Privacy Policy

Last updated: April 3, 2026

1. Introduction

Bookshelf ("we", "our", "the App") is a reading tracker application. This Privacy Policy explains what personal data we collect, how we use it, and your rights regarding that data. By using the App, you agree to the practices described here.

2. Data Controller

The data controller responsible for your personal data is:

Tiago Almeida

Operating as: Bookshelf / TCreations

Email: tcreations.bookshelf@gmail.com

3. Data We Collect

3a. Account Data

When you create an account or sign in via Apple or Google, we collect:

  • Email address
  • Display name
  • Profile photo (if provided via your sign-in provider)

Legal basis: Contractual necessity (to provide the service you signed up for).

3b. Reading Data

Data you create within the App is stored in our database and synced across your devices:

  • Books and reading library
  • Reading sessions and progress logs
  • Shelves and book nooks
  • Reading goals
  • Quotes and notes
  • Public profile information (username, bio, reading stats — visible to other users if your profile is set to public)

Legal basis: Contractual necessity and your explicit input.

3c. Usage Analytics

We collect anonymous usage data to understand how the App is used and to improve it:

  • Screen views and feature interactions (e.g., which features are used most)
  • Crash reports and performance data
  • App version and device type (no personally identifiable device fingerprint)

Legal basis: Legitimate interest in improving the App. Analytics data is aggregated and not used to identify you personally.

3d. Purchase Data

When you purchase a subscription or Lifetime Access, we receive a transaction identifier and your subscription/entitlement status from your app store (Apple or Google) via RevenueCat. We do not receive or store your payment card details.

4. How We Use Your Data

  • To create and manage your account
  • To sync your reading data across devices
  • To display your public profile to other users (if your profile is set to public)
  • To verify and apply your premium entitlements
  • To improve the App through aggregated analytics
  • To respond to support requests
  • To send important service notifications (e.g., changes to these Terms)

We do not sell your personal data to third parties, and we do not use your data for advertising.

5. Third-Party Services

We use the following third-party services to operate the App. Each service has its own privacy policy:

  • Firebase (Google LLC) — Authentication, database (Firestore), and analytics. Data may be stored in Google data centres. Google LLC complies with GDPR via Standard Contractual Clauses. Firebase Privacy
  • RevenueCat, Inc. — Subscription and purchase management. RevenueCat processes transaction identifiers and subscription status on our behalf. RevenueCat Privacy
  • Amplitude, Inc. — Usage analytics. We send anonymised event data (no email, no name) to understand feature usage. Amplitude Privacy
  • Apple / Google — App distribution and payment processing. Subject to their respective privacy policies.

6. Data Retention

  • Account and reading data — Retained for as long as your account is active. If your account is inactive for more than 2 years without a premium subscription, we may delete it after advance notice.
  • Analytics data — Retained in aggregated form for up to 24 months.
  • Purchase records — Retained as required by applicable tax and accounting law.

You can request deletion of your account and associated data at any time (see Section 8).

7. Local Storage

The App stores certain preferences locally on your device (e.g., theme settings, notification preferences) using the platform's local storage (iOS: NSUserDefaults, Android: SharedPreferences). This data is not transmitted to our servers and is cleared when you uninstall the App.

8. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR):

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data ("right to be forgotten").
  • Restriction: Request that we limit processing of your data in certain circumstances.
  • Portability: Request a machine-readable copy of your data.
  • Objection: Object to processing based on legitimate interests.

To exercise any of these rights, contact us at tcreations.bookshelf@gmail.com. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority (in Portugal: CNPD).

9. Children's Privacy

The App is not directed at children under 13 years of age. We do not knowingly collect personal data from children under 13. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Security

We use industry-standard security measures, including Firebase's built-in security rules and HTTPS-encrypted data transmission. However, no method of transmission or storage is 100% secure. We encourage you to use a strong password and to keep your account credentials confidential.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the date at the top of this page and, where appropriate, through an in-app notification. Continued use of the App after changes constitutes acceptance of the updated policy.

12. Contact

For any questions, data requests, or concerns about this Privacy Policy, please contact us at tcreations.bookshelf@gmail.com.