Privacy
Legal

Privacy policy

Last updated June 11, 2026

Standard Reader is a web reader for standard.site publications on the AT Protocol. This policy describes what we collect when you use this site, how we use it, and the choices you have. It applies to the Standard Reader deployment you are using at standard-reader.app.

What we collect

When you browse without signing in, we serve public writing from our read-model index. We may store a theme preference cookie and, if you have signed in before on this device, a short list of recently used account handles (and optional avatar URLs) to speed up sign-in. We do not require an account to read.

When you sign in with your Atmosphere account (for example via Bluesky OAuth), we create an app session tied to your AT Protocol DID. We store:

  • Your display name, handle, avatar URL, and DID as returned by your account provider.
  • OAuth tokens so we can read and write records in your repository on your behalf (for example follows, likes, saves, and publication lists).
  • An HttpOnly session cookie that keeps you signed in.
  • Session metadata such as IP address and browser user-agent string, used for security and session management.
  • In-app preferences you set (theme, reading typography, whether to track reading history, and similar settings).

Reading activity. When reading history is enabled, articles you open are recorded as public AT Protocol records in your repository — not as private app-only data. You can turn this off in your account settings; existing records remain in your repo until you delete them elsewhere.

Analytics. When configured, we use Plausible Analytics, a privacy-oriented analytics service that does not use cookies for tracking and does not build individual user profiles. Page views are aggregated; no analytics run when the service is not configured for this deployment.

What we do not do

We do not host publication content. Articles and publications remain in their authors' repositories; our database is a derived index for fast browsing and search.

We do not post to your account except when you take an explicit action that requires it (for example following a publication, liking or saving an article, or subscribing with the dedicated subscribe flow). We do not sell your personal information.

Where data lives

Your social actions (follows, likes, saves, lists) are written to your AT Protocol repository and are visible according to the network's rules and your account settings. Our Postgres database holds a network read-model, app session state, and cached public metadata — not the canonical copies of publications.

Third parties

Sign-in and record access go through your Personal Data Server and the wider AT Protocol network. Infrastructure providers (such as our database host) process data on our behalf under their own terms. Embedded media, fonts, or links on article pages may load resources from other sites when you open them.

Your choices

You can sign out at any time, which clears your app session cookie. You can clear site cookies in your browser to remove theme and saved-handle preferences. You can disable reading-history tracking in the app menu. To remove AT Protocol records you created through the app, use a compatible client or your repository tools.

Changes

We may update this policy as the product changes. The “Last updated” date at the top will change when we do. Continued use of the site after an update means you accept the revised policy.

Questions

For more about how Standard Reader works, see the About page. For privacy questions about this deployment, contact the operator of the site at the URL above.