NovelLens

Effective Date: 09/04/2025

Version: 1.1

Developer: Allans Vaikulis

Contact Email: [email protected]

1. Introduction

Welcome to NovelLens, a smart book recommendation app. Your privacy is important

to us, and this Privacy Policy explains how we collect, use, store, and protect your

information. By using NovelLens, you consent to the collection and processing of your

data as outlined in this Privacy Policy.

If you use Google Sign-In, your account authentication is handled by Google, and your

data is subject to Google’s Privacy Policy, which you can review here:

Google Privacy Policy

2. Ethical Approval

This study and application has been reviewed and approved under the University of

Southampton’s Ethical Research Governance Oice (ERGO):

• Primary Data Collection: ERGO 100870

• Secondary Data (External Sources): ERGO 100407

If you have concerns regarding the ethical aspects of this project, please contact:

University of Southampton Research Ethics and Governance

Phone: +44 (0)23 8059 5058

Email: rgoinf[email protected].uk

3. Data We Collect

3.1. Personal Data

• Google Sign-In Data: A unique identier (SUB ID) is collected when you sign in

with Google. Google does not share your email address, name, or other personal

details with NovelLens.

• Username: A system-generated username is assigned to you (users cannot

create custom usernames at the moment).

• Device Metadata: Android ID and device model are collected to ensure security

and prevent abuse.

• Consent Data & Digital Fingerprint:

o The overall agreement to the Consent Form is logged, which includes

acceptance of:

▪ Participant Information Sheet

▪ Privacy Policy

▪ Terms of Service

▪ Consent Form itself

o A digital ngerprint is generated at the moment of consent, containing:

▪ Timestamp (date and time of agreement)

▪ Device ID (Android ID)

▪ Device Model

▪ System-Generated User ID

o This ngerprint is securely linked to the user’s account and used to

generate a digitally lled-in Consent Form.

o Users may download a copy of their digitally completed Consent Form:

▪ Immediately after agreeing to the Consent Form during sign-up.

▪ At any time from the Prole Settings page.

3.2. Interaction Data

• Usage Data: Button clicks, interactions with input boxes, dropdowns, togglers,

and books.

• Activity Tracking: Time spent on various app screens, timestamps of

interactions, and session persistence logs.

This is transmitted to improve recommendations and for purposes of evaluation of

success of the application throughout the study.

3.2.1 API Logging

• We log API requests to prevent misuse and ensure service integrity.

• App Version: The version of the NovelLens app you are using is included in API

requests to ensure compatibility, evaluate feature adoption, and monitor for

security vulnerabilities.

Logged API data is retained for 30 days unless legal obligations require longer

retention.

3.3. Feedback & Reviews

• Google Play Store Reviews: Publicly available reviews (including ratings and

usernames) may be analysed directly on the Play Store. If required for further

analysis, reviews may be temporarily stored, processed, and anonymised.

• In-App Feedback: Users may voluntarily provide feedback within the

application. If a user selects the "Hide Username" option, their feedback will be

fully anonymised, ensuring that no username is associated with their

submission.

• In-App Book Reviews: Users may voluntarily submit ratings and reviews for

books within the NovelLens app. These reviews are collected to enhance future

book recommendations and improve thes overall user experience.

• Closed-Beta Expert Feedback: Invited participants, such as user design

experts, may optionally waive anonymity via a consent form during sign-up. This

is entirely voluntary, and those who prefer to remain anonymous can still

participate fully. Consent can be withdrawn at any time by emailing

[email protected].uk, after which identity will be anonymised or data removed

upon request.

Feedback and reviews are collected to evaluate the application and the study,

improve future recommendations, and enhance the overall user experience.

3.4. Third-Party Data

• Google SUB ID: Used for authentication when signing in with Google.

• Book Metadata: Book information retrieved from external sources to ensure

completeness and accuracy, which may also be suggested manually by users

within the app.

• Public Interaction Data: We process anonymised public interaction data (e.g.,

book reviews, reading lists) from third-party sources under the UK TDM

Exception. This data is transformed to prevent linkage to individuals or

copyrighted content and used solely for recommendations.

For more information on how Google processes your data when using Google Sign-In,

refer to:

Google Privacy Policy

4. Data Retention & Deletion

• Personal Data: Retained until 31 August 2025, after which it will be securely

deleted.

• Anonymised Data for Research: Retained securely for 10 years as per the

University of Southampton’s ethics policies.

Data may be retained beyond stated periods only if required by law, such as legal

investigations or regulatory obligations.

Managing Your Data (Available in Prole Settings)

. Data Access Requests – Users can request access to stored account data.

2. Data Correction Requests – Since the app does not store any personal data, there is no Profile

Settings option for data corrections. However, if you believe any information is inaccurate or if personal

data is being stored elsewhere, please contact [email protected] for assistance.

3. Account Closure & Data Deletion Requests – Users can request deletion of their data.

If in-app options do not work, users may contact:

[email protected].uk

5. Data Security

• Encryption: All personal data is transmitted using HTTPS and stored on

encrypted servers.

• Access Control: Raw data access is restricted to the developer and, if

necessary, the project supervisor.

Google Privacy Policy applies to authentication.

6. Local Data Storage & Tracking

For its web app, NovelLens stores the data listed below using cookies; however, on its Android/iOS

apps, cookies are not used—instead, the data is securely stored by alternative means.

• Cached Book Data – Books that you have viewed or interacted with.

• User Session Token – Keeps you logged in, expires two weeks after last use, and

refreshes once per day when the app is opened.

• Cached Public User Data (Your Own Data Only) – Stored only on your device for

performance improvements and never cached on another user’s device.

Managing Cached Data

• Clearing Cache – No in-app option to clear cache. Users must do so via system

settings.

• Convenience Shortcut – A button in Profile Settings links to the system cache

clearing page on Android only.

7. External Links & Third-Party Content

NovelLens provides links to external sources to ensure transparency regarding where

book metadata was collected. However, these links do not constitute an endorsement,

ailiation, or approval of these external sites.

By clicking on an external link, users acknowledge they are leaving the NovelLens app

and that their interactions will be subject to the external site's terms of service, privacy

policies, and data practices.

Google Privacy Policy

8. Governing Law

This Privacy Policy is governed by UK GDPR and the Data Protection Act 2018.

9. Age Restrictions

• NovelLens is prohibited for users under 18. We do not knowingly collect data

from minors. If underage usage is detected, accounts will be terminated

immediately, and associated data deleted as per our retention policy.

10. Contact Information

Developer: Allans Vaikulis

Email: av4g21@soton.ac.uk

Project Supervisor: Dr. B. Rastegari

Email: B.Rastegari@soton.ac.uk

University of Southampton Research Ethics and Governance

Phone: +44 (0)23 8059 5058

Email: rgoinf[email protected].uk