Privacy Policy

Last updated: 30 May 2026

Panevio, MB (company code 307646980, "we", "us", "our") operates PigeonReader. This Privacy Policy explains how we collect, use, and protect your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable laws.

1. Data Controller

Panevio, MB
Company code: 307646980
Email: info@panevio.com

2. Data We Collect

• Account data: email address, hashed password, language preference, registration date.
• Authentication data: session tokens, OAuth tokens (if signing in via Google).
• Profile data: profile avatar (selected from built-in options or uploaded by you).
• Usage data: article and magazine metadata (titles, authors, source URLs), delivery status, usage counters, subscription and billing data.
• Content data: article text, cover images, audio files, and other content you submit or import.
• Inbox data: emails received at your personal PigeonReader inbox address.
• Support data: messages and contact details you submit via the Contact or support form.
• Technical data: IP address (for security and rate-limiting), browser/device type, error logs.

3. How We Use Your Data

• To create and maintain your account and verify your identity.
• To fetch, process, and deliver content to your configured Kindle or email address.
• To provide AI-powered features (title generation, article formatting, cover image generation, audio overview).
• To display your profile avatar across the Service.
• To send transactional emails (account verification, password reset, PIN confirmation, delivery notifications).
• To respond to your support requests and contact form submissions.
• To enforce usage limits and prevent abuse.
• To moderate content and investigate reports of inappropriate content.
• To maintain security, diagnose technical issues, and improve the Service.

4. Legal Basis (GDPR)

• Contract performance — processing necessary to provide the Service you requested (Art. 6(1)(b)).
• Legitimate interests — security, fraud prevention, content moderation, reliability, and product improvement (Art. 6(1)(f)).
• Legal obligation — where required by applicable law (Art. 6(1)(c)).
• Consent — for optional features where you have explicitly agreed (Art. 6(1)(a)).

5. Data Retention

We retain your personal data for as long as your account is active. When you delete your account, your personal data and all associated content are permanently deleted within 30 days, except where retention is required by law.

6. Sharing and Disclosure

We do not sell, rent, or trade your personal data. We share data only with:

• Infrastructure providers — hosting, database, and email delivery services required to operate the Service.
• AI subprocessors — AI service providers (e.g. OpenAI) solely to process content for AI features you activate.
• Legal authorities — when required by law or to protect the rights and safety of users.

7. International Transfers

Your data may be processed outside the European Economic Area (EEA) by subprocessors such as AI providers. Where such transfers occur, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses under GDPR.

8. Security

We apply appropriate technical and organisational measures including password hashing, TLS encryption, and access controls. No online service can guarantee absolute security.

9. Your Rights

Under GDPR you have the right to:

• Access — obtain a copy of your personal data.
• Rectification — correct inaccurate or incomplete data.
• Erasure — request deletion of your data ("right to be forgotten").
• Restriction — request that we limit processing of your data.
• Portability — receive your data in a structured, machine-readable format.
• Objection — object to processing based on legitimate interests.
• Withdraw consent — withdraw consent at any time where processing is based on consent.

To exercise these rights, contact us at info@panevio.com. We will respond within 30 days. You also have the right to file a complaint with the State Data Protection Inspectorate of Lithuania (www.ada.lt).

10. Cookies

We use only session cookies strictly necessary for authentication. We do not use advertising or cross-site tracking cookies.

11. Children's Privacy

The Service is not directed at persons under 18. We do not knowingly collect personal data from minors. If you believe a minor has provided us with data, contact us and we will delete it promptly.

12. Changes to This Policy

We may update this Policy from time to time. Material changes will be communicated via the Service or by email at least 30 days before they take effect.

13. Contact

Panevio, MB
Company code: 307646980
Email: info@panevio.com