makeEbook logo

Privacy Policy

Last updated: 19/10/2025

1. Controller Information

The data controller for makeEbook is Neil McArdle, operating as an individual under UK GDPR. For any privacy-related inquiries, please contact us through neilmcardle.com.

2. Information We Collect

2.1 Information You Provide Directly

  • Account Information: Email address, password (encrypted)
  • eBook Content: Text, titles, chapters, and any content you create
  • Optional Information: Username or display name if provided

2.2 Information Collected Automatically

  • Usage Data: How you interact with the service, features used
  • Technical Data: IP address, browser type, device information
  • Authentication Data: Login sessions and security tokens

3. Legal Basis for Processing

We process your personal data based on the following legal grounds under UK GDPR:

  • Contract Performance: To provide the eBook creation service you've requested
  • Legitimate Interests: To improve our service, prevent fraud, and ensure security
  • Consent: For any additional features or communications (where explicitly given)

4. How We Use Your Information

  • To provide and maintain the eBook creation service
  • To manage your user account and authentication
  • To store and process your eBook content
  • To communicate with you about the service
  • To improve our service and fix technical issues
  • To comply with legal obligations

5. Data Sharing and Recipients

We share your personal data only in the following circumstances:

  • Service Providers: Supabase (database hosting), Replit (application hosting)
  • Legal Requirements: When required by law or to protect our rights
  • With Your Consent: Any other sharing only with your explicit permission

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

6. Data Retention

We retain your personal data for as long as necessary to provide the service and fulfill our legal obligations:

  • Account Data: Until you delete your account or request deletion
  • eBook Content: Until you delete it or close your account
  • Usage Logs: Maximum of 12 months for security and improvement purposes

7. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Where processing is based on consent

To exercise any of these rights, please contact us through our website. We will respond within one month.

8. International Transfers

Your data may be processed outside the UK through our service providers (Supabase, Replit). We ensure appropriate safeguards are in place through:

  • Standard Contractual Clauses approved by UK authorities
  • Service providers' compliance with international data protection standards
  • Regular review of transfer mechanisms and safeguards

9. Data Security

We implement appropriate technical and organisational measures to protect your data:

  • Encryption of data in transit and at rest
  • Secure authentication and access controls
  • Regular security updates and monitoring
  • Limited access to personal data on a need-to-know basis

10. Cookies and Tracking

We use essential cookies to:

  • Maintain your login session
  • Remember your preferences
  • Ensure security of the service

These cookies are necessary for the service to function and are set based on contractual necessity.

11. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal data from children under 13. If you believe we have collected such data, please contact us immediately.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by email or through the service. Your continued use after such changes constitutes acceptance of the updated policy.

13. Complaints

If you have concerns about how we handle your personal data, you can:

  • Contact us directly through our website
  • Lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk

14. Contact Information

For any questions about this Privacy Policy or to exercise your data protection rights, please contact us through neilmcardle.com.