Free shipping in Australia for all physical editions
BookOfYou
Create a book

Privacy Policy

Last updated: 22 February 2026

Overview

This Privacy Policy explains how BookOfYou (‘we’, ‘us’, ‘our’) collects, uses, discloses, and stores personal information when you use our website at bookofyou.com.au and our personalised book creation service. We are committed to protecting your personal information in accordance with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

We provide a link to this Privacy Policy during the book creation process and at checkout, so you are aware of how your information will be handled before providing it.

Information We Collect

  • Book creation inputs: occasion, recipient name, buyer name, relationship, and freeform text.
  • Optional dedication message and optional uploaded photo (used solely for AI cover illustration generation).
  • Optional audio recordings (used to enrich text input; up to 180 seconds).
  • Account and order details: email address, full name, optional phone number, and shipping address for physical orders.
  • Payment information: processed directly by Stripe; we do not store your card details — only Stripe transaction references.
  • Technical information: IP address for rate limiting of preview generation; authentication session tokens.

We do not use third-party analytics, advertising trackers, or marketing cookies.

How We Use Your Information

  • To generate your personalised book content using AI (text and cover illustration).
  • To process payments and fulfil digital and physical orders.
  • To send order-related transactional emails (confirmation, digital delivery, shipping notifications).
  • To provide order lookup and account management.
  • To prevent abuse (rate limiting preview generation).
  • To improve our service and resolve support requests.

We do not use your personal information for marketing purposes, and we do not sell or rent your information to third parties.

AI-Generated Content and Data Handling

When you create a book, your text inputs, selected options, and optional photo are sent to Google Gemini (Google’s AI service) to generate your book’s story content and cover illustration.

Your uploaded photo is used solely for generating the cover illustration. It is stored securely and automatically deleted after 90 days.

AI-generated content (story chapters, cover images) is stored to enable your order fulfilment and future access.

Google processes your inputs according to their own privacy policy. We use Google’s API services, which means your inputs are processed but not used to train Google’s models.

Cookies and Tracking Technologies

We use minimal cookies strictly necessary for the operation of the service:

  • Authentication session cookies (to keep you signed in).

We do not use advertising cookies, social media trackers, or third-party analytics services.

Data Retention

  • Uploaded photos and AI-generated cover images: automatically deleted 90 days after book creation.
  • Preview attempt records (rate limiting): automatically deleted after 24 hours.
  • Event logs (internal system logs): automatically deleted after 30 days.
  • Book content (generated chapters, profile): retained for the lifetime of your order to enable re-downloads and support.
  • Customer details (email, name, phone, address): retained alongside your order record for fulfilment and support.
  • Stripe payment references: retained indefinitely for transaction records (we store only reference IDs, not card numbers).

You may request deletion of your personal information at any time (see ‘Your Rights’ below).

Third-Party Services

We use the following third-party service providers to deliver our service. Each provider processes your data only as necessary to perform their specific function:

  • Stripe (stripe.com) — payment processing. Stripe handles all card details directly; we never see or store your card number. Stripe is PCI DSS compliant.
  • Lulu (lulu.com) — print-on-demand manufacturing and shipping for physical book orders. Lulu receives your shipping address and book files.
  • Resend (resend.com) — transactional email delivery. Resend processes your email address and name to deliver order-related emails.
  • Google Gemini (Gemini API Terms) — AI text and image generation. Google processes your text inputs and optional photo to generate book content.
  • Convex (convex.dev) — backend database and authentication. Convex stores your account and order data.
  • Vercel (vercel.com) — website hosting and content delivery. Vercel serves the website and processes HTTP requests.

These providers are based in the United States. Your personal information may be transferred to and stored in the US. We take reasonable steps to ensure these providers handle your information securely and in accordance with this policy.

Your Rights

Under the Australian Privacy Principles, you have the right to:

  • Request access to the personal information we hold about you.
  • Request correction of any inaccurate, out-of-date, or incomplete information.
  • Request deletion of your personal information (subject to any legal obligations to retain certain records).

To exercise any of these rights, contact us at support@bookofyou.com.au with your request and the email address associated with your order. We will respond within 30 days.

Disclosure of Personal Information

We do not sell, rent, or trade your personal information.

We may disclose your information to the third-party service providers listed above, solely for the purpose of providing the service.

We may disclose your information if required by law, regulation, or legal process.

Security

We take reasonable steps to protect your personal information from misuse, loss, unauthorised access, modification, or disclosure.

Storage URLs for digital downloads are time-limited. Keep your download link private.

Payment information is handled directly by Stripe, which is PCI DSS Level 1 certified.

Complaints

If you believe we have breached the Australian Privacy Principles or have a complaint about how we handle your personal information, please contact us at support@bookofyou.com.au.

We will investigate your complaint and respond within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be posted on this page with a revised ‘Last updated’ date.

We encourage you to review this page periodically.

Contact

Questions about privacy can be sent to support@bookofyou.com.au.

Also see our Terms of Service and Contact & Support pages.