Privacy Policy

1. Introduction

Welcome to Little Stack (www.littlestack.com). Your privacy is important to us, and this Privacy Policy explains how we collect, use, store, and protect personal data when you use our website and services (collectively, the "Service").

This Privacy Policy also explains your rights under applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA/CPRA), where applicable.

By using Little Stack, you consent to the practices described in this policy.

2. Information We Collect

We collect information in a few categories:

2.1 Information You Provide

  • Account information: Email address and (if provided) first name.
  • Authentication information: If you sign in with Google SSO, we receive identifiers and basic profile info made available by Google (typically your email address, name, and a Google user identifier), depending on your Google settings.
  • Communications: Information you include when you contact us (for example, support emails).

2.2 Information Collected Automatically

  • Usage data: Pages viewed, actions taken, and interactions with the Service.
  • Device and log data: IP address, browser type, device identifiers, approximate location (derived from IP), and timestamps. We use this for security, fraud prevention, and service reliability.
  • Analytics data: Google Analytics data such as page views, session duration, and navigation patterns.

2.3 Activity and Preferences (In-Service Data)

  • Library and following activity: Information about authors you follow and items you save in your private library.
  • Email preferences: Your opt-in/opt-out choices, including genre newsletter preferences if you choose to receive them.

2.4 Author Uploads and Reader Magnet Data

Authors may upload content (such as EPUB files, images, and landing page text). Authors may also collect reader signups through landing pages. This creates two separate data relationships:

  • Little Stack account data: Your Little Stack account details and activity (covered above).
  • Author signup data: If you sign up for a reader magnet, your information is shared with that author. The author is responsible for their own privacy practices and how they use that data.

3. Legal Basis for Processing Data

Where GDPR applies, we process personal data under these legal bases:

  • Consent: When you opt in to marketing communications or optional features (such as newsletters), where required.
  • Contractual necessity: To provide the Service (account access, private library functionality, author tools, and delivery of requested content).
  • Legitimate interests: To secure and improve the Service, prevent abuse, analyze performance, and maintain reliability.
  • Legal obligation: To comply with applicable laws, lawful requests, and regulatory requirements.

4. How We Use Your Information

We use personal data to:

  • Provide, operate, and improve the Service.
  • Authenticate users via email/password or Google SSO.
  • Enable users to create and manage private book libraries and follow authors.
  • Send notifications you request (for example, when an author you follow releases a new book).
  • Send administrative emails (security alerts, policy changes, service updates).
  • Send newsletters or promotional emails only when you have opted in where required by law, and always with an unsubscribe option.
  • Analyze usage and improve performance using analytics tools like Google Analytics.
  • Protect the Service, prevent fraud/abuse, and enforce our Terms of Service.

5. Sharing, Third Parties, and Processors

We do not sell your personal information. We also do not rent your email address to third parties for their marketing purposes. We share personal data only as described below.

5.1 Service Providers (Processors)

We use trusted third-party providers to host and operate the Service. These providers may process personal data on our behalf.

Service Purpose Location
Vercel Website hosting and delivery U.S. / Global
DigitalOcean File storage and infrastructure hosting U.S. / Global
Google Analytics Website analytics U.S. / Global
Google SSO Single Sign-On authentication Global
Mailgun Transactional email delivery U.S. / Global

5.2 Authors and Reader Magnet Signups

If you sign up to receive a reader magnet from an author, the information you submit through that landing page is shared with that author. The author is responsible for how they use your information, including how they send emails and how they handle data requests. If you have questions about an author's practices, contact the author directly.

5.3 Legal and Safety Disclosures

We may disclose information if required to do so by law, in response to valid legal process, or to protect the rights, safety, and security of Little Stack, our users, and the public.

5.4 Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction, subject to this Privacy Policy.

6. Data Security & Storage

We take reasonable steps to protect personal data from unauthorized access, alteration, or disclosure. Our measures may include:

  • Secure storage and access controls on our infrastructure providers.
  • Encryption of sensitive data where appropriate.
  • Restricted access to personal data on a need-to-know basis.
  • Monitoring and logging to help detect abuse and protect accounts.

Cross-Border Data Transfers

If you are located outside the United States, your data may be transferred to and processed in the U.S. or other countries where our service providers operate. Where GDPR applies, we use appropriate safeguards for cross-border transfers.

7. Cookies & Tracking

Little Stack uses cookies and similar technologies for functionality, analytics, and security. These may include:

  • Essential cookies: Required for authentication and core functionality.
  • Analytics cookies: Used by Google Analytics to understand how users interact with the website.

You can manage cookie settings through your browser. Blocking certain cookies may impact functionality.

8. Email Communication

We may send you emails for:

  • Account-related and security notifications.
  • New book alerts when an author you follow releases a book.
  • Administrative updates about platform changes.
  • Newsletters or promotional emails if you opt in (where required by law).

You can unsubscribe from marketing emails anytime via the link in the email. You may still receive essential administrative emails related to your account.

9. Data Retention & Account Deletion

We retain personal data for as long as reasonably necessary to provide the Service, comply with legal obligations, resolve disputes, enforce our agreements, and maintain security logs and backups.

  • You can request account deletion by contacting us at info@littlestack.com.
  • When you delete your account, we will make reasonable efforts to remove your personal data from active systems, subject to legal requirements and legitimate business needs (such as security logs, fraud prevention, backups, and recordkeeping).
  • If you signed up for a reader magnet, you may also need to contact the author directly to request deletion from the author’s email list.

9.1 Service Discontinuation

If we discontinue the Service, we will make reasonable efforts to provide notice where practical and to handle data in a manner consistent with this Privacy Policy. We may retain certain information as required by law or for legitimate business purposes.

10. Your Rights (GDPR and CCPA/CPRA)

Depending on where you live, you may have rights regarding your personal data. These may include the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate personal data.
  • Request deletion of your personal data.
  • Object to or restrict certain processing (where applicable).
  • Request a copy of your data in a portable format (where applicable).
  • Opt out of certain uses where applicable under CCPA/CPRA (note: we do not sell personal information).

To exercise these rights, contact us at info@littlestack.com. We may need to verify your identity before processing your request.

11. Children's Privacy

Little Stack is not intended for children under 13 (or 16 in the EU). We do not knowingly collect personal data from minors. If you believe a child has provided personal data, please contact us and we will take appropriate steps to address it.

12. Payments (If Applicable)

If we offer paid features, payments may be processed by a third-party payment provider. We typically do not store full payment card numbers on our servers. Payment providers may collect and process information in accordance with their own privacy policies. If and when paid features are introduced, we will update this policy and identify the payment provider(s) we use.

13. Updates to This Privacy Policy

We may update this policy from time to time. Changes will be posted on this page with an updated effective date. If material changes occur, we will notify users by email or through the Service where appropriate.

14. Contact Us

If you have any questions or requests regarding this Privacy Policy, you can contact us at:

Email: info@littlestack.com

Website: www.littlestack.com

Add this book to your To Be Read list

Sign up to build your personal library

Archive This Book

Sign up to build your personal library