OMNICORP
LEGAL

Privacy Policy

Last updated 2026-06-10

We collect what we need to sell and deliver plugins. We don't sell your data, run ads, or track you across the web.

OMNICORP is a trade name of RAC Production Inc., an Oregon corporation with a corporate mailing address at 501 Madison Avenue, Suite 704, New York, NY 10022-5501. This policy explains what data we collect when you use omnicorp.audio, why we collect it, who else touches it, and what rights you have.

Quick summary

  • We collect your email and purchase history so we can sell you plugins and let you re-download them.
  • We use Stripe for payments. We never see your card number.
  • We use a few well-known service providers (listed below) to run the site.
  • We don't use Google Analytics, advertising pixels, or cross-site tracking cookies.
  • If you want to access, correct, or delete your data, email support@omnicorp.audio.

What we collect

Account information

When you create an account, we collect your email address and either a password or a Google sign-in identity. Authentication is handled by our provider Clerk. We never see or store your password directly. We store your email and a Clerk user ID in our database so we can link your purchases to your account.

Purchase information

When you buy a plugin, Stripe collects your payment details and (depending on what they require for the transaction) your billing address and country. Stripe holds the card number; we don't. After the purchase, Stripe sends us a transaction record that includes the items purchased, transaction ID, date, amount, currency, and the email and billing country associated with the order. We store that record so we can show you your purchase history, send you receipts, and process refunds.

Entitlements and downloads

We track which plugins your account owns. When you download a plugin installer, we log the download — including a timestamp, your IP address, and your user-agent string — so we can detect abuse (for example, one account being used to mass-download by many different people).

Support emails

If you write to support, we keep the email so we have context for the conversation and a record of how the issue was resolved.

Server logs

Our hosting provider (Vercel) keeps standard request logs — IP address, user-agent, URL requested, timestamp, response code. We use these for security monitoring and debugging. They roll off on Vercel's standard schedule.

What we don't collect

We don't collect data about your music, what you make with our plugins, what other plugins you have installed, or what DAW you use. The plugins themselves don't phone home.

How we use what we collect

We use your data to:

  • Create and maintain your account
  • Process your purchases and issue receipts
  • Let you download what you've bought
  • Send you transactional email (account confirmations, "your download is ready," refund notices)
  • Detect and prevent fraud or abuse
  • Respond to support requests
  • Comply with our tax and legal obligations

That's it. We don't use your data for advertising, profiling, or resale.

Cookies and tracking

We use functional cookies set by Clerk to keep you signed in. Without them, the site can't tell you're logged in.

We use Vercel's built-in edge analytics, which are aggregate (page views, performance metrics) and not tied to individual users.

We don't use Google Analytics, Facebook Pixel, advertising cookies, or third-party trackers.

Service providers

We use these third-party services to run OMNICORP. Each one only sees the data it needs to do its job.

  • Clerk (authentication): handles sign-in, password storage, and Google OAuth. Sees your email and password (or Google identity). clerk.com/legal/privacy
  • Stripe (payments): processes card payments. Sees your payment details, billing information, and email. stripe.com/privacy
  • Neon (database): hosts our PostgreSQL database. Holds your account record, purchases, entitlements, and download log. neon.tech/privacy-policy
  • Vercel (hosting): runs the website and serves it to your browser. Sees request logs. vercel.com/legal/privacy-policy
  • Cloudflare R2 (file storage): stores plugin installer files and serves them via short-lived signed URLs. Sees download requests. cloudflare.com/privacypolicy
  • Resend (email): sends transactional emails (download links, refund notices, account messages). Sees your email address and the message content. resend.com/legal/privacy-policy
  • Cloudflare (DNS): routes traffic for omnicorp.audio. Doesn't process customer account data. cloudflare.com/privacypolicy

If we add or change a service provider, we'll update this list.

International transfers

OMNICORP is operated from the United States, and the providers listed above are mostly US-based. If you're in the EU, UK, or another region with data protection laws, your data is being transferred to and processed in the United States. By using the site, you consent to that transfer. We rely on each provider's standard contractual clauses and equivalent mechanisms where applicable.

How long we keep your data

  • Account data is kept until you delete your account.
  • Purchase records are kept for as long as we need them for tax, accounting, and legal compliance — typically seven years from the date of the transaction. This is true even if you delete your account, because we're required to keep transaction records.
  • Download logs are kept for a limited period for abuse prevention and then aged out.
  • Server logs roll off on our hosting provider's standard schedule (typically days to weeks).
  • Support emails are kept as long as we find them useful for context.

Your rights

Depending on where you live, you may have rights to:

  • See what data we have about you
  • Correct it if it's wrong
  • Delete it (subject to records we have to keep for legal reasons)
  • Get a portable copy of it
  • Object to or restrict certain processing
  • Withdraw consent

To exercise any of these rights, email support@omnicorp.audio from the address on your account. We'll respond within a reasonable time, usually within 30 days. We may need to verify your identity before acting on a request.

If you're in the EU or UK and you think we're handling your data improperly, you have the right to complain to your local data protection authority. We'd appreciate the chance to address it first, though.

If you're in California, the CCPA gives you similar rights. We don't sell personal information and we don't share it for cross-context behavioral advertising.

Children

OMNICORP is not directed at children under 16, and we don't knowingly collect personal information from them. If you believe a child has created an account or sent us information, email support@omnicorp.audio and we'll delete it.

Security

We use industry-standard practices to protect your data — TLS in transit, encryption at rest where our providers offer it, scoped access for installer downloads via short-lived signed URLs. No system is perfectly secure, but we work to keep yours safe.

If we ever experience a breach that affects you, we'll notify you as required by law.

Changes to this policy

If we change this policy, we'll post the updated version here with a new "last updated" date. If the change is meaningful, we'll try to give notice through the site or by email.

Contact

Questions, requests, or complaints? Email support@omnicorp.audio or write to RAC Production Inc., 501 Madison Avenue, Suite 704, New York, NY 10022-5501.

Last updated: 2026-05-04 Contact: support@omnicorp.audio