Privacy Policy

The controller responsible for the processing of personal data on this website within the meaning of Art. 4 (7) GDPR is:

[YOUR FULL LEGAL NAME]
[STREET AND HOUSE NUMBER]
[POSTAL CODE AND CITY], Germany
Email: [YOUR-CONTACT-EMAIL]

This policy applies to mangadojo.appand any other domain pointing to the same application (collectively, the "Service").

The Service is hosted on Vercel Inc., 440 N Barranca Ave #4133, Covina, CA 91723, USA. When you load a page, Vercel's edge network automatically processes:

• Your IP address (truncated/anonymized after a short window)
• Date and time of the request
• HTTP method, URL, response status code
• User agent string (browser, OS)
• Referrer URL

Legal basis: Art. 6 (1) (f) GDPR (legitimate interest in operating, securing, and debugging the Service).
Storage: server logs are retained by Vercel for up to 30 days and then deleted.
Transfer to third country:Vercel processes data in the EU and US. Where data leaves the EU, the EU-US Data Privacy Framework and Vercel's Standard Contractual Clauses apply. See vercel.com/legal/privacy-policy.

Creating an account is optional. The Service uses Firebase Authentication, operated by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland. When you sign up or log in, the following data is processed:

• Email address
• Display name (chosen by you or supplied by your identity provider)
• Profile photo URL (only if you sign in with Google)
• Password (hashed by Firebase — we never see it)
• Account creation timestamp and last sign-in timestamp

Purpose: identifying you across sessions; attributing comments and favorites to your account.
Legal basis: Art. 6 (1) (b) GDPR (performance of the user agreement you enter when registering).
Transfer to third country:Firebase processes data on Google's global infrastructure including the United States, under EU Standard Contractual Clauses. See firebase.google.com/support/privacy.

You can delete your account at any time by emailing [YOUR-CONTACT-EMAIL]. All associated comments, favorites, and authentication data will be erased within 30 days.

When signed in, you can post comments and mark manga as favorites. These are stored in Google Cloud Firestore together with your user ID, the manga or chapter ID, and a timestamp. Comment text is publicly visible to other users; favorites are visible only to you.

Legal basis: Art. 6 (1) (b) GDPR (account features you actively choose to use).

The Service remembers the chapters you have opened so it can show you a history list. This data is stored exclusively in your browser's localStorage and never transmitted to our servers. Clearing your browser data deletes it.

Manga metadata, cover images, and chapter pages are fetched from public third-party APIs and image servers. Metadata requests are made by our server and do not transmit any personal data about you. Chapter image files, however, are loaded by your browser directly from those third-party servers, which therefore see your IP address and user agent. We have no control over their privacy practices.

If you would like a current list of the upstream providers we use, email [YOUR-CONTACT-EMAIL].

The Service uses the following cookie categories:

• Strictly necessary — set by Firebase Authentication to keep you signed in (no consent required under § 25 (2) 2 TTDSG).
• Advertising — once Google AdSense approval is granted, AdSense will set cookies to serve personalised ads. These are loaded only after you give consent via the cookie banner.

The Service participates in Google AdSense (publisher ID ca-pub-2670919215597744), operated by Google Ireland Ltd. AdSense uses cookies and similar identifiers to:

• Serve ads relevant to your interests
• Limit how many times you see the same ad
• Measure ad effectiveness
• Detect fraudulent impressions and clicks

Legal basis: Art. 6 (1) (a) GDPR (your explicit consent via the cookie banner) and § 25 (1) TTDSG.
You can withdraw consent at any time via the cookie banner, or opt out of personalised advertising entirely at adssettings.google.com.

Google's privacy policy: policies.google.com/privacy.

Under the GDPR, you have the right to:

• Access the personal data we hold about you (Art. 15)
• Have inaccurate data corrected (Art. 16)
• Have your data deleted (Art. 17 — "right to be forgotten")
• Restrict processing in certain cases (Art. 18)
• Receive your data in a portable format (Art. 20)
• Object to processing based on legitimate interest (Art. 21)
• Withdraw consent you previously gave, at any time and without affecting the lawfulness of prior processing (Art. 7 (3))

To exercise any of these rights, email [YOUR-CONTACT-EMAIL]. We will respond within 30 days.

Without prejudice to other remedies, you have the right to lodge a complaint with a supervisory authority — in particular in the EU member state of your residence, place of work, or place of the alleged infringement (Art. 77 GDPR). A list of German data protection authorities is available at bfdi.bund.de.

We may update this policy from time to time to reflect changes in our service or in the law. The "last updated" date below shows when it was last revised. Significant changes will be announced on the homepage.