Read Roost ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our universal reading and highlighting platform.
Zero-Knowledge Architecture: We use client-side encryption to ensure that even we cannot access your content without your personal encryption key.
2. Information We Collect
2.1 Personal Information
Name and email address (for account creation)
Payment information (processed securely through Stripe)
Profile information you choose to provide
2.2 Content Information
Documents you upload (encrypted with your personal key)
Highlights and notes you create (encrypted with your personal key)
Study materials and quiz results (encrypted with your personal key)
2.3 Usage Information
Log data and analytics (anonymized)
Device and browser information
Feature usage statistics (aggregated and anonymized)
3. How We Use Your Information
We use the collected information for:
Providing and maintaining our Service
Processing payments and managing subscriptions
Sending important service updates and notifications
Improving our Service through anonymized analytics
Providing customer support
Detecting and preventing fraud or abuse
4. Client-Side Encryption
Your Content is Private
All your documents, highlights, and notes are encrypted in your browser before being sent to our servers
Your personal encryption key never leaves your device
We cannot decrypt or access your content even if we wanted to
Only you can decrypt and view your content with your encryption key
If you lose your encryption key, even we cannot recover your content
5. Information Sharing
We do not sell, trade, or rent your personal information. We may share information only in these limited circumstances:
With your explicit consent
With trusted service providers (like Stripe for payments) under strict confidentiality agreements
When required by law or to protect our rights
In case of a business transfer (with advance notice to users)
6. Data Security
End-to-end encryption for all user content
HTTPS encryption for all data transmission
Regular security audits and updates
Secure data centers with physical security measures
Multi-factor authentication available for user accounts
7. Your Rights
You have the right to:
Access your personal information
Correct inaccurate information
Delete your account and personal information
Export your data in a portable format
Opt-out of non-essential communications
Object to processing of your personal information
8. Data Retention
We retain your personal information only as long as necessary to provide our services and fulfill the purposes outlined in this policy. When you delete your account, we will permanently delete your personal information and encrypted content within 30 days.
9. International Data Transfers
Your information may be processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information in accordance with this privacy policy and applicable data protection laws.
10. Children's Privacy
Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us immediately.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Your continued use of the Service after such changes constitutes acceptance of the updated policy.
12. Contact Us
If you have any questions about this Privacy Policy, please contact us: