Privacy Policy
Penny ("the App") is a book tracking application for iOS developed by Claudiu Sararu ("I," "me," or "the Developer"). This Privacy Policy explains how your information is handled when you use Penny.
I built Penny with privacy as a core principle. The App is designed so that your personal reading data stays on your device and under your control. I do not operate servers, do not collect personal data, and have no way to access your reading library or habits.
1. Information I Collect
I do not collect any personal information.
Penny does not require you to create an account, provide an email address, or share any personally identifiable information. There are no analytics tools, crash reporting services, advertising frameworks, or third-party tracking SDKs integrated into the App.
When you use Penny, the App generates data about your reading activity (books you add, reading sessions, notes, glossary entries, characters, reviews, and reading goals). All of this data is created by you and stored entirely on your device. I have no access to it.
2. How Your Data Is Stored
On-Device Storage
All of your reading data is stored locally on your device using Apple's SwiftData framework. This includes:
- Books in your library (titles, authors, page counts, shelves, ratings, reviews)
- Reading sessions (start time, duration, pages read)
- Notes, glossary entries, and character records you create
- Reading goals and preferences
- App settings (appearance mode, notification preferences)
This data never leaves your device unless you choose to enable iCloud sync.
iCloud Sync (Optional)
If you have iCloud enabled on your device and are signed in to an Apple ID, Penny may sync your reading data across your Apple devices using Apple's CloudKit framework. This sync uses a CloudKit private database, which means:
- Your data is stored in your personal iCloud account, encrypted and protected by Apple.
- I cannot access, view, or retrieve your synced data. Only you (through your Apple ID) can access it.
- Apple manages the iCloud infrastructure. Apple's handling of your iCloud data is governed by Apple's Privacy Policy.
- You can disable iCloud sync for Penny at any time through your device's Settings > [Your Name] > iCloud.
Cached Images
When you search for books, cover images may be downloaded from third-party services (see Section 4) and cached locally on your device for faster loading. These cached images are stored in your device's temporary cache directory and can be cleared by offloading or deleting the App.
3. Camera Access
Penny requests camera access solely for barcode scanning, which allows you to scan book ISBNs for quick lookup. Camera usage is handled entirely on-device using Apple's AVFoundation framework:
- No images or video are captured, stored, or transmitted. The camera feed is processed in real-time on your device to detect barcodes.
- The camera is only activated when you open the barcode scanner screen.
- You can deny camera access at any time through your device's Settings > Privacy & Security > Camera. The App will continue to function normally; you will simply need to search for books manually.
4. Third-Party Services
Penny connects to the following third-party services exclusively for book search functionality. No user-identifiable information is sent to these services.
Google Books API
When you search for a book, Penny sends your search query to the Google Books API to retrieve book metadata. Only the text of your search query is transmitted. Google's handling of API requests is governed by Google's Privacy Policy.
Open Library API
Penny also queries the Open Library API for book metadata and cover images. Only your search query or ISBN is transmitted. Open Library is operated by the Internet Archive, governed by the Internet Archive Privacy Policy.
Apple iTunes Search API
Penny queries Apple's iTunes Search API for book metadata from the Apple Books catalog. Only your search query is transmitted, governed by Apple's Privacy Policy.
Cover Image CDNs
Book cover images are loaded from Google Books, Open Library, and Apple's content delivery networks. These requests fetch publicly available book cover images. Standard HTTP request data (such as your device's IP address) may be visible to these servers, but Penny does not add any identifying information.
Apple StoreKit (In-App Purchases)
All payment processing is handled entirely by Apple. I do not receive, process, or store any payment information, credit card details, or billing data.
Local Notifications
If you enable daily reading reminders, Penny schedules local notifications on your device. These are generated and delivered entirely on-device. No notification data is sent to me or any third party.
5. Data I Do Not Collect
To be explicit, Penny does not collect, store, transmit, or have access to any of the following:
- Names, email addresses, phone numbers, or any contact information
- Location data
- Device identifiers or advertising identifiers
- Usage analytics or behavioral data
- Crash reports or diagnostics
- Health, fitness, or biometric data
- Browsing history
- Financial or payment information
- Photos, contacts, or other device data beyond what is described in this policy
6. Children's Privacy
Penny is rated 4+ on the App Store and does not contain any age-restricted content. Because Penny does not collect any personal information from anyone, the App complies with COPPA, GDPR provisions regarding children's data, and similar laws.
7. Your Rights Under GDPR
If you are located in the EEA, UK, or Switzerland, the GDPR grants you certain rights. Because Penny does not collect or process personal data on any server I control, these rights are satisfied by the App's design:
- Right of Access: All your data is on your device and in your private iCloud account.
- Right to Rectification: You can edit any data in the App at any time.
- Right to Erasure: You can delete individual items or all data by deleting the App.
- Right to Data Portability: Penny offers CSV export functionality.
- Right to Restrict Processing: No processing occurs outside your device.
- Right to Object: There is no profiling or automated decision-making.
8. Your Rights Under CCPA / CPRA
If you are a California resident, because Penny does not collect personal information:
- Right to Know: Penny does not collect, use, or disclose personal information.
- Right to Delete: All data is on your device and can be deleted by you.
- Right to Opt-Out of Sale/Sharing: Penny does not sell or share personal information.
- Right to Non-Discrimination: No different treatment regardless of privacy choices.
9. International Data Transfers
Your reading data is stored locally. If you enable iCloud sync, Apple may store your data in data centers outside your country, managed by Apple under their privacy practices. Book search queries are sent to servers in the United States but contain only search terms, not personal data.
10. Data Retention and Deletion
- Your data exists for as long as you choose to keep it.
- You can delete individual items at any time within the App.
- You can delete all data by deleting Penny from your device.
- iCloud data can be managed through Settings > [Your Name] > iCloud.
- Cached images are temporary and cleared automatically or by offloading the App.
11. Security
Your on-device data is protected by iOS security features including device encryption, the Secure Enclave, and app sandboxing. iCloud data benefits from Apple's encryption in transit and at rest. I have no server-side attack surface for your data.
12. Changes to This Privacy Policy
I may update this policy to reflect changes in functionality or applicable laws. Material changes will be noted by updating the "Last Updated" date. Your continued use constitutes acceptance.
13. Contact
Claudiu Sararu
Email: contact.pennyapp@gmail.com
Website: readwithpenny.online
14. App Store Privacy Label
Penny's App Store privacy label declares "Data Not Collected." This policy is consistent with that declaration.