POLICY · v3.2

Privacy at Session™ Vault.

True right now. Verifiable in your account. Your music, your keys, your call. We hold the encrypted copy. You hold what unlocks it. Below: every piece of data that touches us, in the order it touches us, with no gloss.

EFFECTIVE JUN 12, 2026 LAST UPDATED MAY 09, 2026 READ TIME 9 MIN

The sixty-second version

  • Protected uploads lock on your device before storage.
  • AI and analysis features run only through controlled compute paths.
  • We do not use your music to train models.
  • Sign in with email, password, and 2FA.
  • Account metadata and billing data stay limited to what the service needs.
  • Legal requests are handled under policy, and protected files stay protected where we do not hold the key.

Who we are

Session™ Vault is a product of Capiscana, Inc., an Illinois corporation. We build a private home for unreleased music, released music, and the catalog work around both.

This policy covers vault.session.am, the iOS app, the Mac and Chrome companions, and the services they connect to. It does not cover third-party tools you choose to plug in, such as DAWs, distributors, or mailing services. Those are governed by their own policies.

What we collect

Four buckets. They are not treated the same.

Your content, protected where encryption is enabled

  • Audio: masters, stems, Atmos renders, binaural derivatives
  • Text: lyrics, session notes, private credits, draft titles
  • Structure: folders, playlists, tags, cover art
  • Share recipients and the policies you attach to each share

When you turn on encryption, protected uploads lock on your device before storage. Support cannot unlock those protected files without your key or recovery path.

Account metadata we can see

  • Email, display name, tier, billing source
  • Login events, 2FA enrollments
  • Storage totals, file counts, last-active timestamps
  • Audit log entries for shares, key rotations, and encryption events

Operational telemetry

  • Crash reports, latency distributions, performance counters
  • Feature-usage counters, scoped to active workspace rather than individual users

Recipient signals about people you share with

When you send a track to someone, the share landing logs opens, plays, listen-time, hashed IP, and a city/country lookup per recipient. This is data about your recipients, not you. We collect it on your behalf, and you read it under Recipients and Hot Leads. Your NDA discloses it to them. We do not repurpose or resell it.

We do not collect: behavioral ad signals, third-party advertising trackers, location beyond city level, or any audio fingerprint used to track content outside your own catalog.

How we use it, and what we never do

Everything above exists for one reason: running the service you signed up for. Storing your catalog, playing it back, analyzing it when you ask, delivering your shares, billing your plan, and keeping your account secure.

  • We never sell your data. Not your account info, not your content, not your usage. There is no version of Session™ Vault where your data is something we sell.
  • We never use your data for advertising, and we never track you across other companies' apps or websites.
  • We never use your music to train models.

How encryption works

Protected uploads are locked in your browser before storage. Your password or recovery path unlocks them later, and support cannot reset that recovery path for you.

LOCKINGProtected uploads lock in the browser before storage.
RECOVERYYour recovery code helps unlock protected files if you lose access.
PLAYBACKProtected files unlock only for playback or features you request.
SUPPORTSupport cannot unlock protected files without your recovery path.

The safe path is simple: keep your password, recovery code, and trusted devices in places you control. If you lose all of them, protected files may not be recoverable.

AI & analysis

Your audio gets analyzed in two places, depending on a switch you control.

Encryption on.

Some analysis and AI features may be unavailable for protected files unless you explicitly unlock the track for that feature.

Encryption off or feature explicitly enabled.

Workers read the track only long enough to run the pipeline you requested, write outputs back to your vault, and clear temporary working data after the job finishes. Human support access is limited to specific support or restore requests and is logged.

What the workers do:

  • Tempo, key, mood, energy
  • Genre classification (32 SV genres, every upload)
  • Lyric transcription, synced to playback
  • Stem separation, four-stem
  • Cover art generation (no-retention contract with our compute vendor)
  • AI Atmos, AI Mix Stereo, AI Mix Multi-Stem
  • AI Cleans: mute, reverse, or bleep explicit words at marked timestamps
  • Semantic search across your library
  • Bulk-edit intent parsing (no-retention contract)

We do not use your music to train models. Any outside model call we use is governed by no-retention and no-training terms for your inputs.

Sharing & recipients

Each share is a token. The track is wrapped to that token's policy: optional NDA gate, optional download lock, optional expiry, optional watermark. Revoke any of it at any time. Revocation rotates the token and severs streaming access on the next request.

Watermarked downloads carry an inaudible per-recipient stamp. If a track leaks, Leak Lookup can help identify which recipient copy was involved. You decide what to do next.

Recipients see the NDA before they hit play, where you require one. The NDA is between you and them. Vault stores the signed timestamp, IP, and email as a witness, not as a party.

Third parties

A short list of provider categories powers the service. The formal Privacy Policy lists current subprocessors.

EDGERouting, abuse protection, and performance.
STORAGEPrimary file storage and off-site backup copies.
APP HOSTINGAccount, billing, library, sharing, and analysis systems.
STRIPESubscription billing. Email + payment metadata. Card numbers never reach us.
EMAILReceipts, share notifications, and security alerts.
AI TOOLSSelected generation or parsing features under no-retention terms.
LOCATION LOOKUPCity and country estimates for share analytics.

The full provider list, with legal links and location notes, lives at vault.session.am/legal/subprocessors. We email and post in-app before adding a material new provider.

Retention & deletion

Two paths.

Track-level.

Delete a track. It moves to Trash. Trash holds for 30 days, restorable with one click. After 30 days, scheduled purge removes the active file and related library records. Older backups age out under the retention schedule.

Account-level.

Close your account at Settings → Account → Delete. We open a 30-day grace window. Cancel during the window if you change your mind. After it closes, scheduled purge removes active account data, library records, share records, and active files. Some billing and abuse-prevention records may remain where required by law or legitimate security needs.

Your rights

GDPR, CCPA/CPRA, and the dozen state laws that have followed give you four moves: see what we hold, fix what's wrong, take a copy, ask us to delete it. Most of this is already a button.

Self-serve at Settings → Privacy → Data: export, correction, deletion. Export includes your account record, catalog metadata, playlists, share records, and watermark mappings. For data not covered there, email privacy support.

Anything not covered there: [email protected]. We respond inside the statutory window, 30 days for most requests or 45 days if we need an extension and tell you why.

You can also lodge a complaint with your local data-protection authority. We won't take it personally.

Children

Session™ Vault is a professional tool for the music industry. It is not directed at children. You must be at least 13 to hold an account, and at least 18 to take a paid plan. We do not knowingly collect information from anyone under 13. If you believe a child under 13 has given us their information, email [email protected] and we will delete it.

Contact

Privacy & data requests: [email protected]
Security disclosures: [email protected]
Mailing address: Capiscana, Inc. · 2222 Chestnut Avenue, Suite 201 · Glenview, IL 60026 · USA

When this policy materially changes, you get an in-app banner and an email at least 30 days before it takes effect. The previous version stays archived at vault.session.am/legal/privacy/history.