Karma.fm DMCA and GDPR Procedures
Our DMCA Process [US copyright holders]
The DMCA process begins when a copyright holder (or representative) submits a Digital Millennium Copyright Act (“DMCA”) takedown notice to Karma.fm, claiming that their content is published on Karma.fm without their permission. DMCA takedown notices can be submitted via email ~ firstname.lastname@example.org.
Upon receiving a DMCA takedown notice, here’s what happens:
- We review the notice.
- If it's valid, we remove the content.
- We respond to indicate that we've taken action.
- We add a strike to the player's account if they do not appeal.
- We review any appeals.
- We restore the content if the copyright holder doesn’t take further action within 15 business days.
Our GDPR Process [EU players]
The GDPR process begins when a player requests their personal data by submitting a request containing identifying information to email@example.com. "Identifying information" can be the player username or
This process is completely automated and costless, and automatically compiles the following information into a structured, commonly used and machine-readable format as laid down in Article 20(1) GDPR:
all personal data concerning me that you have stored;
the purposes of the processing;
the categories of personal data concerned;
the recipients or categories of recipient to whom the personal data have been or will be disclosed;
where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
where the personal data are not collected from the data subject, any available information as to their source;
the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the player.
Appropriate safeguards according to Article 46 GDPR concerning any transfer of player information to international organizations or agencies.
All of the above including data stored and used by any other services and companies for which you are the controller as defined by Article 4(7) GDPR.