Privacy Policy

Last updated: 22 April 2026

Readable ("we", "us", "our") is operated by Dakota Swain, based in Queensland, Australia. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use the Readable mobile application ("the App").

By using the App, you consent to the practices described in this policy. If you do not agree, please do not use the App.

1. Information We Collect

Account Information

When you create an account, we collect your email address and a password (encrypted, never stored in plain text). You may optionally provide a display name, profile photo, favourite genres, birth year, and location (country and state/region).

Reading Data

We collect information about your reading activity, including books in your library, reading sessions (start time, duration, pages read), reading goals, collections, and book ratings and reviews.

Social Data

If you use social features, we collect posts, comments, likes, club memberships, discussions, and follow relationships you create. Social features require age verification for Australian users under the Social Media Minimum Age Act.

Device Information

We collect a device identifier and platform type (iOS/Android) to manage device session limits. We do not collect IDFA, advertising identifiers, or precise location data.

Usage Data

We collect information about how you interact with the App, including which features you use, affiliate link clicks, and crash reports. This helps us improve the App.

2. How We Use Your Information

We use your information to:

• Provide and maintain the App's features
• Track your reading progress and generate insights
• Display personalised book recommendations
• Enable social features (posts, clubs, leaderboards)
• Process premium subscriptions via RevenueCat/Apple
• Moderate content to maintain community safety
• Generate affiliate links to bookstores (we may earn a commission)
• Send optional push notifications (reading reminders, goal updates)
• Comply with legal obligations

3. Third-Party Services

We share data with the following third-party services, each with their own privacy policies:

• Supabase — Database hosting, authentication, and file storage (servers in Sydney, Australia)
• Google Books API — Book search and metadata (no personal data sent, only search queries)
• RevenueCat — Subscription management (receives anonymous user ID only)
• OpenAI — Content moderation (text content checked for safety, no personal identifiers sent)
• Sightengine — Image moderation for uploaded photos (images checked for safety)
• Amazon, Bookshop.org, and other bookstores — When you tap an affiliate link, you are directed to the external store. We do not share your personal data with these stores; only the click event is logged for analytics.

We do not sell your personal information to any third party.

4. Data Storage and Security

Your data is stored on Supabase servers located in Sydney, Australia. We use row-level security (RLS) policies to ensure users can only access their own data. Passwords are hashed using bcrypt. All data is transmitted over HTTPS/TLS encryption.

While we take reasonable measures to protect your data, no system is completely secure. We cannot guarantee absolute security.

5. Your Rights

Under the Australian Privacy Act 1988, you have the right to:

• Access your personal data — export your data via Profile > Data > Export
• Correct inaccurate data — edit your profile at any time
• Delete your data — use "Delete Account" in Profile to permanently delete all your data
• Complain to the Office of the Australian Information Commissioner (OAIC) if you believe your privacy has been breached

6. Children's Privacy

The App is not directed at children under 13. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided personal information, we will delete it promptly. Users under 16 in Australia have social features restricted in compliance with the Social Media Minimum Age Act.

7. Cookies and Tracking

The App does not use cookies, advertising trackers, or fingerprinting. We do not use Apple's IDFA (Identifier for Advertisers) or any equivalent advertising identifier. We do not participate in ad networks.

8. Data Retention

We retain your data for as long as your account is active. When you delete your account, all personal data is permanently deleted within 30 days. Anonymised analytics data (e.g. aggregate reading statistics with no personal identifiers) may be retained indefinitely.

9. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes via an in-app notification or email. Continued use of the App after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, contact us at:

Email: Readablesupport@gmail.com
Location: Queensland, Australia