MaoEcho Privacy Policy

Last updated: May 8, 2026

This policy describes how MaoEcho collects, stores, uses, shares, and deletes account and learning data for the Android app and backend service.

Data We Collect

• Account data: email address, username, password hash, account creation time, and authentication tokens.
• Learning data: selected books, reading position, learning sessions, AI narration state, follow-up questions, AI answers, notes, favorites, voice preferences, and reading history.
• Feedback and AI content reports: feedback subject, message, optional contact information, and contextual metadata when a user reports AI-generated content.
• Operational data: authenticated analytics events, backend request state needed to run the service, and crash reports if monitoring is configured.
• Advertising data: Google Mobile Ads may process device identifiers including the Google Advertising ID to serve and measure rewarded ads.

How We Use Data

We use data to authenticate accounts, keep users signed in, save and restore reading progress, generate AI-assisted narration and follow-up answers, handle feedback and content correction, operate rewarded ads, monitor stability, and improve product quality.

Third-Party Services

MaoEcho may use backend hosting and database services, Qwen or DashScope-compatible AI services, Google Mobile Ads, and Sentry when crash monitoring is configured. These providers process data only as needed to operate app functionality. MaoEcho does not sell personal data.

Security

Production builds are configured to use HTTPS backend endpoints. Authentication tokens are sent only over encrypted transport in production. Passwords are stored as password hashes, not plaintext passwords.

Account and Data Deletion

Users can delete their account in the app from Profile > Reading and legal settings > Account actions > Delete account. Account deletion removes the user profile, authentication tokens, learning sessions, question history, feedback entries, AI content reports, and analytics events stored on the backend. Account-scoped local caches are also cleared from the device.

Users who cannot access the app can request deletion through the public deletion page.

Contact

Privacy and deletion requests can be sent to support@maoehco.site. Include the registered email address so account ownership can be verified.