Privacy Policy

Last updated: June 22, 2026

What we collect

When you create a BookTBR account we store your email address and a hashed version of your password. If you sign in with Google, we receive your name, email, and profile picture from Google — nothing else.

The books, ratings, quotes, reading sessions, and other content you add are stored in our database and are only accessible to you.

How we use your data

To provide and maintain the BookTBR service
To send transactional emails (verification, password reset)
To display your personal reading analytics

We do not sell, rent, or share your personal data with third parties for marketing purposes.

Third-party services

BookTBR uses the following services to operate:

Vercel — hosting and image storage
Neon — database (PostgreSQL)
Resend — transactional email delivery
Google Books & Open Library — book metadata lookup (ISBN, covers)

These services may process data as described in their own privacy policies.

Cookies & local storage

We use a session cookie to keep you signed in. We do not use advertising or analytics cookies. The app may store preferences in your browser's local storage.

Data retention & deletion

Your data is kept as long as your account exists. You can request account deletion by emailing wilfred.opinion@gmail.com and we will delete your account and all associated data within 30 days.

Security

Passwords are hashed with bcrypt. All traffic is served over HTTPS. Database access is scoped per user — one account cannot access another's data.

Changes to this policy

We may update this policy from time to time. Changes will be posted on this page with an updated date.

Contact

Questions? Email wilfred.opinion@gmail.com