Privacy Policy
Penny ("the App") is a book tracking application for iOS and Android, developed by Claudiu Sararu ("I," "me," or "the Developer"). The App is available on the Apple App Store and Google Play Store. This Privacy Policy explains how your information is handled when you use Penny on any platform.
I built Penny with privacy as a core principle. The App is designed so that your personal reading data stays on your device and under your control. I do not operate servers, do not collect personal data, and have no way to access your reading library or habits.
1. Information I Collect
I do not collect any personal information.
Penny does not require you to create an account, provide an email address, or share any personally identifiable information. There are no analytics tools, crash reporting services, advertising frameworks, or third-party tracking SDKs integrated into the App.
When you use Penny, the App generates data about your reading activity (books you add, reading sessions, notes, glossary entries, characters, reviews, and reading goals). All of this data is created by you and stored entirely on your device. I have no access to it.
2. How Your Data Is Stored
On-Device Storage
All of your reading data is stored locally on your device. On iOS, data is stored using Apple's SwiftData framework; on Android, data is stored using Room (SQLite) and Jetpack DataStore. This includes:
- Books in your library (titles, authors, page counts, shelves, ratings, reviews)
- Reading sessions (start time, duration, pages read)
- Notes, glossary entries, and character records you create
- Reading goals and preferences
- App settings (appearance mode, notification preferences)
On iOS, this data never leaves your device unless you choose to enable iCloud sync. On Android, all data remains on your device.
iCloud Sync (iOS Only, Optional)
If you use Penny on iOS and have iCloud enabled on your device and are signed in to an Apple ID, Penny may sync your reading data across your Apple devices using Apple's CloudKit framework. This sync uses a CloudKit private database, which means:
- Your data is stored in your personal iCloud account, encrypted and protected by Apple.
- I cannot access, view, or retrieve your synced data. Only you (through your Apple ID) can access it.
- Apple manages the iCloud infrastructure. Apple's handling of your iCloud data is governed by Apple's Privacy Policy.
- You can disable iCloud sync for Penny at any time through your device's Settings > [Your Name] > iCloud.
iCloud sync is not available on the Android version of Penny. Cross-platform sync between iOS and Android is not currently supported.
Cached Images
When you search for books, cover images may be downloaded from third-party services (see Section 4) and cached locally on your device for faster loading. These cached images are stored in your device's temporary cache directory and can be cleared by offloading or deleting the App.
Android Backup
On Android, the system may include Penny's data in device backups (e.g., Google's Auto Backup) if you have backup enabled in your device settings. These backups are managed by Google and subject to Google's Privacy Policy. I have no access to your backup data. You can manage backup settings through your device's Settings > System > Backup.
3. Device Permissions
Camera Access
Penny requests camera access solely for barcode scanning, which allows you to scan book ISBNs for quick lookup. On iOS, camera usage is handled via Apple's AVFoundation framework; on Android, it uses CameraX and ML Kit barcode detection. On both platforms:
- No images or video are captured, stored, or transmitted. The camera feed is processed in real-time on your device to detect barcodes.
- The camera is only activated when you open the barcode scanner screen.
- You can deny camera access at any time through your device settings. The App will continue to function normally; you will simply need to search for books manually.
Notifications
On Android, Penny requests the POST_NOTIFICATIONS permission to deliver daily reading reminders. Notifications are generated and delivered entirely on-device. No notification data is sent to me or any third party. You can manage notification permissions through your device's Settings > Apps > Penny > Notifications.
Other Android Permissions
The Android version of Penny also uses the following permissions, all handled locally on your device:
- Internet: Required to search for books and load cover images from third-party APIs (see Section 4).
- Foreground Service: Used for background audio playback of ambient reading soundscapes.
- Vibrate: Used for haptic feedback when interacting with certain UI elements.
- Receive Boot Completed: Used to reschedule reading reminder notifications after a device restart.
- Billing: Required for Google Play in-app purchases (see Section 4).
4. Third-Party Services
Penny connects to the following third-party services exclusively for book search functionality. No user-identifiable information is sent to these services.
Google Books API
When you search for a book, Penny sends your search query to the Google Books API to retrieve book metadata. Only the text of your search query is transmitted. Google's handling of API requests is governed by Google's Privacy Policy.
Open Library API
Penny also queries the Open Library API for book metadata and cover images. Only your search query or ISBN is transmitted. Open Library is operated by the Internet Archive, governed by the Internet Archive Privacy Policy.
Apple iTunes Search API
Penny queries Apple's iTunes Search API for book metadata from the Apple Books catalog. Only your search query is transmitted, governed by Apple's Privacy Policy.
Cover Image CDNs
Book cover images are loaded from Google Books, Open Library, and Apple's content delivery networks. These requests fetch publicly available book cover images. Standard HTTP request data (such as your device's IP address) may be visible to these servers, but Penny does not add any identifying information.
In-App Purchases (Apple StoreKit & Google Play Billing)
On iOS, all payment processing is handled entirely by Apple through StoreKit. On Android, all payment processing is handled entirely by Google through Google Play Billing. In both cases, I do not receive, process, or store any payment information, credit card details, or billing data. For details on how each platform handles your payment data, see Apple's Privacy Policy and Google's Privacy Policy.
Local Notifications
If you enable daily reading reminders, Penny schedules local notifications on your device. These are generated and delivered entirely on-device using platform-native APIs. No notification data is sent to me or any third party.
5. Data I Do Not Collect
To be explicit, Penny does not collect, store, transmit, or have access to any of the following:
- Names, email addresses, phone numbers, or any contact information
- Location data
- Device identifiers or advertising identifiers
- Usage analytics or behavioral data
- Crash reports or diagnostics
- Health, fitness, or biometric data
- Browsing history
- Financial or payment information
- Photos, contacts, or other device data beyond what is described in this policy
6. Children's Privacy
Penny is rated 4+ on the Apple App Store and "Everyone" on Google Play, and does not contain any age-restricted content. Because Penny does not collect any personal information from anyone, the App complies with COPPA, GDPR provisions regarding children's data, and similar laws. The App also complies with Google's Families Policy requirements.
7. Your Rights Under GDPR
If you are located in the EEA, UK, or Switzerland, the GDPR grants you certain rights. Because Penny does not collect or process personal data on any server I control, these rights are satisfied by the App's design:
- Right of Access: All your data is on your device (and, on iOS, optionally in your private iCloud account).
- Right to Rectification: You can edit any data in the App at any time.
- Right to Erasure: You can delete individual items or all data by deleting the App.
- Right to Data Portability: Penny offers CSV export functionality.
- Right to Restrict Processing: No processing occurs outside your device.
- Right to Object: There is no profiling or automated decision-making.
8. Your Rights Under CCPA / CPRA
If you are a California resident, because Penny does not collect personal information:
- Right to Know: Penny does not collect, use, or disclose personal information.
- Right to Delete: All data is on your device and can be deleted by you.
- Right to Opt-Out of Sale/Sharing: Penny does not sell or share personal information.
- Right to Non-Discrimination: No different treatment regardless of privacy choices.
9. International Data Transfers
Your reading data is stored locally. On iOS, if you enable iCloud sync, Apple may store your data in data centers outside your country, managed by Apple under their privacy practices. On Android, if you use Google's Auto Backup, Google may store your backup data in data centers outside your country, managed by Google under their privacy practices. Book search queries are sent to servers in the United States but contain only search terms, not personal data.
10. Data Retention and Deletion
- Your data exists for as long as you choose to keep it.
- You can delete individual items at any time within the App.
- You can delete all data by uninstalling Penny from your device.
- On iOS, iCloud data can be managed through Settings > [Your Name] > iCloud.
- On Android, backup data can be managed through Settings > System > Backup, or by clearing the App's data through Settings > Apps > Penny.
- Cached images are temporary and cleared automatically or by uninstalling the App.
11. Security
Your on-device data is protected by your platform's built-in security features. On iOS, this includes device encryption, the Secure Enclave, and app sandboxing; iCloud data benefits from Apple's encryption in transit and at rest. On Android, this includes file-based encryption and the application sandbox. I have no server-side attack surface for your data.
12. Changes to This Privacy Policy
I may update this policy to reflect changes in functionality or applicable laws. Material changes will be noted by updating the "Last Updated" date. Your continued use constitutes acceptance.
13. Contact
Claudiu Sararu
Email: contact.pennyapp@gmail.com
Website: readwithpenny.online
14. Store Privacy Declarations
On the Apple App Store, Penny's privacy label declares "Data Not Collected." On Google Play, Penny's Data Safety section declares that no user data is collected or shared. This policy is consistent with both declarations.
15. Google User Data Policy Compliance
Penny complies with Google Play's User Data policy. The App does not collect, use, or share user data beyond what is described in this policy. All data handling is transparent, and the App requests only the permissions necessary for its functionality. No data is sold to third parties.