tutti

Privacy Policy

Last updated: 29 March 2026

1. Who we are

Tutti (“we”, “us”, “our”) is a booking platform that connects music students with piano accompanists for exams and performances. We are based in Sydney, Australia.

2. Information we collect

We collect the following types of personal information:

Account information

Name, email address, phone number, and password when you create an account.

Profile information

For musicians — instruments, location, experience, education, bio, audio/video samples, availability, and rate information.

Booking information

Event details (date, time, location, exam board, grade level), messages between parties, and booking history.

Payment information

Payment details are processed by Stripe. We do not store your full card number. We store Stripe account IDs for musicians to facilitate payouts.

Calendar data

If you connect Google Calendar, we access calendar events to help prevent scheduling conflicts. We store your Google refresh token securely.

Usage data

Browser type, IP address, pages visited, and interaction patterns to improve the platform.

3. How we use your information

  • To match students with suitable accompanists based on instrument, location, availability, and preferences.
  • To process payments, deposits, and payouts through Stripe Connect.
  • To send transactional emails and in-app notifications about bookings, matches, and account activity.
  • To prevent fraud, enforce our terms, and maintain platform safety.
  • To improve the platform through anonymised usage analytics.

4. When we share your information

We do not sell your personal information.

We share data only in these circumstances:

  • Between booking parties: After a booking is confirmed, we share contact details between the student and accompanist so they can coordinate.
  • Payment processing: We share necessary data with Stripe to process payments and payouts.
  • Email delivery: We use Resend to send transactional emails.
  • Legal requirements: We may disclose information if required by law or to protect our rights.

5. Contact information privacy

Your email address, phone number, and other contact details are never shown to other users until a booking is confirmed and paid. Our messaging system filters messages for contact information during the pre-booking phase to protect both parties.

6. Data security

We take reasonable measures to protect your information. Passwords are hashed using bcrypt. Data is transmitted over HTTPS. Payment data is handled by Stripe, which is PCI-DSS compliant. Access to personal data is restricted to authorised personnel.

7. Data retention

We retain your account data for as long as your account is active. If you delete your account, we will remove your personal information within 30 days, except where we are required to retain it for legal or financial record-keeping purposes.

8. Your rights

Under the Australian Privacy Act 1988, you have the right to:

  • Access the personal information we hold about you.
  • Request correction of inaccurate information.
  • Request deletion of your account and associated data.
  • Withdraw consent for optional data processing (e.g., Google Calendar access).

9. Cookies

We use essential cookies to maintain your login session. We do not use third-party advertising or tracking cookies.

10. Changes to this policy

We may update this Privacy Policy from time to time. We will notify users of significant changes via email or an in-app announcement. Continued use of the platform after changes constitutes acceptance.

11. Contact us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us at privacy@tutti.app

Other policies

Terms of ServiceRefund & CancellationCookie Policy