dockd a reader Join the beta
Privacy · plain English

Privacy Policy

Dockd is a reader. We store the things you save, the highlights you make, and enough about your account to keep it running. This page tells you what we collect, who else touches it, and what you can do about it.

Effective May 21, 2026 Last updated May 21, 2026

1. Who we are

Dockd ("Dockd," "we," "us") is the operator of the Dockd reader at dockd.io and the Dockd iOS app, browser extensions, and related services (together, the "Service"). For questions about this policy, email support@dockd.io.

2. What we collect

We collect only what we need to run the Service:

  • Account info. An email address, a username, a display name, and an optional bio and avatar. If you sign in with Apple or Google, we get whatever those providers return — typically an email and a stable identifier.
  • Content you save. The URLs you save, the article text we fetch from those URLs, your highlights and margin notes, your lists, the feeds you follow, and the things you share into teams you belong to.
  • Reader state. Read/unread flags, your daily Signal, reading streaks, and other usage signals we use to rank and surface the next thing for you to read.
  • Device info. Basic technical metadata — IP address, user agent, app version — captured in standard server logs and kept for a short window for security and debugging.
  • Push tokens. If you opt in to notifications on iOS, we store the Apple Push Notification token for your device so we can deliver pushes you've asked for.
  • Payment metadata. If you subscribe, we store your subscription status and a customer identifier issued by our payment processor. We do not store your card number, CVC, or bank details — those live with Stripe (web) or Apple (in‑app purchases).

3. What we don't collect

We don't run third‑party advertising trackers. We don't sell your data. We don't build advertising profiles. We don't read your inbox, your calendar, your contacts, your camera roll, or anything else outside the Service.

4. How we use it

  • To deliver the Service — saving, reading, ranking, sharing.
  • To produce your Daily Signal and on‑demand AI features (summaries, ask‑the‑article, tags).
  • To send transactional email and, if you opt in, push notifications.
  • To prevent abuse, debug problems, and keep the Service running.
  • To comply with the law when we're required to.

5. Who else touches your data

We use a small set of third parties ("subprocessors") to actually run the Service. They process your data on our behalf, under their own privacy commitments.

  • Supabase — hosts our database and handles authentication. Your account record, saves, highlights, and lists live here.
  • OpenAI — generates the Daily Signal, summaries, tags, and answers in ask‑the‑article. The article text and a small amount of user context (your interests paragraph, the article you're asking about) are sent to OpenAI to produce that output. We don't permit OpenAI to use this data to train their models.
  • Apple Push Notification service (APNs) — delivers iOS push notifications you've opted in to.
  • Stripe — processes web subscription payments. Card data is collected by Stripe directly; we never see it.
  • Apple In‑App Purchase — processes iOS subscription payments. Apple collects payment information under Apple's policies; we receive only the subscription status.
  • Apple and Google sign‑in — if you choose those providers to authenticate, they handle the credential exchange and tell us a stable identifier and (usually) an email address.
  • Cloud hosting and email delivery — standard infrastructure providers that run our servers and send transactional email.

We'll update this list when it changes. We'll also disclose data when the law requires it (a valid subpoena, court order, or equivalent legal process), and we'll push back on overbroad requests when we can.

6. Public content

Some things you do on Dockd are intentionally public — your @handle profile, lists you mark public, and your public‑profile stats if you've turned them on. Anyone on the internet can read those, and search engines may index them. You control what's public from Settings.

7. Retention

We keep your account data while your account is active. When you delete your account, we delete your saves, highlights, lists, and profile within thirty days, except for a small set of records we're required to keep for tax, fraud, or legal reasons (e.g., payment receipts). Backups roll off on a normal cycle. Server logs are retained for a short window and then discarded.

8. Your choices

  • Access. Email support@dockd.io and we'll send you a copy of the personal data we hold about you.
  • Correction. Edit your profile from Settings, or email us.
  • Deletion. Delete your account from Settings. You can also email us and we'll do it.
  • Opt out of pushes. Turn off notifications on the device or in iOS Settings → Notifications → Dockd.

Residents of California, the EU, the UK, and other places with specific privacy laws may have additional rights (to portability, to object to processing, to lodge a complaint with a regulator). Email us and we'll honor them.

9. Security

Data is transmitted over HTTPS and stored on managed infrastructure with access limited to the people who need it to run the Service. We're a small team running a young product — no system is perfectly secure. If you spot a vulnerability, please email support@dockd.io.

10. Children

Dockd isn't intended for anyone under 13. If you believe a child has given us personal data, email us and we'll delete it.

11. International users

Dockd is operated from the United States. If you use the Service from elsewhere, your data will be transferred to and processed in the U.S. By using the Service you consent to that transfer.

12. Changes

We may update this policy. If we make material changes we'll tell you in‑app or by email before they take effect. The date at the top of this page is the current effective date.

13. Contact

support@dockd.io