Privacy Policy

Introduction

This Privacy Policy describes how Scroll Reader ("we", "us", "our") collects, uses, and protects your information when you use our website at scrollreader.app and associated services. By using Scroll Reader, you agree to the practices described here.

Data We Collect

We collect the following information to operate the service:

• Name and email address: Collected when you create an account, used to identify your account and send service-related communications.
• Uploaded documents: EPUBs and PDFs you upload are stored on our servers and used solely to generate your reading feed. We do not read, index, or analyse them for any purpose other than card generation.
• Generated cards: The AI-generated cards produced from your documents are stored and associated with your account to power your feed and spaced repetition scheduling.
• Engagement signals: How you interact with cards (scrolling past, engaging, saving) is recorded to personalise your feed. This data is not shared with third parties.

If you sign up using Google, we receive your name, email address, and profile picture from Google. We do not receive your Google password.

Non-Personal Data Collection

We use cookies and PostHog for product analytics — understanding which features are used and how the service performs. This data is collected in aggregate and is not sold or shared. You can manage cookie preferences through your browser settings.

AI Usage and Data Safety

Card generation is powered by Google Gemini. When we send a passage to Gemini for processing, we send only the text of the passage — not your name, email address, account ID, or any other identifying information. Document passages are processed transiently; we do not instruct Google to retain them for model training under our API usage.

Please refer to Google's Privacy Policy for details on how Google handles API data.

Data Sharing

We do not sell or rent your personal data to anyone.

To operate Scroll Reader, we use the following service providers:

• Supabase (Authentication and Database) — Stores your account information and generated cards. Uploaded documents are stored in Supabase Storage.
• Google Gemini (AI Card Generation) — Receives anonymised document passages to generate cards. Does not receive your name, email, or account details.
• Dodo Payments (Payment Processing) — Will handle payment processing when paid plans are introduced. We do not store or access your card details at any point.
• PostHog (Analytics) — Receives anonymised usage events to help us understand how the product is used. No personal identifiers are included in analytics events.

These providers act as processors on our behalf and are not permitted to use your data for their own purposes.

Account Deletion and Data Retention

You may delete your account at any time from your account settings or by emailing us at contact@scrollreader.app. Upon deletion, all uploaded documents and AI-generated cards associated with your account are permanently and irreversibly deleted from our servers. We do not retain copies after deletion.

If you only delete individual documents, the cards generated from those documents are also deleted.

Open Source

Scroll Reader is open source under the AGPL-3.0 license. If you self-host the software, your data stays entirely on your own infrastructure and is not subject to this policy. This policy applies only to the hosted service at scrollreader.app.

Updates to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify registered users by email before the changes take effect. Continued use of the service after that point constitutes acceptance of the revised policy.

Contact

If you have questions or concerns about this Privacy Policy or how we handle your data, please contact us at contact@scrollreader.app.