Legal
Privacy Policy
Ridabook ("we", "our", "the App") is committed to protecting your privacy. This Privacy Policy explains what data we collect, how we use it, and your rights regarding your information.
1. Information We Collect
We collect the following data to provide and improve the Ridabook service:
- Account information: Name, email address, and password (stored as a secure hash — we never store your plain-text password).
- Profile information: Avatar photo, bio, and reading interests.
- Location data: GPS coordinates from your device (with your permission) or a manually entered location. Used to show books available near you and calculate distances between users.
- Library data: Books you add, including reading status, trade status, and condition.
- Usage data: Swipes, matches, messages, and trade activity within the App.
- Device information: Device type, operating system, and app version (collected automatically for diagnostics).
2. How We Use Your Data
- To show you books available for trade near your location.
- To match you with readers who share similar reading interests.
- To enable in-app messaging between matched users.
- To send transactional emails (password reset, email verification).
- To display relevant book recommendations, including affiliate-sponsored content.
- To improve the App's functionality and user experience.
3. Location Data
Ridabook uses your device's GPS location to find books near you. Your location is stored on our servers to calculate distances. You can:
- Update your location manually in your profile settings at any time.
- Revoke location permissions through your device settings (this may limit the App's functionality).
- Set a custom search radius to control how far the App looks for books.
4. Data Sharing
We do not sell your personal data to third parties.
We share limited data only with the following service providers, solely to operate the App:
- Google: For authentication (Sign in with Google).
- Hardcover: For book metadata and cover images.
- Resend: For sending transactional emails.
- Cloudflare: For content delivery and performance.
- Fly.io: For server hosting.
5. Affiliate Content and Advertising
The App may display sponsored book recommendations and affiliate links to third-party retailers (such as Amazon, Bookshop.org, and ThriftBooks). When you tap these links, you are directed to external websites governed by their own privacy policies. Ridabook may earn a commission from purchases made through these links. We do not share your personal data with these retailers.
6. Data Security
We take reasonable measures to protect your data, including:
- Passwords are hashed using bcrypt (never stored in plain text).
- All data is transmitted over HTTPS (encrypted in transit).
- Authentication uses JSON Web Tokens (JWT) with short expiration times.
- Password reset tokens are hashed and expire after 1 hour.
7. Data Retention
We retain your data for as long as your account is active. If you delete your account, we will remove your personal data from our servers. Some data may be retained in backups for a limited period.
8. Your Rights
You have the right to:
- Access your personal data (visible in your profile and library).
- Update your information at any time through the App.
- Delete your account and all associated data through the App's profile settings.
- Withdraw consent for location data by revoking permissions in your device settings.
9. Children's Privacy
Ridabook is not intended for children under 13. We do not knowingly collect personal data from children under 13. If you believe a child under 13 has created an account, please contact us and we will delete it promptly.
10. Changes to This Policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify you through the App. Your continued use of Ridabook after changes take effect constitutes acceptance of the updated policy.
11. Contact Us
If you have questions about this Privacy Policy or your data, contact us at:
hello@ridabook.app