Skip to content
50% off — codePH50

Privacy Policy

Last updated: February 14, 2026

1. Introduction

book2course ("we", "us", "our") respects your privacy. This policy explains what data we collect, how we use it, and your rights regarding your information.

2. Data We Collect

Account data: Email address and authentication information (via Google OAuth or email OTP). We do not store passwords.

Uploaded content: PDF documents you upload for course generation. These are stored securely and used solely to generate your courses.

Usage data: Course progress, quiz scores, lesson completion, and learning streaks.

Payment data: Processed securely by Stripe. We do not store your credit card details.

3. How We Use Your Data

  • To provide and operate the Service (generate courses, track progress)
  • To process payments via Stripe
  • To send essential account-related emails (login OTP, subscription confirmations)
  • To contact you for product feedback, service updates, and improvements
  • To send learning reminders (e.g. review cards due, streak nudges) that help you get the most out of the Service
  • To improve the Service based on aggregate usage patterns

We do not sell your personal data to third parties. We do not send promotional or marketing emails unless you opt in. You can unsubscribe from non-essential emails at any time by contacting us or using the unsubscribe link in the email.

4. AI Processing of Your Content

When you upload a document, it is sent to AI services (currently OpenAI) for analysis and course generation. This processing is performed in isolated, per-request sessions.

We do not use your uploaded content to train AI models. Your documents are not shared with other users or made publicly accessible.

AI processing may involve temporary storage of document text in memory during generation. Once processing is complete, only the generated course content is retained.

5. Document Retention & Deletion

Uploaded PDF documents are stored in secure cloud storage for as long as your account is active and the associated course exists.

When you delete a course from your dashboard, the associated source PDF is also deleted from our storage.

When you delete your account from Settings, all uploaded documents, generated courses, and associated data are permanently deleted.

We do not retain copies of your documents after deletion, except as required by law or to resolve disputes.

6. Data Storage & Security

Your data is stored on Supabase (PostgreSQL) and secured with industry-standard encryption. Uploaded PDFs are stored in secure cloud storage. All connections use HTTPS/TLS encryption.

7. Third-Party Services

We use the following third-party services:

  • Supabase: Authentication and database hosting
  • Stripe: Payment processing
  • Vercel: Application hosting
  • OpenAI: AI-powered course generation
  • Resend: Transactional email delivery

Each service has its own privacy policy governing how they handle data.

8. Your Rights

You have the right to:

  • Access: View the data we hold about you
  • Delete: Delete your account and all associated data from Settings
  • Export: Request a copy of your data by contacting us
  • Correct: Update your account information at any time

9. Cookies

We use essential cookies for authentication and session management. We do not use third-party tracking cookies or advertising cookies.

10. Children's Privacy

The Service is not intended for children under 13. We do not knowingly collect data from children under 13. If you believe a child has provided us with personal data, contact us and we will delete it.

11. Changes to This Policy

We may update this policy from time to time. We will notify users of significant changes via email or in-app notice. Continued use of the Service constitutes acceptance.

12. Contact

For privacy-related questions or requests, contact us at support@book2course.org.

← Back to Home