Privacy Policy for Alexandria
Last Updated: November 19, 2025
Introduction
Alexandria (“we”, “our”, or “the app”) is a mobile application that allows users to access and stream content from their personal Audiobookshelf and Kavita servers. This privacy policy explains how we handle your information.
Alexandria collects and stores the following information locally on your device:
- Server Connection Details: URLs of your Audiobookshelf and Kavita servers
- Authentication Credentials: Usernames, passwords, API keys, and authentication tokens
- Playback Progress: Current position in audiobooks and reading progress in comics/manga
- Bookmarks: User-created bookmarks in audiobooks
- App Preferences: Settings and configuration choices
- We do NOT collect, transmit, or store any of your data on our servers
- We do NOT track your usage or behavior
- We do NOT share your information with third parties
- We do NOT use analytics or advertising services
- We do NOT have access to your personal servers or content
All information is stored locally on your device using secure storage mechanisms:
- Encrypted Storage: Sensitive credentials (passwords, tokens, API keys) are stored using platform-specific secure storage:
- Android: EncryptedSharedPreferences (AES-256 encryption)
- iOS: Keychain Services
- Local Storage: Non-sensitive data (server URLs, usernames) is stored in local preferences
- No Cloud Backup: Credentials are excluded from device backups for security
Data Usage
Your information is used solely to:
- Connect to your personal Audiobookshelf and Kavita servers
- Authenticate with your servers using your credentials
- Stream and download content from your servers
- Track playback progress and bookmarks locally
- Provide a seamless user experience
Data Sharing and Disclosure
We do not share your data with anyone. Your information is:
- Stored only on your personal device
- Transmitted only directly to the servers YOU configure
- Never sent to our servers or third-party services
- Never sold, rented, or shared
The only data transmission occurs between:
- Your device ↔ Your Audiobookshelf server
- Your device ↔ Your Kavita server
Data Security
We implement several security measures:
- Encrypted Credential Storage: All passwords, tokens, and API keys are encrypted using platform-specific secure storage
- HTTPS Enforcement: The app encourages HTTPS connections (warns about HTTP)
- No Third-Party Services: No analytics, crash reporting, or advertising SDKs
- Local-Only Processing: All data processing happens on your device
Your Data Rights
Since all data is stored locally on your device, you have complete control:
- Access: View all stored data in the app settings
- Deletion: Clear all data using “Clear Settings” in the app
- Export: Your data never leaves your device
- Portability: Uninstalling the app removes all data
Children’s Privacy
Alexandria does not collect any personal information from anyone, including children under 13. The app acts only as a client to access your personal servers.
Third-Party Servers
Alexandria connects to servers that YOU configure:
- Your Responsibility: You are responsible for the privacy practices of your own servers
- Not Our Servers: We do not operate, control, or have access to your Audiobookshelf or Kavita servers
- Server Privacy: Please review the privacy policies of Audiobookshelf and Kavita if running these servers
Changes to This Privacy Policy
We may update this privacy policy from time to time. We will notify you of any changes by:
- Posting the new privacy policy on this page
- Updating the “Last Updated” date
- Notifying users within the app (for significant changes)
Data Retention
- Local Storage: Data is retained until you delete it or uninstall the app
- No Server Storage: We do not retain any data on servers
Permissions
Alexandria requests the following permissions:
Android
- INTERNET: Required to connect to your servers and stream content
iOS
- Network Access: Required to connect to your servers and stream content
We do not request any other permissions (no location, contacts, camera, etc.).
If you have questions about this privacy policy or how Alexandria handles your information, please contact us at:
Email: stoutservers@gmail.com
Legal Compliance
This privacy policy complies with:
- General Data Protection Regulation (GDPR)
- California Consumer Privacy Act (CCPA)
- Google Play Store privacy requirements
- Apple App Store privacy requirements
Summary
In Plain English:
- Alexandria is a client app that connects to YOUR servers
- All your data stays on YOUR device and YOUR servers
- We don’t collect, store, or share anything
- You have complete control over your data
- Sensitive information is encrypted on your device
App Store Data Safety Declarations
Google Play Data Safety
Data Collection: YES (locally only)
| Data Type |
Collected |
Shared |
Purpose |
Location |
| Server URLs |
Yes |
No |
Authentication |
Device only |
| Usernames |
Yes |
No |
Authentication |
Device only |
| Passwords |
Yes |
No |
Authentication |
Device only (encrypted) |
| Auth Tokens |
Yes |
No |
Authentication |
Device only (encrypted) |
| Progress Data |
Yes |
No |
User Experience |
Device only |
Security Practices:
- ✅ Data is encrypted in transit (HTTPS)
- ✅ You can request data deletion
- ✅ Data is not shared with third parties
- ✅ Committed to privacy standards
Apple App Store Privacy Nutrition Label
Data Not Collected
- We do not collect data linked to the user’s identity
- We do not collect data used to track the user
Data Stored Locally Only
- Server configuration (not linked to identity)
- Authentication credentials (encrypted, not shared)
- Playback progress (not linked to identity, not shared)
Last Reviewed: November 19, 2025
Version: 1.0