, position, bitrate.
  • Device context: device type (TV/mobile/web/tablet), OS, browser, app version.
  • Approximate location: country, region, city — derived server-side from the request IP.

What we do not collect

  • The raw IP address — we use it for GeoIP enrichment in memory and discard it.
  • Cookies, advertising IDs (IDFA / GAID), or hardware identifiers.
  • Browsing history outside your app.
  • Payment card numbers, CVVs, or banking details (these go directly to Razorpay/Stripe).
  • Email addresses or phone numbers — unless you explicitly include them in event properties.

Why we collect it

End-viewer event data is collected for one purpose: to give your platform analytics about its own audience. It is never used to:

  • Train AI models (ours or anyone else’s).
  • Sell, share, or rent to third parties.
  • Build advertising profiles.
  • Enable cross-platform tracking — we don’t share IDs across customer tenants.

Your rights as an end-viewer

Under DPDP and GDPR you have the right to access your data, correct it, request deletion, or object to processing. Direct these requests to the streaming platform you use — they are the data fiduciary / controller. Our customers have an in-product erasure API that propagates your request to us within 72 hours.

Your rights as a customer (admin user)

For your own account data, you can update most details in the admin panel under Settings → Account. To delete your account or export all your data, email support@tapemetric.com.

Data residency and transfers

For Indian customers, all data is stored in ap-south-1 (Mumbai) and never leaves India. European customers can opt for eu-west-1 (Ireland). International transfers, when they happen, are governed by Standard Contractual Clauses.

Retention

  • Raw events: 90 days on Pro, 13 months on Enterprise.
  • Aggregated rollups: 25 months.
  • Account data: as long as you have an account, plus 90 days after closure for tax records.
  • Erasure requests: applied within 72 hours, including raw events and rollups.

Cookies on this website

This marketing website uses no third-party tracking cookies. The admin panel uses one first-party authentication cookie (tm_admin_token) to keep you logged in. We run our analytics on ourselves — eating our own cooking is the only honest way to do this.

Contact

Privacy questions, DPO escalations, or requests under DPDP / GDPR: privacy@tapemetric.com.

Our designated Data Protection Officer can be reached at the same address.