Privacy Policy

Last updated: June 12, 2026

This Privacy Policy explains what personal data bookshelf.dev ("we", "us") collects, why, and how it is handled. The Site is operated by Mikhail Rubanov.

1. Data we collect

Email address — you provide it at checkout and when signing in to read paid content. We use it to verify your purchase or subscription and to grant access.
Payment and billing data — collected and processed by Polar (see below). We do not receive or store your full card details.
Technical data — standard server logs (such as IP address and request metadata) processed by our hosting provider to deliver and secure the Site.

2. Cookies

We use a single essential cookie, bookshelf_session, set after you sign in. It is a signed token that records which content your email is entitled to, expires after 7 days, and is used only to keep you signed in. We do not use advertising or third-party tracking cookies.

3. Payments — Polar as Merchant of Record

Purchases are processed by Polar (Polar.sh), which acts as the Merchant of Record and independent data controller for payment processing, billing, fraud prevention, and tax compliance. When you check out, your payment information is collected directly by Polar under Polar's Privacy Policy. We query Polar using your email only to confirm whether you have a valid purchase or subscription.

4. How we use your data

To verify purchases and grant access to paid content.
To operate, secure, and maintain the Site.
To respond to support requests you send us.

We do not sell your personal data or use it for advertising.

5. Data retention

Your email/entitlement lookups are cached temporarily (about one hour) to reduce repeated requests to Polar. Records of your purchases are retained by Polar as the Merchant of Record. We retain only what is necessary to provide access and meet legal obligations.

6. Processors and third parties

Polar — payments, billing, and tax (Merchant of Record).
Cloudflare — hosting, content delivery, and security for the Site.

7. Your rights

Depending on your location, you may have the right to access, correct, or delete your personal data, or to object to or restrict its processing. To exercise these rights, contact us at the address below. For payment and billing data held by Polar as Merchant of Record, you can also contact Polar directly.

8. Changes

We may update this Policy; the "Last updated" date above reflects the latest version.

9. Contact

For privacy questions or requests, contact mv.rubanov@gmail.com.

Template starting point — review and adapt it (e.g. legal entity, jurisdiction-specific rights, any analytics you add) before relying on it. This is not legal advice.