Privacy policy

Nobody’s looking over your shoulder

Last updated: 25 May 2026. Lectern is published by Hofstack. This policy explains what data the app handles and what, if anything, leaves your device.

Summary

Lectern has no developer servers, no user accounts, no ads, and no analytics or tracking SDKs. Your library and reading data stay on your device. Nothing is sent to us. Some features can optionally use the internet, and when you use them, data goes only to the server you choose — never to us.

Who we are

Lectern is developed and published by Hofstack. Contact for privacy questions: info@hofstack.nl.

Information stored on your device

The following is stored locally and is not transmitted to us (we operate no servers and have no way to receive it):

  • Library data — books are read from folders you select; the app stores metadata such as titles, authors, cover images and file references in a local database.
  • Reading data — reading progress, bookmarks, highlights, notes, ratings, reviews, and reading-time statistics.
  • Preferences — display, font, theme, audio and language settings, and a randomly generated identifier used only to name your own sync file.

This local data may be included in Android’s standard system backup (for example Google’s cloud backup or device-to-device transfer) if you have that feature enabled in your Android settings. That backup is operated by Android and Google under their terms, not by Lectern.

Permissions and how we use them

  • Folder access (Storage Access Framework): you grant access to specific folders so the app can read your books. Lectern requests no broad storage permission and cannot access files outside the folders you choose.
  • Internet and network state: used only for the optional network features below. If you do not use them, the app works fully offline.
  • Notifications: to show audio-playback controls and library-scan progress.
  • Foreground service (media playback and data sync): to keep read-aloud playback running with the screen off, and to show progress while scanning folders and generating cover thumbnails.
  • Wake lock: to keep audio playing when the screen is off.

Optional features that use the internet

These features are off by default and run only when you choose to use them. When you do, data is exchanged directly between your device and the server you select. It never passes through us:

  • OPDS catalog browsing and downloads: when you browse or search an online catalog (for example Project Gutenberg, Standard Ebooks, or a server you configure), your requests — including any search terms — are sent to that catalog server, and any books you choose are downloaded from it.
  • Library sync: if you enable sync to a folder or a self-hosted server (such as Calibre-Web), the app writes a sync file to the location you chose. It contains your reading progress, bookmarks, highlights, notes, ratings, reviews, the device name you set, and your settings, so your own devices can stay in sync. It goes only where you point it.
  • Neural voice downloads: if you choose to install a Piper / Sherpa-ONNX voice, the voice model is downloaded from the public GitHub releases of the sherpa-onnx project. No personal data is sent.

Servers you connect to (catalogs, your own sync server, GitHub) are operated by others and have their own privacy policies; please review theirs.

Data we collect, share, or sell

We do not collect, share, or sell your personal data. Lectern contains no advertising, analytics, attribution, or crash-reporting SDKs, and no developer backend that could receive your data.

Children’s privacy

Lectern is a general-audience reading app and is not directed at children. It does not knowingly collect personal information from anyone. Because catalogs and book files are supplied by you, Lectern does not control the content you choose to load.

Security

Connections use HTTPS where the server supports it. The app also permits plain HTTP so it can reach self-hosted servers on your local network; prefer HTTPS where available. Because your data stays on your device, its security also depends on your device’s own protections (screen lock, encryption, etc.).

Your choices and control

  • You can revoke a folder’s access at any time in the app or in your Android system settings.
  • You can turn off or never enable the optional network features.
  • You can delete the app’s data or uninstall the app to remove everything stored on your device. If you used sync, delete the sync file from the location you chose to remove that copy as well.

Changes to this policy

If this policy changes, we will publish the updated version at this address with a new “Last updated” date.

Contact

For any questions about this policy or your privacy, contact us at info@hofstack.nl.