EN|VI
← Back to Home

Privacy Policy

Effective Date: June 2026

At Music Embed Proxy, protecting your privacy and the privacy of your end-users' is our primary architectural concern. This Privacy Policy details the data we handle (and explicitly do not handle) when you interact with our APIs.

1. Stateless Edge Architecture

Music Embed Proxy is designed to be fully stateless, scaling on highly distributed Edge runtimes. We do not maintain any persistent relational databases for user data routing. The API fundamentally acts as a rapid, transparent proxy that receives an input URL, computes the corresponding oEmbed metadata structure, and returns it immediately to the caller.

Because we do not have user accounts, we do not ask for, collect, process, or store personal identifiers like names, email addresses, demographics, or payment information.

2. Zero Analytics & Non-Tracking Commitment

We are explicitly anti-tracking. We aggressively refuse to inject third-party tracking scripts, advertising pixels, fingerprinting algorithms, or invasive behavioral analytics (such as Google Analytics or Meta Pixel) into our HTML iframe snippets or API network responses.

This framework is built precisely to allow diligent developers to serve rich interactive media without involuntarily sacrificing their users' privacy to unnecessary middleman aggregators or commercial ad networks.

3. IP Addresses & Rate Limiting (Security protocol)

To keep the API free and stable across global regions, we must intercept excessive abusive behaviors (e.g., server DDoS attacks, aggressive botnet URL scraping). We achieve this by enforcing a strict firewall rate limit based strictly on incoming client IP addresses.

  • Temporary Node Storage: When a request hits our edge nodes, the requesting IP address is processed, hashed, and stored in an encrypted Upstash Redis cache purely to increment a count ledger.
  • Automatic Expiration (TTL): This ledger data is held exclusively for short-term rate calculation and expires automatically. We do not aggregate historic IP datasets, sell IP lists, or use IP addresses to geolocate end-users beyond automated malicious behavior mitigation.

4. Third-Party Embeds and Upstream Policies

When you seamlessly integrate the generated HTML iframe strings on your website, those visual iframes will subsequently load content directly from the respective source platforms (Spotify, Apple Music, YouTube, SoundCloud, Deezer, TikTok, or Amazon Music).

At that specific phase, the robust network connection occurs directly between your end-user's internet browser and the media platform's multimedia servers. Any cookies, cache storage, or tracking mechanics implemented within the actual audio/video player are governed exclusively by that platform's distinct corporate Privacy Policy. Our proxy pipeline is entirely isolated and fully removed from that ongoing continuous interaction.

5. Inquiries & Contact

If you have detailed questions regarding this privacy policy, architectural protocols, or our data handling practices, please navigate to our Contact page to connect directly with the system maintainers.