Skip to main content
Built&Written
Log inWrite a Bestseller

Privacy Policy

Last updated: May 2026

Information We Collect

We collect information you provide directly to us, including:

  • Account information (name, email address)
  • Payment information (processed securely through Stripe)
  • Content you upload or create using our service
  • Communications with our support team

How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process transactions and send related information
  • Send you technical notices, updates, and support messages
  • Respond to your comments, questions, and requests

Cookies & Tracking

We use cookies and similar technologies to operate the site, measure how visitors use it, and (where appropriate) measure advertising effectiveness. We group them in three categories:

Essential

Required for the site to function — authentication sessions, fraud prevention, load balancing, and remembering your cookie choices. Cannot be turned off.

Analytics

Help us understand how visitors use the product so we can improve it. Providers: Google Analytics 4 and Google Tag Manager.

Marketing

Help us measure and optimize ad campaigns. Providers: Meta (Facebook) Pixel, LinkedIn Insight Tag, and Reddit Pixel.

Visitors in the EU, EEA, and UK. Analytics and marketing cookies are off by default and only load after you grant consent in our cookie banner. Legal basis: consent under GDPR Art. 6(1)(a) and the ePrivacy Directive (UK PECR Reg. 6). You can change or withdraw consent any time from the "Cookies" link in the footer.

Visitors elsewhere. Analytics and marketing cookies are enabled by default. You can opt out or customize your preferences at any time from the cookie banner or the "Cookies" link in the footer. See the section below for opt-out rights under US state privacy laws.

Do Not Sell or Share My Personal Information

Under the California Consumer Privacy Act (CCPA / CPRA) and similar laws in Colorado, Connecticut, Virginia, Utah, and other US states, the use of advertising pixels (Meta, LinkedIn, Reddit) may qualify as "sharing" of personal information for cross-context behavioral advertising. You have the right to opt out.

Global Privacy Control (GPC). We automatically honor the GPC browser signal (Sec-GPC: 1). If your browser sends GPC, marketing pixels will not fire for your visit, and we will not share your data with advertising partners — no banner click required.

Manual opt-out. You can also opt out at any time by emailing support@builtwritten.com with the subject line "Do Not Sell or Share". We will honor the request within 15 business days as required by the CCPA.

Data Security

We implement appropriate security measures to protect your personal information. All payment transactions are processed through Stripe and are encrypted using industry-standard protocols. We do not store your payment card details on our servers.

Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. You may request deletion of your account and associated data by emailing support@builtwritten.com.

Third-Party Services

We use third-party services to help operate our platform. These services have their own privacy policies governing how they use your information.

  • Stripe — payment processing.
  • Supabase — authentication and database hosting.
  • Vercel — application hosting and CDN.
  • AI providers — content and cover generation. We use OpenAI, Anthropic, and Google as model providers under their respective enterprise/API terms (no training on customer data).
  • Google Analytics 4 & Tag Manager — analytics (analytics cookie category).
  • Meta (Facebook) Pixel — ad measurement (marketing cookie category).
  • LinkedIn Insight Tag — ad measurement (marketing cookie category).
  • Reddit Pixel — ad measurement (marketing cookie category).

MCP & AI Assistant Connectors

Built&Written exposes a remote Model Context Protocol (MCP) server at mcp.builtwritten.com/mcp so AI assistants such as Claude (via Anthropic Connectors), Cursor, Cline, and Continue.dev can read and modify your books on your behalf. When you connect Built&Written to one of these assistants:

  • Authentication uses OAuth 2.0 or a personal API key you generate at Settings → API Keys. Tokens are hashed at rest and never logged in plaintext.
  • Each call from the assistant is logged with the tool name, timestamp, and HTTP status. You can review activity at Settings → Connected Apps and revoke access at any time.
  • When you invoke a tool from Claude, Cursor, or another assistant, the request and any returned book data (titles, chapter text, cover previews) are processed by that assistant's provider (e.g. Anthropic for Claude). The provider's privacy policy governs how it handles that data.
  • Built&Written's MCP server does not access, query, or extract data from the assistant's chat memory, conversation history, or user-uploaded files — only the parameters explicitly sent to each tool call.
  • The server does not perform financial transactions and does not collect conversation data for advertising or model training.

Contact Us

If you have any questions about this Privacy Policy, please email support@builtwritten.com.