Privacy Policy
1. What we collect
- Account data — your name and email for authentication.
- Brief & sources — the inputs you provide to generate your book.
- Payment data — handled by our payment processor; we do not store full card details.
- Usage data — basic operational logs to run and improve the service (no sensitive content in logs).
2. How we use it
Purpose limitation: uploaded sources and briefs are used only to generate your book and operate your account.
3. Storage & retention
Sources and deliverables are stored in Firebase Storage, scoped to your account with least-privilege access and signed-URL downloads. Deliverables are retained so you can re-download them; raw uploads are removed sooner. You can request deletion of your data at any time.
4. Sub-processors
We rely on: Google Firebase (hosting, auth, database, storage), Fly.io (compute), Stripe (payments), our AI provider(s) (generation), and AWS SES (email).
5. AI data handling
We use AI provider tiers that do not use your prompts or uploads to train third-party models, and we prefer zero-retention options where available.
6. Your rights
Depending on your region (including GDPR/UK-GDPR/CCPA), you may have rights to access, export, correct, or delete your data. Our lawful basis for processing is performance of our contract with you.
7. Security
Secrets are kept server-side only, downloads use time-limited signed URLs, and we avoid storing personal content in logs.
8. Contact
To exercise your rights or ask a question, contact us through your studio or our support channel.