Privacy Policy

At Awesome Books, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our digital book platform.

This policy applies to all users of our website, mobile applications, and related services (collectively, the "Service"). By using our Service, you consent to the data practices described in this policy.

Information You Provide

We collect information you provide directly to us, including:

• Account Information: Name, email address, password, and profile preferences
• Payment Information: Billing address and payment method details (processed securely by our payment partners)
• Communication Data: Messages you send to us through contact forms or support channels
• Reading Preferences: Book ratings, reviews, and reading lists you create

Information We Collect Automatically

When you use our Service, we automatically collect certain information:

• Usage Data: Pages viewed, books accessed, reading progress, and time spent on the platform
• Device Information: Device type, operating system, browser type, and unique device identifiers
• Location Data: General geographic location based on IP address (not precise location)
• Log Data: Server logs including IP addresses, access times, and error reports

Information from Third Parties

We may receive information from third-party services when you:

• Sign up using social media accounts (with your permission)
• Make payments through external payment processors
• Access our Service through partner platforms or integrations

We use the information we collect for various purposes, including:

Service Provision

• Creating and managing your account
• Processing payments and managing subscriptions
• Providing access to books and platform features
• Syncing your reading progress across devices
• Providing customer support and responding to inquiries

Personalization & Recommendations

• Personalizing your reading experience
• Recommending books based on your preferences and reading history
• Customizing content and features to your interests
• Remembering your settings and preferences

Communication

• Sending service-related notifications and updates
• Providing information about new features or content
• Sending promotional emails (with your consent)
• Responding to your comments and questions

Analytics & Improvement

• Analyzing usage patterns to improve our Service
• Conducting research and analytics
• Monitoring and preventing fraud and abuse
• Ensuring technical functionality and security

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

Service Providers

We may share information with trusted third-party service providers who assist us in operating our Service:

• Payment Processors: To process subscription payments and transactions
• Cloud Storage: To store and backup your data securely
• Analytics Services: To understand how our Service is used
• Customer Support: To provide technical support and assistance
• Email Services: To send service communications and notifications

Legal Requirements

We may disclose your information if required to do so by law or in response to:

• Valid legal processes (subpoenas, court orders, etc.)
• Government requests or investigations
• Enforcement of our Terms of Service
• Protection of our rights, property, or safety
• Prevention of fraud or illegal activities

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction. We will notify you of any such change in ownership or control.

We implement comprehensive security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

Technical Safeguards

• Encryption: All data is encrypted in transit using SSL/TLS and at rest using AES-256
• Access Controls: Strict access controls and authentication requirements for our systems
• Network Security: Firewalls, intrusion detection, and monitoring systems
• Regular Updates: Security patches and updates applied promptly

Operational Safeguards

• Employee Training: Regular security awareness training for all staff
• Background Checks: Security screening for employees with data access
• Incident Response: Procedures for detecting and responding to security incidents
• Regular Audits: Security assessments and penetration testing

Your Role in Security

You can help protect your account by:

• Using a strong, unique password
• Enabling two-factor authentication when available
• Keeping your login credentials confidential
• Logging out of shared or public devices
• Reporting suspicious activity immediately

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention Periods

• Account Data: Retained while your account is active and for 30 days after deletion
• Payment Information: Retained for 7 years for tax and accounting purposes
• Usage Data: Aggregated data retained for analytics purposes (anonymized after 2 years)
• Support Communications: Retained for 3 years for quality assurance
• Legal Hold Data: Retained as required by legal obligations

Data Deletion

When we no longer need your information, we securely delete or anonymize it. You can request deletion of your account and associated data at any time through your account settings or by contacting us.

Backup and Recovery

We maintain secure backups of our systems for disaster recovery purposes. Backup data is subject to the same security measures and retention policies as primary data.

You have certain rights regarding your personal information. The availability of these rights may depend on your location and applicable laws.

Access and Portability

• Access: Request a copy of the personal information we hold about you
• Portability: Receive your data in a structured, machine-readable format
• Transparency: Understand how your data is processed and shared

Correction and Deletion

• Correction: Update or correct inaccurate personal information
• Deletion: Request deletion of your personal information (right to be forgotten)
• Restriction: Limit how we process your information in certain circumstances

Control and Consent

• Opt-out: Unsubscribe from marketing communications
• Withdraw Consent: Withdraw consent for processing where applicable
• Object: Object to processing based on legitimate interests

Exercising Your Rights

To exercise any of these rights, you can:

• Use the privacy controls in your account settings
• Contact us using the information provided at the end of this policy
• Submit a request through our privacy portal (when available)

We use cookies and similar tracking technologies to enhance your experience on our Service. This section explains what these technologies are and how we use them.

Types of Cookies

• Essential Cookies: Required for basic functionality (login, security, preferences)
• Performance Cookies: Help us understand how you use our Service
• Functional Cookies: Remember your preferences and settings
• Marketing Cookies: Used to deliver relevant advertisements (with consent)

Third-Party Tracking

We may use third-party services for analytics and advertising:

• Google Analytics: To understand website usage and performance
• Payment Processors: To facilitate secure transactions
• Social Media: For social sharing and authentication features

Managing Cookies

You can control cookies through:

• Your browser settings (block, delete, or restrict cookies)
• Our cookie preference center (when available)
• Opt-out tools provided by third-party services
• Do Not Track browser settings (where supported)

Our Service is operated from the United States, and we may transfer your information to countries other than your own for processing and storage.

Data Transfer Safeguards

When we transfer data internationally, we ensure appropriate safeguards are in place:

• Adequacy Decisions: Transfers to countries with adequate data protection laws
• Standard Contractual Clauses: EU-approved contracts for data protection
• Certification Programs: Privacy Shield or similar certification frameworks
• Binding Corporate Rules: Internal policies ensuring consistent protection

Your Rights for International Transfers

If you are located in the European Economic Area (EEA), United Kingdom, or other regions with specific data protection laws, you have additional rights regarding international transfers of your data.

Data Localization

Where required by local law, we may store and process your data within specific geographic regions. We will comply with applicable data localization requirements.

Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

Notification of Changes

When we make changes to this policy, we will:

• Update the "Last updated" date at the top of this policy
• Post the updated policy on our website
• Send email notifications for material changes (to active users)
• Display prominent notices on our Service for significant changes

Material Changes

For material changes that significantly affect your privacy rights, we will:

• Provide at least 30 days advance notice
• Obtain your consent where required by law
• Allow you to opt-out or delete your account if you disagree

Continued Use

Your continued use of our Service after any changes to this Privacy Policy constitutes your acceptance of the updated policy. If you do not agree with the changes, please stop using our Service and delete your account.