Privacy Policy

Effective date: 2026-03-31

1. Introduction

BlitzRead ("Service," "we," "us," or "our") is operated by an individual developer based in India. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our speed-reading application and related services.

By using BlitzRead, you consent to the data practices described in this Privacy Policy. If you do not agree with these practices, please do not use the Service.

2. Information We Collect

Information You Provide

  • Account Information: Email address and authentication credentials when you create an account
  • Profile Information: Display name and reading preferences you choose to set
  • User Content: Text, documents, and URLs you upload or input for reading
  • Payment Information: Billing details processed through our payment provider (we do not store full payment card numbers)
  • Communications: Information you provide when contacting us for support

Information Collected Automatically

  • Usage Data: Reading speed, session duration, feature usage, and reading progress
  • Device Information: Browser type, operating system, device type, and screen resolution
  • Log Data: IP address, access times, pages viewed, and referring URLs
  • Performance Data: Error reports, crash logs, and performance metrics
  • Cookies and Similar Technologies: See Section 9 below for details

3. How We Use Your Information

We use collected information for the following purposes:

  • Service Delivery: To provide, maintain, and improve the BlitzRead experience
  • Authentication: To verify your identity and secure your account
  • Personalization: To customize your reading experience and sync preferences across devices
  • Analytics: To understand how users interact with the Service and identify areas for improvement
  • Billing: To process payments and manage subscriptions
  • Communications: To send service-related notices, respond to inquiries, and provide support
  • Security: To detect, prevent, and address fraud, abuse, and technical issues
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide the Service you requested (account management, reading features, subscription handling)
  • Legitimate Interests: Processing for our legitimate business interests, such as improving the Service, ensuring security, and preventing fraud, where these interests are not overridden by your rights
  • Consent: Where you have given explicit consent for specific processing activities (e.g., marketing communications)
  • Legal Obligation: Processing necessary to comply with our legal obligations

5. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

Service Providers

We use third-party services to help operate BlitzRead:

  • Supabase: Database hosting and authentication (data stored in cloud infrastructure)
  • Dodo Payments: Payment processing and subscription management
  • Cloudflare: Content delivery, DDoS protection, and edge computing
  • PostHog: Product analytics (privacy-focused, self-hostable)
  • Sentry: Error monitoring and performance tracking
  • Google Cloud Platform: Backend infrastructure hosting
  • OpenAI: AI-powered content generation features (Pro feature)

These providers have access to your information only to perform specific tasks on our behalf and are obligated to protect your information.

Other Disclosures

  • Legal Requirements: When required by law, subpoena, court order, or government request
  • Safety and Rights: To protect the safety, rights, or property of BlitzRead, our users, or others
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (you will be notified of any such change)
  • With Your Consent: When you have given explicit permission for a specific disclosure

6. International Data Transfers

BlitzRead is operated from India, and our service providers may process data in various countries including the United States and European Union. By using the Service, you acknowledge that your information may be transferred to and processed in countries other than your country of residence.

These countries may have data protection laws that differ from your jurisdiction. We take steps to ensure that your information receives an adequate level of protection in the jurisdictions in which we process it, including using standard contractual clauses where applicable.

7. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with the Service. We may also retain certain information as necessary to:

  • Comply with legal obligations (e.g., tax and accounting requirements)
  • Resolve disputes and enforce agreements
  • Maintain security and prevent fraud
  • Support business operations

When you delete your account, we will delete or anonymize your personal information within 30 days, except where retention is required for legal or legitimate business purposes.

Aggregated or anonymized data that cannot identify you may be retained indefinitely for analytics and service improvement purposes.

8. Your Rights and Choices

All Users

  • Access and Update: You can access and update your account information through your profile settings
  • Delete Account: You can request account deletion through settings or by contacting us
  • Data Export: You can request a copy of your data by contacting us
  • Unsubscribe: You can opt out of marketing emails using the unsubscribe link in those emails

European Users (GDPR)

If you are in the EEA, UK, or Switzerland, you have additional rights:

  • Right of Access: Request confirmation of whether we process your data and obtain a copy
  • Right to Rectification: Request correction of inaccurate personal data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restriction: Request restriction of processing in certain circumstances
  • Right to Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
  • Right to Lodge a Complaint: File a complaint with your local data protection authority

California Users (CCPA/CPRA)

If you are a California resident, you have the following rights:

  • Right to Know: Request information about what personal information we collect, use, and disclose
  • Right to Delete: Request deletion of your personal information
  • Right to Correct: Request correction of inaccurate personal information
  • Right to Opt-Out: We do not sell personal information, so this right does not apply
  • Right to Non-Discrimination: We will not discriminate against you for exercising your rights

Categories of Personal Information Collected: Identifiers (email, IP address), commercial information (subscription status), internet activity (usage data), and inferences (reading preferences).

To exercise any of these rights, please contact us at [email protected]. We will respond to verifiable requests within the timeframes required by applicable law (generally 30-45 days).

9. Cookies and Tracking Technologies

We use cookies and similar technologies for the following purposes:

  • Essential Cookies: Required for the Service to function (authentication, security, preferences)
  • Analytics Cookies: Help us understand how users interact with the Service (PostHog)
  • Performance Cookies: Monitor Service performance and identify errors (Sentry)

Most web browsers allow you to control cookies through their settings. However, disabling essential cookies may prevent you from using certain features of the Service.

We do not use cookies for behavioral advertising or sell cookie data to third parties.

10. Children's Privacy

BlitzRead is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will take steps to delete that information as soon as possible.

If you are a parent or guardian and believe your child under 13 has provided us with personal information, please contact us at [email protected].

11. Security

We implement reasonable technical and organizational security measures designed to protect your personal information from unauthorized access, alteration, disclosure, or destruction. These include:

  • Encryption of data in transit (TLS/HTTPS)
  • Encryption of sensitive data at rest
  • Access controls and authentication requirements
  • Regular security assessments
  • Secure infrastructure hosting with reputable providers

However, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security, and you use the Service at your own risk.

12. Data Breach Notification

In the event of a data breach that affects your personal information, we will notify you and relevant authorities as required by applicable law. Notification will include:

  • A description of the nature of the breach
  • The types of information involved
  • Steps we are taking to address the breach
  • Recommendations for protecting yourself
  • Contact information for questions

13. Third-Party Links

The Service may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. We will notify you of material changes by:

  • Posting the updated policy with a new effective date
  • Sending an email to the address associated with your account (for material changes)
  • Displaying a prominent notice on the Service

We encourage you to review this Privacy Policy periodically. Your continued use of the Service after changes become effective constitutes your acceptance of the revised policy.

15. Contact Us

If you have questions about this Privacy Policy or our data practices, or if you wish to exercise your privacy rights, please contact us at:

Email: [email protected]

For GDPR-related inquiries, you may also contact your local data protection authority.

We will respond to all legitimate requests within a reasonable timeframe and in accordance with applicable law.