Privacy & Security

Information about data privacy, security measures, and how we protect your information

Privacy & Security

How is my data protected?

Screvi employs enterprise-grade security measures to protect your data:

  • All data is encrypted in transit using TLS 1.3
  • Data at rest is encrypted using AES-256 encryption
  • We use secure cloud infrastructure with regular security audits
  • Access to your data is strictly controlled and monitored

What data does Screvi collect?

Screvi only collects data necessary to provide our service:

  • Your reading highlights and associated metadata (book titles, authors, dates)
  • Account information (email, name)
  • Usage analytics to improve our service (anonymized)
  • Technical data for troubleshooting and optimization

We do NOT collect:

  • Your reading habits or reading times
  • Personal notes or annotations from your devices (unless you choose to import them)
  • Data from books you haven't highlighted

Do you share my data with third parties?

No, we do not sell, rent, or share your personal data or highlights with third parties for marketing purposes. We may share data only in these limited circumstances:

  • With service providers who help us operate Screvi (under strict data protection agreements)
  • When required by law or to protect our rights
  • In the event of a merger or acquisition (with advance notice to users)

Can I delete my data?

Yes, you have full control over your data:

  • You can delete individual highlights at any time
  • You can disconnect any integration to stop future data syncing
  • You can delete your entire account and all associated data
  • Data deletion requests are processed within 30 days

Where is my data stored?

Your data is stored on secure cloud servers primarily located in the United States, with backup systems in multiple geographic regions for reliability and disaster recovery.

How do you handle authentication with reading platforms?

We use OAuth 2.0 and other secure authentication methods when connecting to reading platforms:

  • We never store your passwords for other services
  • Authentication tokens are encrypted and stored securely
  • You can revoke access at any time from your account settings
  • Tokens are regularly refreshed and validated

Is Screvi GDPR compliant?

Yes, Screvi is fully compliant with GDPR (General Data Protection Regulation) and other privacy laws. You have the right to:

  • Access your data
  • Correct inaccurate data
  • Delete your data
  • Export your data
  • Restrict data processing
  • Object to data processing

What happens if there's a security breach?

In the unlikely event of a security incident:

  • We will investigate immediately and take steps to secure the system
  • Affected users will be notified within 72 hours
  • We will provide clear information about what happened and what steps we're taking
  • We work with cybersecurity experts and law enforcement as appropriate

How can I enhance my account security?

We recommend:

  • Using a strong, unique password for your Screvi account
  • Enabling two-factor authentication (when available)
  • Regularly reviewing your connected integrations
  • Keeping your email address up to date
  • Logging out of shared or public devices

Who can I contact about privacy concerns?

For any privacy or security questions, please contact our Data Protection Officer at:

We typically respond to privacy inquiries within 48 hours.