Privacy Policy

Last updated: 2026-03-15

We’re committed to a distraction-free experience. We don’t sell your data and we avoid third-party ads.

1) Scope

This policy explains what information BookLantern (“we”, “us”) collects when you use our website and services, how we use it, and the choices you have.

2) Information We Collect

Account data (if you create one): email, password (hashed), and basic profile details you provide.
Service logs: IP address, browser type, device info, pages visited, and timestamps—used for security and operational analytics.
Search & browse metadata: queries and interactions, aggregated to improve relevance and reliability.
Cookies/local storage: essentials like session, theme preference, and feature flags.

3) What We Don’t Collect

No third-party ad trackers.
No payment card data (the Service is free).
No precise location tracking.

4) Local-Only Reader Data

Bookmarks, notes, and reading position created in the reader are stored on your device (e.g., browser localStorage). We do not receive this data unless we launch an explicit sync feature in the future and you opt in.

5) How We Use Information

Provide and maintain the Service (account, search, book delivery).
Improve relevance, performance, and reliability.
Prevent abuse and ensure security.
Respond to support requests and legal obligations.

6) Legal Bases (EU/UK)

Contract necessity – to provide the Service you request.
Legitimate interests – to secure and improve the Service.
Consent – where required (e.g., optional features).
Legal obligation – to comply with law.

7) Retention

Account data: for the life of your account or until deletion.
Server logs: typically 30–90 days unless needed for security or investigations.
Local-only reader data: remains on your device until you clear it.

8) Sharing

Service providers (e.g., hosting) under confidentiality obligations.
Legal requests when we are compelled by law.
We do not sell personal information.

9) Cookies

We use essential cookies/local storage for session management, theme preference, and core functionality. You can control cookies in your browser settings; some features may not work without them.

10) Security

We use industry-standard measures to protect your information. No method of transmission or storage is 100% secure; use the Service at your own risk.

11) Children

The Service is not directed to children under 13 (or the minimum age in your jurisdiction). If we learn we’ve collected personal information from a child, we will delete it.

12) International Transfers

Data may be processed in the United States or other countries where our providers operate. We take steps to safeguard transfers as required by law.

13) Your Rights

Depending on your location, you may have rights to access, correct, delete, or export your data; to object or restrict certain processing; and to withdraw consent where applicable. To exercise rights, please contact us.

14) Changes to this Policy

We may update this policy. We’ll post the new version here and update the “Last updated” date.

15) Contact

Questions or requests? Please contact us.