Why Your Reading Data Deserves the Same Privacy as Your Photos

When Apple introduced end-to-end encryption for iCloud Photos, most people understood why. Photos are personal. They capture private moments, family memories, and things we'd never want strangers to see.

But here's a question: Is your reading history any less personal?

Consider what your reading choices reveal: the self-help book you read after a breakup, the pregnancy guide you browsed before telling anyone, the career change books you're hiding from your employer, the health topics you've researched, the political perspectives you've explored.

Your bookshelf — physical or digital — is a map of your inner life. And most people give it away without thinking.

What Your Reading History Reveals

Health Concerns

Reading about cancer? Diabetes? Mental health conditions? Addiction? These searches and book purchases create a detailed health profile that insurance companies, employers, and data brokers would find valuable.

Medical information is protected by law when it comes from your doctor. But the same information derived from your reading habits has almost no protection.

Relationships

Books about divorce, infidelity, relationship problems, or dating after loss tell a story. So do parenting books, books about dealing with difficult family members, or guides to leaving abusive relationships.

This information reveals vulnerabilities that could be exploited by bad actors or simply embarrass you if exposed.

Financial Situation

Books about debt, bankruptcy, getting out of poverty, or managing money problems indicate financial stress. Conversely, books about investing, wealth building, or tax strategies reveal financial ambitions.

Political and Religious Views

Your reading choices show what you believe, what you question, and what you're exploring. In some contexts, this information could affect job prospects, relationships, or even safety.

Professional Ambitions

Reading about career changes, negotiation, leadership, or specific industries signals your professional plans — potentially before you're ready to share them with current employers.

Personal Struggles

Self-help books, therapy workbooks, addiction recovery literature, grief guides — these reveal the most vulnerable aspects of human experience.

The Data Trail You're Leaving

Every time you use a typical book tracking app, you're creating records:

What's captured:

• Every book you add
• When you add it
• How long you spend reading
• Your ratings and reviews
• Your reading patterns (time of day, frequency)
• Your shelves and organization
• Your goals and progress

Where it goes:

• The app company's servers
• Analytics providers
• Cloud storage services
• Potentially: advertising partners, data brokers, acquirers

Who can access it:

• Company employees (with varying access controls)
• Law enforcement with warrants or subpoenas
• Hackers if there's a breach
• Future owners if the company is sold
• Potentially: anyone the company shares data with

Most apps claim they "respect your privacy." But respecting privacy and architecturally protecting it are very different things.

"We Don't Sell Your Data" Doesn't Mean Much

Companies love to say "we don't sell your data." But this statement is often technically true while being practically meaningless:

Data sharing vs. data selling: Companies can share data with partners without technically "selling" it. The result for your privacy is the same.

Aggregated data: Your individual reading history might be "anonymized" and sold as part of aggregated insights. But reading patterns are highly individual — aggregation doesn't always protect identity.

Service providers: Your data often passes through multiple third-party services (hosting, analytics, AI processing) even if it's not "sold."

Acquisition: When a company is bought, your data goes with it. The new owner's privacy policy may differ significantly.

Policy changes: Privacy policies change. The promises made when you signed up may not apply forever.

The only way to truly protect your reading data is to never give it to companies in the first place.

The Goodreads Problem

Goodreads is owned by Amazon — one of the world's most sophisticated data companies. Every book you track on Goodreads feeds into Amazon's vast data operation.

What Amazon knows about Goodreads users:

• Complete reading history
• Books you want to read
• Your ratings and preferences
• How quickly you read
• When you read
• Your reviews and highlights

How this data might be used:

• Targeted advertising
• Recommendation algorithms
• Market research
• Price optimization
• Third-party data licensing

Amazon's business model is built on using data to sell more effectively. Your Goodreads data isn't sitting in isolation — it's part of a comprehensive profile that includes your purchases, browsing history, Alexa interactions, and more.

For some readers, this is acceptable. For others, it feels like surveillance of something deeply personal.

Cloud AI Makes Privacy Harder

Many book apps now offer AI-powered recommendations. Here's how most of them work:

1. You request recommendations
2. Your reading history is sent to a server
3. The server sends your data to an AI service (OpenAI, Google, etc.)
4. The AI analyzes your history and generates recommendations
5. Results come back to you

At minimum, your complete reading history passes through:

• The app's servers
• The AI provider's servers
• Various network infrastructure

Each step is a potential point of exposure. AI providers may use your data for training. Server breaches could expose your history. Legal requests could compel disclosure.

Even if you trust the app company, you're also trusting every service they use.

What Privacy-First Architecture Looks Like

True reading privacy requires architecture designed for protection — not just policies promising protection.

Local-first storage: Your books and reading data should stay on your devices. Cloud sync should use your personal encrypted storage (like iCloud), not company servers.

On-device AI: AI recommendations should run locally on your device, not require sending your data to cloud services.

End-to-end encryption: If any data touches company infrastructure, it should be encrypted with keys only you possess.

No analytics on content: Companies should be able to track app usage without tracking what you're reading.

Data portability: You should be able to export all your data at any time.

Transparent architecture: The technical design should be documented and verifiable, not just promised in marketing copy.

The Argument Against Privacy

Some people argue that privacy for book tracking doesn't matter:

"I have nothing to hide." Really? You'd be comfortable if your employer, your ex, your parents, and random internet strangers could see every book you've ever read?

"I get better recommendations with more data." True, but you can get good recommendations with data that stays on your device. Local AI has gotten remarkably capable.

"It's just books." Books reveal your thoughts, fears, interests, beliefs, and aspirations. There's no "just" about it.

"I already use Amazon/Google/etc." Using some services doesn't mean you should surrender all privacy. Every boundary you maintain matters.

Privacy isn't about having something to hide. It's about maintaining autonomy over your inner life.

Practical Steps for Reading Privacy

Audit Your Current Tools

What book tracking app do you use? Where does your data go? Read the privacy policy — actually read it. Search for "[app name] privacy" and see what others have found.

Export Your Data

Whatever app you use, export your data regularly. You should have your own copy of your reading history that doesn't depend on any service continuing to exist.

Consider Architecture, Not Just Policy

Look for apps that are technically designed for privacy — local storage, on-device AI, end-to-end encryption. Policies can change; architecture is harder to reverse.

Separate Sensitive Reading

If you're not ready to switch apps entirely, at least track sensitive books separately. Keep a private list that never touches cloud services.

Think Before Sharing

Public reviews, social reading features, and shared shelves are opt-in. Think about what you're comfortable making public.

The Broader Context

We're increasingly aware of data privacy in other contexts. We use encrypted messaging apps, worry about social media tracking, and question smart speaker privacy.

Reading deserves the same consideration. What we read is as personal as what we say, what we search, and what we photograph.

The difference is that reading data has been collected for years with little scrutiny. Services like Goodreads normalized the idea that a company should have your complete reading history.

It doesn't have to be this way.

Your Reading Life, Your Data

Reading is one of the most intimate activities we do. We read to learn, to escape, to process emotions, to grow. The books we choose reveal the journey of our lives.

That journey belongs to you. Not to Amazon. Not to data brokers. Not to anyone else.

Privacy isn't paranoia — it's appropriate boundaries around something personal. Your photos deserve encryption. Your messages deserve encryption. Your reading history deserves the same respect.

---

Leaflet: Privacy by Design

Leaflet was built on a simple principle: your reading history should stay yours.

How we protect your privacy:

• Your iCloud, not our servers: Books are stored in CloudKit's private database, encrypted with keys only you possess. We literally cannot see what you're reading.

• On-device AI: Recommendations run entirely on your iPhone using Apple's Foundation Models. Your reading history never leaves your device for AI processing.

• No analytics on reading content: We track app performance, not your books. We don't know if you're reading romance or political theory.

• Full data export: Your data is always yours. Export everything anytime.

We can't sell what we don't have. We can't breach what we never stored. We can't comply with subpoenas for data we never possessed.

Your bookshelf. Your privacy. No compromises.

Download Leaflet — Private book tracking.