Privacy.

We hold your account profile, the comics you scan, your feedback, and the photos you upload. The records live in private, access-controlled Postgres tables. Comic images are private by default and only served through short-lived signed URLs.

When you scan a book, our server forwards the relevant photo(s) to the configured AI provider for grade and defect analysis. The API key never leaves the server — your browser never sees it. Providers may retain inputs per their own policy; we send nothing that identifies you alongside the image.

Auth session cookies are HTTP-only and set by Supabase Auth. No marketing trackers, no third-party analytics scripts, no advertising IDs. Vercel's built-in deployment telemetry (requests, errors, region) is the only operational signal we keep.

Don't upload identity documents, personal photography, or anything outside of comic-book context. The platform is built around comics — anything else is at your own risk and may be removed without notice.

Export, correction, or deletion: hit Settings → Account or contact us. Account deletion removes your auth record, your scan history, and your uploaded images from primary storage. Backups roll off within 30 days.

Primary data lives in the European Union (Supabase eu-west-1). The platform is hosted on Vercel; edge requests may be served from any region. Image storage is configurable between Supabase Storage and Cloudflare R2.