Privacy Policy

Last Updated: March 15th, 2026

This Privacy Policy explains how NovelMuch ("we," "us," or "our") collects, uses, stores, and protects your personal information when you use our services, including our website, mobile applications, and any related features (collectively, the "Service").

By accessing or using the Service, you agree to the practices described in this policy. If you do not agree, please do not use our Service.

1. Introduction and Scope
2. This policy applies to all data collected through NovelMuch’s mobile apps (iOS/Android), website, and any other platforms linking to this policy.
3. Capitalized terms not defined here have the same meaning as in our Terms of Service. If there is a conflict between this Privacy Policy and the Terms, this policy will control regarding personal data matters.

1. What Data We Collect
2. We collect data in two ways: (1) information you voluntarily provide, and (2) information we automatically collect when you use the Service.

2.1 Data You Provide Voluntarily

A. Account & Profile Data

• Required: To create an account, you must provide a valid email address, username, and date of birth (to verify age eligibility).
• Optional: You may choose to add additional details to your profile.
• Note: Your profile may be visible to other users. Please do not include sensitive information (e.g., religious beliefs, health data) unless you intend to share it publicly.
• B. Communication Data
• Information you send us via customer support, feedback forms, surveys, or contest entries.
• C. Payment-Related Data
• When you purchase subscriptions or in-app items, payment is processed by third-party providers (e.g., Stripe, Apple Pay, Google Pay). We do not store full payment credentials. We only receive non-sensitive transaction data (e.g., date, amount, payment method type).

2.2 Data We Collect Automatically

A. Usage & Browsing Data

• Content you view, stories you bookmark, reading time, login frequency, and features used (e.g., comments, offline downloads).
• Referral data.
• B. Device & Technical Data
• Device model, operating system, unique device identifiers (e.g., GAID for Android, IDFA for iOS).
• IP address, internet service provider, language settings, time zone, and geolocation data (if you enable location permissions).
• C. Advertising Data
• Ads you view or interact with, including click data and viewing duration, to measure ad effectiveness.

2.3 Data Related to Minors

We comply with global children’s privacy laws (e.g., COPPA, GDPR). We do not knowingly collect data from individuals under 13 (or the minimum age in your jurisdiction, such as 16 in the EEA).

• If you are under the minimum age, do not create an account.

1. How We Use Your Data
2. We use your data only for legitimate purposes, including:

• Providing & Maintaining the Service: Account authentication, payment processing, and feature delivery (e.g., saving reading progress).
• Personalization: Recommending stories based on your reading history.
• Improvement & Development: Analyzing usage to enhance performance and test new features.
• Security & Fraud Prevention: Detecting unauthorized access and protecting against cyber threats.
• Communications:Service Messages: Mandatory updates (e.g., password resets). You cannot opt out.Marketing Messages: Promotions and offers. You can opt out anytime.
• Advertising: Showing and measuring personalized or non-personalized ads.

1. Legal Basis for Processing (EEA Users Only)
2. If you are in the European Economic Area (EEA), we process your data under these GDPR bases:

• Consent: When you explicitly agree (e.g., for personalized ads).
• Contract Performance: To fulfill our Terms of Service (e.g., processing payments).
• Legitimate Interests: When our interests (e.g., improving the Service, fraud prevention) do not override your privacy rights.
• Legal Obligation: When required by law.

1. Advertising Practices
2. We may display ads in the free version of the Service or as part of incentivized features.

5.1 Types of Ads

• Personalized Ads: Tailored to your interests using usage data and device identifiers.
• Non-Personalized Ads: Generic ads not based on your data.

5.2 Tracking Technologies

We use cookies, device identifiers (GAID/IDFA), and pixel tags to measure ad performance and avoid showing repeat ads. Our partners may also use these technologies, governed by their own privacy policies.

5.3 Opt-Out Tools

You can opt out of personalized ads via:

• DAA: aboutads.info/choices
• NAI: networkadvertising.org/choices
• Opting out will not stop ads entirely—you will still see non-personalized ads.

1. Your Advertising Choices
2. You have control over ads and data use:

• In-App Settings: Go to Account Settings > "Privacy" > "Ad Preferences" to disable personalized ads.
• Marketing Emails: Click "Unsubscribe" in any marketing email.
• Device Settings: Reset your IDFA in iOS (Settings > Privacy & Security > Tracking) or use industry tools.

1. Data Retention
2. We retain your data only as long as necessary:

• Account Data: Deleted within 30 days of account deletion, except for limited data retained for legal obligations (e.g., tax records for up to 7 years).
• Automatically Collected Data: Retained for 12 months after last use, unless needed for security.
• Minors’ Data: Deleted immediately upon discovery of unauthorized collection.

1. Who We Share Your Data With
2. We do not sell your personal data. We share data only in these circumstances:

8.1 Service Providers

• Payment Processors: Stripe, Apple Pay, Google Pay.
• Hosting & Security: AWS, Cloudflare.
• Analytics: Google Analytics.
• Customer Support: Zendesk.

8.2 Other Users

Your profile information and comments may be visible to others.

8.3 Legal & Safety Reasons

We may disclose data if required by law or to protect rights, property, or safety.

8.4 Corporate Transactions

In case of merger, acquisition, or sale, your data may be transferred to the new owner, provided they uphold this policy.

1. International Data Transfers
2. Your data may be transferred to and stored in countries outside your residence (e.g., the U.S.). For EEA users, we ensure adequate protection through EU Standard Contractual Clauses (SCCs). We use encryption (SSL/TLS) for all data transfers.

1. Third-Party Links
2. The Service may contain links to third-party sites (e.g., author blogs, retailers). This policy does not apply to them. We recommend reviewing their privacy policies.

1. Data Security
2. We use technical and organizational measures to protect your data, including:

• Encryption in transit (SSL/TLS) and at rest (AES-256).
• Multi-factor authentication (MFA) for accounts.
• Regular security audits.
• No system is 100% secure. You can help by using a strong password, enabling MFA, and reporting suspicious activity.

1. Changes to This Policy
2. We may update this policy. Material changes will be notified via in-app alert, email, or a prominent notice on the Service. The change will come into effect after the notice is issued. Continued use after that date constitutes acceptance. If you disagree, you may delete your account.

1. Your Privacy Rights
2. You have the following rights, subject to applicable law:

• Access: Request a copy of your data.
• Correction: Update inaccurate data.
• Deletion: Request data deletion (subject to legal limits).
• Restriction: Limit processing of your data.
• Portability: Receive your data in a machine-readable format.
• Withdraw Consent: Revoke consent for specific processing (e.g., personalized ads).
• To Exercise Your Rights:
• Email NovelMuch@outlook.com with "Privacy Rights Request" in the subject line. Include your full name, registered email, and a description of your request. We will respond within 30 days.

1. Contact Us
2. If you have questions about this Privacy Policy, please contact us at:
3. Email: NovelMuch@outlook.com