Privacy Policy
Last updated: June 7, 2026
Overview
BookAura is a reading companion app that generates atmospheric music playlists based on the books you read. We are committed to your privacy. This policy explains exactly what data the app collects, where it goes, and what it is used for.
What we collect and why
Book titles and author names
When you search for a book, the title and author you enter are sent to our server (hosted on Supabase) and forwarded to the Anthropic Claude API to generate a mood analysis and music curation. This data is used solely to produce the analysis for that session. We do not store your search history on our servers.
Spotify authentication
If you choose Spotify as your music service, BookAura connects to your Spotify account via OAuth. We receive a temporary access token that allows the app to control playback on your behalf. This token is stored only on your device and is never sent to our servers. We do not access your Spotify listening history, playlists, or personal profile.
Apple Music authentication
If you choose Apple Music, playback is handled entirely on your device via Apple's MusicKit framework. We do not receive any credentials or tokens.
Play counts
BookAura stores a count of how many times you have generated a playlist for each book. This counter is synced across your devices via Apple's iCloud Key-Value Store (your personal iCloud account). This data never passes through our servers.
Purchases
In-app purchases (Book Unlock and Reader Pass) are processed entirely by Apple. BookAura receives only a confirmation of the transaction from StoreKit. We do not collect or store payment information of any kind. Purchase status is stored locally on your device via SwiftData and synced through Apple's StoreKit receipt validation.
Book and chapter data
Your saved books, chapter lists, mood descriptions, and cached playlist data are stored locally on your device using Apple's SwiftData framework. This data does not leave your device except as part of your personal iCloud backup, which is governed by Apple's privacy policy.
What we do not collect
- We do not collect your name, email address, or any contact information
- We do not use advertising or analytics SDKs
- We do not track your location
- We do not build user profiles
- We do not share any data with third parties for marketing purposes
Third-party services
BookAura integrates with the following third-party services, each governed by their own privacy policy:
- Spotify — spotify.com/privacy
- Apple Music / MusicKit — apple.com/privacy
- Anthropic (Claude AI) — anthropic.com/privacy
- Supabase — supabase.com/privacy (our server infrastructure; book titles pass through here to reach Claude)
- Apple StoreKit / iCloud — apple.com/privacy
Data retention
Data stored on your device persists until you delete the app. Deleting the app removes all locally stored book data, cached analyses, and Spotify tokens. iCloud play counts can be cleared by signing out of iCloud or disabling iCloud for BookAura in your device Settings.
We do not retain any data on our servers. Book title queries sent to Claude via Supabase are not logged or stored after the response is returned.
Children's privacy
BookAura is not directed at children under 13 and does not knowingly collect data from children.
Changes to this policy
If we make material changes to this policy, we will update the date at the top of this page. Continued use of the app after changes constitutes acceptance of the updated policy.