Legal

Privacy Policy

Last updated: April 19, 2026

This Privacy Policy explains what information MagineBook collects, why we collect it, and the choices you have. We wrote it in plain language because privacy docs that only lawyers can read are not actually transparent. If anything here is unclear, email [email protected] and we will answer.

Last updated: April 19, 2026

Who we are

MagineBook is an AI-powered personalized children's book service operated at maginebook.com. Our registered address is [Company address — to be filled]. For any privacy question, the fastest route is [email protected].

What we collect

  • Order information — the child's name, age, reading level, interests, and any customization details you enter to generate the book.
  • Contact information — your email address (for order confirmations, previews, and delivery updates) and, for hardcover orders, your shipping address and name.
  • Optional photo — if you choose to upload a photo of your child so the illustrations resemble them, we process that image as described below.
  • Payment information — handled entirely by our payment processor. We never see or store your card number; we only receive a transaction ID and the last four digits for receipts.
  • Usage analytics — basic, aggregated traffic data (pages viewed, device type, country-level location) so we can fix bugs and understand which features are useful.

Why we collect it

We use this information to generate and deliver your book, email you receipts and download links, produce and ship hardcovers when ordered, respond to support requests, and improve the service. We do not sell your data, and we do not use your data for advertising.

How we handle uploaded photos

If you upload a child photo, we treat it as sensitive personal data. Here is exactly what happens to it:

  • The image is stored in a private our cloud storage partner bucket, served only through our authenticated backend proxy.
  • To generate illustrations, the image is sent to our AI illustration partners under strict data-processing agreements that prohibit using your image for model training.
  • We automatically delete the uploaded photo and any intermediate derivatives 30 days after the order is completed.
  • We never share photos with advertisers, data brokers, or any party outside the providers listed above.

Trusted partners we rely on

To deliver the service, we work with specialist partners for payment processing, storage, email delivery, printing, and AI-assisted story and illustration generation. Each partner receives only the specific data it needs to perform its role, operates under a formal data-processing agreement with us, and is contractually barred from using your data for their own purposes or for model training.

Children's privacy (COPPA)

MagineBook is a service for parents and adult gift-buyers. We do not knowingly allow anyone under 13 to create an account, place an order, or submit personal information directly. All data about a child (name, age, photo) is provided by a parent or guardian who is responsible for consenting to that use. We are COPPA-aware: we do not show advertising to children, we do not build profiles of children, and we delete child photos within 30 days.

Your rights (GDPR, CCPA, and similar laws)

Regardless of where you live, you can ask us to:

  • Access the data we hold about you.
  • Correct inaccurate data.
  • Delete your data (subject to legal retention obligations like tax records).
  • Export your data in a portable format.
  • Opt out of any non-essential processing.

Email [email protected] from the address used for the order. We reply within 30 days and do not charge a fee for reasonable requests.

Cookies

We use only essential cookies required for the site to work (session, cart, checkout). We do not run behavioral advertising trackers, fingerprinting scripts, or third-party ad networks. Analytics are aggregated and do not rely on cross-site tracking.

How long we keep things

  • Order records — 7 years (required for tax and accounting in most jurisdictions).
  • Uploaded photos and derivatives — 30 days after order completion.
  • Generated book PDFs — kept while your account/order is active, so you can re-download.
  • Audit and security logs — 2 years.
  • Support email — up to 2 years after the last message.

International data transfers

Our processors operate globally. Transfers outside your region are protected by Standard Contractual Clauses (for EU/UK users) or equivalent safeguards.

Security

We use TLS for all traffic, private storage buckets, access logging, encrypted secrets, and least-privilege access for engineers. No system is perfect; if we ever discover a breach affecting you, we will notify you without undue delay.

Changes to this policy

If we make material changes, we will update the date above and email customers with active orders. Continued use of the service after an update means you accept the revised policy.

Contact

Questions, requests, or concerns: [email protected]. See also our Terms of Service and Refund Policy.