Privacy Policy

Who we are

Daflow Pte. Ltd., company number 202348751Z, of 112 ROBINSON ROAD #03-01 ROBINSON 112 SINGAPORE (068902) is a subsidiary of Kanjian, a leader in licence management automation for the music industry.

Our website address is:

What personal data we collect and why we collect it


When visitors leave comments on our site, we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

We collect information such as your name, email, and message content submitted through contact forms. This data is used for customer service purposes, enabling us to respond to your inquiries and provide assistance.

Account Registration and Transactions

For users who register on our website, we collect information necessary to manage your account and process transactions, including your name, email address, and payment details, through WooCommerce, our e-commerce platform. This information facilitates order placement, subscription management, and provides a tailored shopping experience.


If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.


We use Google Analytics and Facebook Pixel to analyze website traffic and user behavior, helping us improve our content and service offerings. These tools collect data on your interactions with our site, which we use to optimize our marketing strategies and website functionality.

Who we share your data with

Kanjian is committed to maintaining the trust and confidentiality of your personal data. Here are the categories of third parties with whom your data may be shared:

Service Providers

We employ various service providers to manage and enhance our operations. These include:

  • MailerLite and These platforms are used for email marketing and sales engagement to ensure you receive updates and offers tailored to your interests.
  • WeCom: We use WeCom for customer relationship management (CRM) and data storage solutions, ensuring efficient management and security of your data.
  • Google Analytics and Facebook Pixel: Employed to analyze website traffic and optimize marketing strategies.
    Payment Processing: For processing payments, we may share transactional data with our e-commerce platform provider, WooCommerce, and other financial institutions as necessary to process payments securely and efficiently.

Legal Compliance

We may disclose your personal data if required by law or in response to valid requests by public authorities (e.g., a court or a government agency).

Business Transfers

In the event that our company is involved in a merger, acquisition, or asset sale, your personal data may be transferred as part of that transaction. We will provide notice before your personal data is transferred and becomes subject to a different privacy policy.


We may share your data with companies within the Kanjian holding for internal administrative purposes and to provide you with the services and products you request.

International Transfers

Your data is stored in China. We comply with legal frameworks that govern the transfer of data across borders, ensuring your data is protected in accordance with the highest standards of privacy and security.

How long we retain your data


If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.


If you upload images or other media files, these are retained indefinitely on our servers, unless you specifically request their deletion, enabling reuse and access in your future projects.

Contact Form Entries

Information submitted through contact forms is kept for a specific period for customer service purposes, after which the information is deleted. We retain contact form entries for six months, after which they are securely erased.

Account Information

For users that register on our website, we store the personal information they provide in their user profile. Users can see, edit, or delete their information at any time (except they cannot change their username). Account information is retained until the user deletes their account or requests that their information be deleted.

Purchase Records

Transaction data related to purchases made through WooCommerce are retained for a period necessary to fulfill contractual obligations and for accounting purposes. Generally, this means retaining transaction data for up to seven years to comply with tax and accounting laws.

Analytics Records

Data collected through Google Analytics and Facebook Pixel is retained for a period that aligns with our usage of this data for business analytics and to improve our services. Typically, we retain this data for 26 months after which it is automatically deleted or anonymized.

Marketing Data

We retain data used for marketing purposes or with your consent until you opt out or request that we delete this data. If you unsubscribe from our marketing emails, we will keep a record of your email address to ensure we do not contact you again.

What rights you have over your data

At Kanjian, we believe in not only protecting your personal data but also in granting you control over it. Here are the rights you possess regarding the data we hold about you:

Right to Access

You have the right to request a copy of the personal data we hold about you. This includes any data you have provided to us. You can request this information at any time, and we will provide it in a structured, commonly used, and machine-readable format.

Right to Rectification

You have the right to request that we correct any information you believe is inaccurate. You also have the right to request us to complete information you believe is incomplete.

Right to Erasure (“Right to be Forgotten”)

You can request the deletion of your personal data under certain conditions, such as when the data is no longer necessary for the purposes for which it was collected, you withdraw consent on which the processing is based, or the personal data has been unlawfully processed.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data, under certain conditions, such as when the accuracy of the personal data is contested by you, or the processing is unlawful.

Right to Object to Processing

You have the right to object to our processing of your personal data, based on reasons related to your particular situation, when the processing is based on legitimate interests.

Right to Data Portability

You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

Right to Withdraw Consent

Where the processing of your data is based on consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority responsible for data protection in your country.

To exercise any of these rights, please contact us using the contact information provided on our website. We will respond to your request promptly and within the guidelines set by the law.

Where we send your data

In order to provide our services and operate effectively as a global music licensing platform, your personal data may be sent to or accessed from multiple locations outside of your country of residence. Below are key details regarding the transfer and processing of your data:

Data Storage and Processing Locations:

  • Primary Data Storage: Your personal data is primarily stored in secure servers located in China.
  • Service Providers: Data may also be processed by our service providers in other countries, depending on the services they provide. This includes data analytics (Google Analytics and Facebook Pixel), email marketing (MailerLite and, and customer relationship management (WeCom).

International Data Transfers:

When transferring your data internationally, we take all necessary measures to ensure that your data is treated securely and in accordance with this privacy policy and applicable data protection laws. This includes using contractual clauses that guarantee the same level of protection that is mandated by European Union law.
We also adhere to relevant legal frameworks for data transfer, such as the requirements for the transfer of personal data outside the EU and other jurisdictions.

Automated Spam Detection

Visitor comments may be checked through an automated spam detection service, which could involve data being processed by our partners in other countries.

Regulatory Compliance

We may transfer data when necessary for compliance with applicable laws or in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Your contact information

If you have any questions or concerns regarding the handling of your personal data or this Privacy Policy, we encourage you to contact us. Here’s how you can reach us:


For privacy-specific inquiries, please email us at privacy@[yourdomain].com. For general queries, you can reach out to support@[yourdomain].com.


You can also contact us by phone at [Phone Number]. Our customer service team is available from [start time] to [end time], [days of operation].

Postal Address

If you prefer to contact us by mail, you can send your inquiries to:
[Your Company Name]
[Street Address]
[City, State, Zip Code]

We are committed to addressing your concerns as promptly and thoroughly as possible. Please do not hesitate to reach out with any questions or requests regarding your personal data.

Additional information

How we protect your data

We employ a range of security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include advanced encryption technology, secure server configuration, and strict access controls. Regular security training for our staff ensures that they are aware of our privacy obligations and can take the necessary precautions to protect your data.

What data breach procedures we have in place

In the unlikely event of a data breach, we have established procedures to address such situations promptly and effectively. We will notify affected individuals and any applicable regulators within the time frames specified by law. Our response team is trained to manage and mitigate any potential impacts, and we will take steps to prevent future occurrences by revising our security protocols as necessary.

What third parties we receive data from

We receive data from a variety of third-party sources that help us enhance our services and customer experiences. These sources include:

  • Social media platforms, which provide insights into user preferences and behaviors.
  • Marketing partners, from whom we receive aggregated demographic data.
  • Analytics services like Google Analytics and Facebook Pixel, which offer data about website interactions and user engagement.

What automated decision making and/or profiling we do with user data

We utilize automated systems and profiling in our marketing and customer service operations to provide personalized content and offers tailored to your interests. Decisions based on automated processing, like personalized marketing suggestions, are designed to enhance your experience with our services. However, these decisions do not have legal or similarly significant effects on you.

Industry regulatory disclosure requirements

As a music licensing company operating globally, we comply with numerous industry-specific regulations, including copyright laws and data protection statutes such as the GDPR. We are committed to full transparency in our operations and will continue to adhere to all relevant legal requirements to protect your rights and interests.