Privacy Policy

This policy explains what information Bookmarks App collects, why we collect it, who we share it with, and the controls you have over your data.

Last updated: July 5, 2026

1. Who we are

Bookmarks App(“we”, “us”, the “Service”) is a personal bookmark manager operated by Aditya Kar. This policy applies to the website and app available at our domain. It does not cover third-party websites you bookmark or links you follow from the Service.

2. Information we collect

Account information

When you sign up, our authentication provider (Clerk) collects and stores your name, email address, and login credentials. We receive a reference to your account (a user ID, name, and email) so we can associate your data with you. We never see or store your password.

Content you create

We store the bookmarks and collections you save — including link titles, URLs, descriptions, collection names, colors, icons, and your appearance and layout preferences. Bookmark titles, URLs, and descriptions are encrypted at rest in our database.

AI assistant usage

When you use AI-assisted saving or the AI assistant, we keep a simple per-day counter to enforce fair-use rate limits. The content you submit (such as a link or a question) is processed as described in Section 5.

Technical and usage data

Like most websites, we and our providers automatically receive standard technical data — such as your IP address, browser type, device, and pages visited — for security, analytics, and to keep the Service running. See our Cookie Policy for details on cookies and analytics.

3. How we use your information

  • To provide the Service — saving, organizing, and syncing your bookmarks across your devices.
  • To authenticate you and keep your account secure.
  • To generate optional AI descriptions and power the AI assistant when you use those features.
  • To fetch and cache brand icons for the links you save.
  • To understand aggregate usage and improve the product.
  • To detect, prevent, and address abuse, fraud, or technical issues.
  • To comply with legal obligations.

4. Legal bases for processing

Where applicable law (such as the EU/UK GDPR) requires it, we process your data on the basis of: performance of a contract (providing the Service you signed up for), our legitimate interests (securing, maintaining, and improving the Service), your consent (for non-essential analytics cookies, where required), and compliance with legal obligations.

5. Third-party service providers

We rely on the following processors to operate the Service. Each receives only the data needed for its function, and each maintains its own privacy policy:

  • Clerk — authentication and account management (your name, email, and login credentials).
  • Vercel — application hosting and privacy-friendly analytics.
  • PostgreSQL database hosting — stores your account, bookmarks, and collections (sensitive fields encrypted at rest).
  • Microsoft Azure Blob Storage — caches brand/site icons for saved links.
  • OpenAI — processes the text you submit to generate AI descriptions and assistant responses. Data is sent only when you use these features.
  • Brandfetch and Google’s favicon service — receive the hostname of a link so we can fetch its icon.
  • Google Analytics — aggregate usage measurement.

We do not sell your personal data, and we do not share it with advertisers.

6. AI processing

AI features are optional and run only when you invoke them. When you do, the relevant text (for example, a link or your question) is sent to OpenAI to produce a response. We do not use your content to train our own models. Please review OpenAI’s policies for how they handle API data.

7. Data retention and deletion

We keep your data for as long as your account is active. Deleting a bookmark first moves it to a recycle bin (soft delete) so you can restore it; emptying the bin removes it. You can request deletion of your account and associated data at any time by contacting us at adi.kar@adiportfolio.com. When you delete your account, we remove your personal data, subject to any retention required by law.

8. Data portability

You can export your bookmarks from within the app at any time, giving you a portable copy of your content.

9. Security

We take reasonable measures to protect your data, including encryption in transit (HTTPS) and encryption at rest for sensitive bookmark fields. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

10. International transfers

Our providers may process and store data in countries other than yours, including the United States. Where required, transfers are protected by appropriate safeguards such as Standard Contractual Clauses.

11. Your rights

Depending on where you live, you may have the right to access, correct, export, or delete your personal data, to object to or restrict certain processing, and to withdraw consent. To exercise any of these rights, contact us at adi.kar@adiportfolio.com. You also have the right to lodge a complaint with your local data protection authority.

12. Children’s privacy

The Service is not intended for children under 13 (or the minimum age of digital consent in your country). We do not knowingly collect data from children. If you believe a child has provided us data, contact us and we will delete it.

13. Changes to this policy

We may update this policy from time to time. When we do, we will revise the “Last updated” date above and, for material changes, take reasonable steps to notify you.

14. Contact us

For any privacy questions or requests, email us at adi.kar@adiportfolio.com.

Questions about this document or how your data is handled? Reach us at adi.kar@adiportfolio.com.