Privacy Policy

Last updated: April 2026

At BuzBit, we believe that intellectual freedom and the exchange of knowledge can only thrive in an environment built on uncompromising privacy and robust security. This policy explains exactly what data we collect, why we collect it, and how we protect it.

1. Data We Collect

We only collect data necessary to provide our services:

• Account Information: Email address and username used to create and identify your account. Authentication is handled via industry-standard providers (Supabase Auth), and credentials are never stored in plaintext.
• User-Generated Content: Book reviews, collections, and any content you voluntarily post. You retain ownership of your intellectual contributions.
• Camera & Microphone: Used solely for real-time video interactions with Reading Masters. We do not record or store video/audio without your explicit action.
• Photo Library: Accessed only when you choose to upload a profile picture or save content to your device. We do not scan or index your photo library.
• Device Identifier (IDFA): Our video calling feature uses the Tencent Real-Time Communication (TRTC) SDK, which may access your device's advertising identifier (IDFA) to maintain a secure and stable video call environment. This identifier is not used for advertising, is not linked to your personal identity, and is not shared with third-party advertisers.

2. How We Use Your Data

• To provide and improve core app features (reviews, video calls, recommendations)
• To authenticate your identity and secure your account
• To enable real-time video communication via TRTC SDK
• To personalize your reading recommendations within the app
• We do not sell, rent, or trade your data to advertisers or data brokers

3. Security Architecture

• TLS 1.2/1.3 Encryption: All data in transit is encrypted end-to-end
• Row Level Security (RLS): Database-level isolation ensures only you can access your private data
• SOC2-Compliant Infrastructure: Hosted on Vercel & Supabase (AWS), with 24/7 monitoring

4. Data Retention

We retain your data for as long as your account is active. Upon account deletion, your personal data is permanently removed from our active databases within 30 days. Anonymized, aggregated data may be retained for service improvement purposes.

5. Your Rights & Controls

• Visibility: Choose whether your Collections and Reviews are public or private
• Data Portability: Request a copy of your data at any time
• Account Deletion: Permanently delete your account and all associated data from within the app
• CCPA (California): California residents may request to know, delete, or opt out of data collection
• COPPA: BuzBit is intended for users aged 13 and older. We do not knowingly collect data from children under 13

6. Third-Party SDKs

BuzBit integrates the following third-party SDK which may collect limited technical data:

• Tencent TRTC SDK: Used for real-time video calling. May access device identifiers for call quality and security purposes. Governed by Tencent's Privacy Policy: https://www.tencentcloud.com/document/product/301/17345

7. Contact Us

For any privacy inquiries or data requests, please contact us at: alexlee7300@gmail.com