Legal
Privacy Policy
Last updated: 22 June 2026
PodBooks helps you discover books mentioned across the podcasts you follow. This policy explains what we collect, why, and the choices you have.
What we collect
- Account & Spotify data. When you sign in with Spotify we receive your email address, country, and the list of shows you follow. We store an encrypted Spotify token so we can keep your followed shows up to date.
- Your activity in the app. Books you save or mark as read.
- Device token. If you enable notifications, a push token so we can notify you about new book mentions.
How we use it
- To personalize your feed to the podcasts you follow and surface the books mentioned in them.
- To localize purchase links to your country.
- To send notifications you opt into.
Third parties
- Spotify — authentication and your followed shows (per Spotify's own terms).
- Supabase — our hosted database and authentication provider, where your data is stored.
- Anthropic — processes public podcast transcripts to identify book mentions. We do not send your personal data for this processing.
- Affiliate partners — purchase links may include affiliate codes; we may earn a commission on purchases. These links do not share your identity.
Data retention & your rights
We keep your data only while your account is active. You can delete your account at any time from the app's settings — this permanently removes your profile, saved books, Spotify connection, and tokens. You may also contact us to request access to or deletion of your data.
Security
Spotify tokens are encrypted at rest (AES-256-GCM). Access to stored data is restricted by row-level security so you can only read your own personal records.
Children
PodBooks is not directed at children under 13 and we do not knowingly collect their data.
Contact
Questions or requests: rn@catalist.dk.