This policy has been updated and is effective as of May 25, 2018. The previous version may be found here.
These terms apply to users of LibraryThing.com, and its associated domains, such as LibraryThing.nl and LibraryThing.es. They also apply to TinyCat (LibraryCat.org).
We take reader privacy very seriously. Reader privacy enjoys special Constitutional protections under US law, and LibraryThing will not cooperate with US law enforcement unless compelled to do so. LibraryThing will not cooperate with non-US law enforcement unless compelled, or if we are convinced the law is at least as just, and applied as justly, as US standards. If you are using LibraryThing from a foreign country with an oppressive government, LibraryThing urges you not to put yourself at risk.
As of June 30, 2020, we have never received a National Security Letter, FISA order, or any other classified request for user information.
No sale of personal information
LibraryThing will not sell or give personally-identifiable information to any third party. This would be evil, and we are not evil. Yes, still.
There is one exception to this rule, described below (see Reviews under Sharing and Transfer of Information). Review sharing is entirely optional and member-controlled.
We reserve and currently exercise the right to sell or give away anonymous or aggregate information.
See Sharing and Transfer of Information, below, for more on this topic.
Emails from LibraryThing
LibraryThing membership does not require an email address.
LibraryThing respects your inbox. We do not sell your email address to authors, publishers, marketing companies, or anyone else.
By default, most new members who provide their email address are subscribed to our "State of the Thing" newsletter. Members who join from the EU after May 25, 2018 are not subscribed automatically, and will have to consent explicitly to receive the State of the Thing.
By default, members who provide their email address receive profile comments by email. This can be disabled in the Privacy Center. LibraryThing reserves the right to send profile-comment emails for GDPR-exempt system notifications, and customer support.
See LibraryThing Early Reviewers and Member Giveaways, below, for terms surrounding those optional programs.
Member Privacy Center
All LibraryThing members have access to their own Member Privacy Center, where they can see and then update:
- Subscription settings for different types of LibraryThing emails
- Review-sharing preferences
- EU or non-EU residency
- Display preferences for name, location and other non-required fields
- Application-sharing preferences, such as to Facebook and Twitter
- Export and download account data (incomplete as of June 8, 2018)
- Disable or delete your account
LibraryThing allows "private" libraries—libraries that others can't see. We cannot give an absolute 100% guarantee of privacy. After all, even Amazon had a day when all their "anonymous" reviewers were exposed by mistake. If the public disclosure of your library would really damage you, by all means don't post it online.
LibraryThing has a "private books" feature, marked as a "beta" feature. It is not fully functional, and does not guarantee security.
Individual accounts are designed for personal collections. Couples and families are fine too. Organizations, like churches, companies, schools, and museums, can also join, with some restrictions. (See organizational accounts.)
In event of dispute, account ownership is determined as follows: If a paid account—from when LibraryThing charged a modest membership fee for accounts with over 200 books—ownership belongs to the party that paid for the membership. For all other accounts, ownership is determined by the email address linked to the account. If there is no email address linked to the account, LibraryThing staff will make a good faith effort to determine ownership. Our decisions are final.
Freedom of discussion and personal attacks
- LibraryThing prohibits all personal attacks on members. As Wikipedia's policy states, "Comment on content, not on the contributor."
- Personal attacks are attacks on a person. To dispute or disparage someone's words is not a personal attack. It is the line between "You are a liar" and "Your recent post was a lie." The former is a violation of the TOS. The latter is not.
- Personal attacks include name-calling. Name-calling is not restricted to pure insults (e.g., "asshole"), but also ones that imply both a personal and a content problem (e.g., "liar," "Nazi").
- LibraryThing has no speech code per se. You can dispute ideas and words without limitation.
- Use common sense. Be polite. Think before you post.
- If you're upset by something or someone, try to calm down before responding.
- Discussions can become heated and passionate. Don't forget that the person on the other side is human.
- Remember that LibraryThing Talk is a public space; don't say anything to others that you wouldn't want a room full of people to overhear.
- Avoid quoting or otherwise exposing private communication. While this does not necessarily violate the Terms of Service, you should consider whether it qualifies as a personal attack or a disclosure of private information.
- Consider the context before posting. A political or religious dispute does not belong in a knitting group.
How to deal with abuse
- If you come across an abusive post, click the "flag abuse" link. The flag will be visible only after it has been flagged twice. After four different users have flagged a post, it will be deleted.
- Please do not flag posts as "abuse" simply because you disagree with what is said, or if someone criticizes your favorite book, author, or idea—that's not abuse, it's a difference of opinion. We welcome differences of opinion!
- LibraryThing staff do not review all flags. Severe abuse should be reported to LibraryThing staff.
- One violation of the Terms of Service will not be considered to justify another one.
- Reasonable people can disagree about what constitutes abuse, but flagging is not a weapon. Clear misuse of the flagging feature—either to flag or counter-flag—is itself a manipulation of the system and a violation of the Terms.
How LibraryThing deals with abuse
- As stated, members are encouraged to report abuse, not merely to flag it. Email firstname.lastname@example.org.
- When reporting abuse be as specific as possible.
- Avoid responding to abuse with abuse. It will not be excused.
- LibraryThing staff are empowered to admonish, warn, suspend, and ban users for violations of these terms. We are happy to talk things through, but our decisions are final.
- LibraryThing is not an advertising medium. Egregious commercial solicitation is forbidden.
- No matter how great your novel, this does apply to authors. (See Tips and Guidelines for Authors.)
- Authors caught manipulating the system have had all their books permanently marked with a spam and manipulation warning. You don't want that, believe me.
- Do not spam member comments or group invitations. Inviting people in your town to a new group is okay; inviting hundreds of members is not.
- Do not repost flagged content in Talk. If you believed you were flagged unfairly, go ahead and discuss the issue (without getting personal). You can discuss it, with short selections. But you may NOT repost it. If people want to read it, they can; Talk allows you to click something to see the flagged content.
- Do not create "pointless," "meaningless" or "random" groups or topics. We give all groups the benefit of the doubt, but the creation of multiple, duplicative and contentless groups is against these terms.
- No personal groups (groups with fewer than two members).
- Do not intentionally disclose sensitive private information about another member.
- You may not post any content that violates copyright or other intellectual property law.
- LibraryThing may not be used for any illegal activity.
- LibraryThing may not be used to injure, threaten, stalk, impersonate, or harass someone.
- Do not plagiarize another member's content.
- Do not upload X-rated or otherwise highly objectionable pictures.
- Do not upload suggestive images of minors or seeming minors.
- Your username may not be an insult, either general or specific. Sheesh!
- We reserve the right to remove accounts with no books after three months. (But we have never done so.)
- Do not subvert or misuse site features.
- Do not set up "shell" or "sock puppet" accounts for any purpose whatsover.
- Common Knowledge, covers and other core, shared bibliographic data must be edited in good faith.
- LibraryThing is for your books—books you own, have read or want. It would not be appropriate to fill your LibraryThing catalog with all the books in your local library or Project Gutenberg.
- Except by permission or through an authorized API, you may not add to or query your library automatically. See our APIs.
Early Reviewers and Member Giveaways
LibraryThing Early Reviewers ("LTER") gives LibraryThing members the chance to receive and review advanced reader editions of upcoming books from select publishers.
LibraryThing Member Giveaways ("LTMG") are an informal way for LibraryThing members and authors to give away books. LTMG reviews may be requested, but not required.
The mailing address and email information you provide for either program will only be used to send you books.
Recipients of books who submit reviews to LibraryThing hereby grant LibraryThing, the book's publisher, and its author perpetual non-exclusive permission to use of the review, together with their first name and city/town of residence, for purposes of entertainment, advertising, promotion, or publicity without additional compensation, except where prohibited by law. LibraryThing, the publisher, and the author reserve the right to edit reviews for clarity or language or to use only excerpts from them. Neither LibraryThing nor the publisher is under any obligation to publish a review.
For more rules and conditions see your profile.
- Reviewers must be free to write what they think. They may not be required or rewarded to write positive reviews, or punished for writing bad ones.
- Reviewers must own and control their reviews, granting other parties only a non-exclusive license.
- Reviewers must act on their own volition, cross-posting their review when and where they want. Companies that sell services based on how many sites get reviews are explicitly forbidden from using LibraryThing.
- Reviewers must not be paid for their reviews, except in free books and similar non-monetary perks.
In adding a Member recommendation to any given work page, you are expected to make good-faith, disinterested recommendations. You can only make three recommendations per book, and cannot recommend the same book more than five times overall. Recommending your own book is strictly forbidden. Members can rate the validity of other member recommendations from the Rate Recommendations page. You are free to recommend books already listed by others or by LibraryThing itself.
Terms of Service
EU Members and the General Data Protection Regulation (GDPR)
LibraryThing abides by US law. We also intend to voluntarily follow the provisions of the General Data Protection Regulation (GDPR), which applies to EU citizens and residents. We must therefore identify who is and who is not covered by the GDPR.
As of May 25, 2018, LibraryThing has assigned EU status to members based upon their IP address at sign-up, or, where that is not available to us, recent usage. This status does not change unless changed by the member.
To change your EU status, go to your Member Privacy Center. Choosing the incorrect legal status is a violation of LibraryThing's Terms of Service.
Data Protection Officer
Per the GDPR, LibraryThing's Data Protection Officer (DPO) is Tim Spalding. Our DPO can be reached at email@example.com.
The GDPR's Defined Roles and the Handling of Data in LibraryThing and TinyCat
Under the terms of the GDPR, LibraryThing operates as either data controller or data processor, depending on whether the service is provided to users directly, or to organizations which have their own users.
For TinyCat customers—excepting free, personal members—LibraryThing is assumed to be in the position of data processor, and the customer in the position of data controller, managing the data of their data subjects. The same may apply to LibraryThing customers using LibraryThing's "lending" feature or otherwise providing LibraryThing to others.
It is the data controller's ultimate responsibility for controlling their patron or student (i.e., data subject) data, and ensuring GDPR compliance for their data subjects, including collecting consent, managing consent-revocation, enabling access, etc.
By posting content to LibraryThing, you grant—and you represent and warrant that you have the right to grant, represent and warrant—LibraryThing a non-exclusive, perpetual, irrevocable, worldwide, omnipotent, royalty-free, fully-transferable and sublicenseable right to display, use, analyze, aggregate, modify, adapt, publish, translate, transform, create derivative works from and perform in any venue or media, online or offline, as well as
"In Painting, Sculpture, and rapt Poesy, / And arts, though unimagined, yet to be." (Shelley, Prometheus Unbound)
We do NOT assert copyright over the things you post to LibraryThing. The phrase "non-exclusive" above means you can post your content elsewhere. By posting something to LibraryThing you let us use it, but you do not restrict what you can do with it. We love it when people post their reviews on their blog, on Amazon and other sites!
As stated above, LibraryThing will not sell any personally-identifiable information to any third party.
You can control whether your reviews will ever be made available to libraries or others. Click here to edit your profile and change your preference.
Get off my lawn, you kids!
The Children's Online Privacy Protection Act (COPPA) severely restricts what information can be collected from children under 13. The EU's General Data Protection Regulation (GDPR) also severely restricts what information can be collected from children under 16. For these reasons, all children under 13 are prohibited from using LibraryThing, and, unfortunately, all European Union children under 16 are prohibited from using LibraryThing. Au revoir mes petits choux!
LibraryThing's age minimum does NOT apply to TinyCat customers providing TinyCat to others. TinyCat libraries are, in this case, the data controller/s and are responsible for ensuring GDPR compliance for their patrons. TinyCat does not provide messaging or social networking features to patrons.
LibraryThing is a warm and welcoming community, and almost everyone is nice. But younger members, and members of all ages, are warned not to provide profile information without weighing the risks and benefits, and never to provide their phone number, address, or other critical personal data online.
If you believe that your copyrighted work has been copied in a way that constitutes copyright infringement, please notify LibraryThing as set forth in the Digital Millennium Copyright Act of 1998 ("DMCA"). For your complaint to be valid under the DMCA, you must provide the following information in writing:
- An electronic or physical signature of a person authorized to act on behalf of the copyright owner;
- Identification of the copyrighted work that you claim has been infringed;
- Identification of the material that is claimed to be infringing and where it is located on the Service;
- Information reasonably sufficient to permit LibraryThing to contact you, such as your address, telephone number, and, e-mail address;
- A statement that you have a good faith belief that use of the material in the manner complained of is not authorized by the copyright owner, its agent, or law; and
- A statement, made under penalty of perjury, that the above information is accurate, and that you are the copyright owner or are authorized to act on behalf of the owner.
The above information should be submitted to the following designated agent:
Tim Spalding LibraryThing, Inc. Attn: DMCA Notice 286 Spring Street #2, Portland, ME 04102 Phone: 207-899-4108 Email: infolibrarything.com
UNDER FEDERAL LAW, IF YOU KNOWINGLY MISREPRESENT THAT ONLINE MATERIAL IS INFRINGING, YOU MAY BE SUBJECT TO CRIMINAL PROSECUTION FOR PERJURY AND CIVIL PENALTIES, INCLUDING MONETARY DAMAGES, COURT COSTS, AND ATTORNEYS' FEES.
Please note that this procedure is exclusively for notifying LibraryThing and its affiliates that your copyrighted material has been infringed. The preceding requirements are intended to comply with LibraryThing's rights and obligations under the DMCA, including 17 U.S.C. §512(c), but do not constitute legal advice. It may be advisable to contact an attorney regarding your rights and obligations under the DMCA and other applicable laws.
Please also note that we laugh off requests to remove books you don't like on DMCA grounds. Book titles and author names are not copyrightable. That's not how this works. That's not how any of this works.
HIPAA Compliance and Patron Privacy
Consider these tips to maintain patron privacy within TinyCat and LibraryThing:
- Do not share your admin login with anyone unless you expect them to have access to all of your library and patron data.
- Do not add patron information, such as names and phone numbers, but use only patron barcodes or IDs.
- If you have Simple Circulation enabled, go to your Patron Accounts Settings, and select Barcode/ID under the "Patron list" setting. This will protect the privacy of your patrons' names.
- If you have Full Circulation enabled, go to your Patrons Settings and make sure that all patron fields except "Barcode/Patron ID" are set to Admin only. Set the "Barcode/Patron ID" field to Patron can see, if you prefer.
What information do we collect?
This section covers the Personally Identifiable Information (PII) LibraryThing collects, as defined by the General Data Protection Regulation (GDPR).
Personally Identifiable Information (PII) we collect for all site users may include:
- Security and abuse-monitoring data, including:
- IP address
- Browser/OS version
- Personally Identifiable Information (PII) we collect for LibraryThing members may include:
- Account basics
- User name
- Content members provide voluntarily including:
- Your name
- Profile information
- Public lists of other social-media accounts
- Book collection and associated metadata, including ratings, reviews, and lists.
- Social interactions, including friend lists, forum posts, and member-to-member comments.
- Location (for public display)
- Non-required, non-public information members voluntarily provide to access certain site features or programs, including:
- Email address
- Mailing address
- Billing Information
- Links to social media accounts
- LibraryThing smartphone app data, including
- Device OS/version
- Device ID
Personally Identifiable Information (PII) we collect from TinyCat customers may include:
- Content members provide voluntarily, including:
- Main contact's name
- Non-required, non-public information members voluntarily provide to access certain site features or programs, including:
- Main contact's email address
- Billing information
Personally Identifiable Information (PII) TinyCat customers and other data-controller customers may collect from patrons may include:
- Account basics:
- Patron barcode/ID number
- Content members provide voluntarily, including:
- Patron name (First, Middle, Last, Suffix)
- Non-required, non-public information members or patrons voluntarily provide to access certain site features or programs, including:
- Patron email address
- Patron phone number
- Patron mailing address
- Any custom patron data field you add and provide to us
- Patron lending history (checkouts, holds, etc.)
What do we use this information for?
LibraryThing collects Personally Identifiable Information (PII) for these purposes:
- To provide, support, and improve the services LibraryThing offers.
- To collect and analyze usage analytics on our user base (see Analytics section below).
- To send members service and feature updates (including of planned outages, new features, and version updates), to communicate with members about their accounts, and to provide customer support.
- To send members informational and promotional content for use of LibraryThing services, in accordance with their marketing preferences. Members can unsubscribe from our promotional emails using any of the links in the emails, or by updating their Privacy Center preferences.
- To participate in optional LibraryThing services that require mailing or emailing material to the participant, including Early Reviewers, Member Giveaways, and SantaThing.
- To receive payments for LibraryThing services, including membership upgrades, subscriptions to TinyCat, orders from the LibraryThing Store, etc. We use PayPal for secure credit card transaction processing, and we send billing information to PayPal in order to process orders and credit card payments.
- To monitor and enforce compliance with our Terms of Service and applicable law.
- To respond to lawful requests by public authorities, including to meet national security or law enforcement requirements.
- To provide, support, and improve the services TinyCat offers. This includes sending systematic messages or updates to your patrons, either automatically or on your behalf (such as lending transaction confirmations, setting up checkout or overdue reminders, etc.), allowing you to communicate with your patrons about their account/s, and allowing you to provide patron support.
The EU General Data Protection Regulation (GDPR) includes certain rights for certain covered individuals, concerning their personally identifiable information. We intend to voluntarily comply with these provisions, except as limited under applicable law. These rights include:
- Right of access. The right to be informed about and access your personal data.
- Right to erasure ("right to be forgotten"). The right to request that we remove your personal data.
- Right to rectification. The right to request that we rectify your personal data, or allow you to do so, where it is incorrect.
- Right to restrict. The right to ask that we temporarily or permanently stop processing all or some of your personal data.
- Right to withdraw consent. The right to object to us processing your personal data.
- Right to data portability. The right to request a copy of your personal data.
- Right not to be subject to automated decision-making. The right to not be subject to a legal or similarly significant decision based solely on automated decision making.
LibraryThing has created a Member Privacy Center (see above) which allows you to set preferences and exercise these rights. See Member Privacy Center section above for a full listing of what options are available.
If you have any questions about your rights under the GDPR, and how they relate to your LibraryThing data, please contact firstname.lastname@example.org, making clear your question and your status under the GDPR.
Third Party Cookies
LibraryThing uses third-party cookies from Google to anonymously track web usage and analytics (Google). These cookies are not essential to site functionality.
When users are not signed in, some LibraryThing pages include Google Adsense advertisements, which set cookies. These cookies are not involved in any site operation, and are not visible to LibraryThing. Google has some new privacy tools for this, debuting soon. For now, out of an abundance of caution, LibraryThing has decided to exclude all Google Adsense advertisements for users determined to be visiting from the EU. These cookies are not essential to site functionality.
We use our own domain-specific cookies to store:
- Session status
- Login information
- General site setting preferences, such as language, display preferences, login, and notification status
These cookies are not essential to using LibraryThing overall, but are essential to LibraryThing's "logged in" site functionality. Disabling them may prevent an individual from signing into the service, from seeing the content they want to see, from changing content, etc.
In addition to Google Analytics (above), LibraryThing and TinyCat also collect and analyze their own usage data, to track usage and oversee the Terms of Service.
Sharing and Transfer of Information
LibraryThing provides Enrichment Services, including LibraryThing for Libraries (https://www.librarything.com/forlibraries) and Syndetics Unbound (https://proquest.syndetics.com), which dynamically enrich library catalogs and other book sites with data from LibraryThing and LibraryThing members. LibraryThing also provides access to the same information via data feeds.
Our Enrichment Services include aggregate, anonymous and anonymized metadata, such as popularity, average ratings, and tags. No personally-identifiable information is shared with this data.
Our Enrichment Services also include some member-provided reviews. Such sharing includes member names and the content of user reviews. Members can change their settings for the sharing of reviews (see Privacy Center, above), including options to share with no outside entity, with just libraries, or with all entities. Changing these settings in no way affect members' ability to use the site.
Third Party Links
LibraryThing may contain links to other sites (such as Amazon, for example). If you click on a third-party link, you will be directed to that site and subjected to their own terms and policies. Note that these external sites are not operated by LibraryThing.
LibraryThing values your trust in providing us your personal information, thus we are striving to use industry-standard means of protecting it. But remember that no method of transmission over the internet, or method of electronic storage is 100% secure and reliable, and LibraryThing cannot guarantee its absolute security.
Protection of Information
We use the following security measures and technologies to protect your data:
- Industry-standard firewalls
- Industry-standard encrypted passwords
- Pseudonymization of select personally-identifiable information
- Encrypted data transfer over SSL
- Secure data backups
- Servers located at secure locked facilities
LibraryThing's primary payment process is PayPal. LibraryThing does not receive, process, or store any payment information from PayPal, such as credit card numbers or PayPal receipt numbers.
Members can also pay for LibraryThing services with checks or money orders. We keep this information safe too.
Breach of Information
Despite our efforts, no security measure can be absolute, and there can be no guarantee that Your personal information will not be accessed through malicious means, inadvertent disclosure, or mistake.
In the case of a breach of data, as defined in the GDPR, we will notify affected members within 72 hours of our discovery, describing the breach in all appropriate detail, along with our mitigation actions.
Mobile Apps (Android and iOS)
This section covers the policies for the following apps: LibraryThing, LibAnywhere, FCPL Mobile, LINKcat, MtLaurelLib, and Unisa Library. These services are provided to the user as is.
This page is used to inform website visitors regarding our policies with the collection, use, and disclosure of Personal Information if anyone decided to use our Services.
Information Collection and Use
For a better experience while using our Service, LibraryThing may require you to provide us with certain personally identifiable information, including but not limited to location information and access to pictures/camera on your device. The information that LibraryThing requests is retained on your device and is not collected by LibraryThing in any way, except if specifically uploaded by you (example: book cover photos uploaded to your books).
LibraryThing wants to inform you that whenever you use our Services, in case of an error in the apps we collect data and information which is transmitted directly to our server in the form of Log Data. This Log Data may include information such as your devices's Internet Protocol ("IP") address, operating system version, configuration of the app when utilising the Service, the time and date of your use of the Service, and possibly other anonymous statistics.
Cookies are files with small amount of data that is commonly used an anonymous unique identifier. These are sent to your browser from the website that you visit and are stored on your devices's internal memory.
LibraryThing services may use "cookies" to provide automatic sign-in for certain features (example: the LibraryThing app). You have the option to set up your device to accept or refuse these cookies, and know when a cookie is being sent to your device. If you choose to refuse our cookies, you may not be able to use some portions of this Service.
LibraryThing values your trust in providing us your Personal Information, thus we are striving to use commercially acceptable means of protecting it. But remember that no method of transmission over the internet, or method of electronic storage is 100% secure and reliable, and LibraryThing cannot guarantee its absolute security.
Links to Other Sites
See the COPPA section.
LibraryThing allows members to connect to various apps, like Facebook and Twitter, that require application authorization. We will not use this for any purpose other than explicitly agreed to. The data we collect from these apps is used only for authentication purposes, and to post to the services as directed. It is not displayed, transferred, or shared in any way.
LibraryThing does not store any information for Facebook and Twitter except the keys necessary to perform API requests. In other words, all that stuff that Facebook gave companies like Cambridge Analytics, and which they misused, we have never stored and don't store now. We reserve the right to store your Facebook "name."
We take it all back
These terms and conditions are subject to the usual change-at-any-time rule that websites put on their terms and conditions and which seem so unfair. ("What, I have to submit a DNA sample?") We have edited them as new situations have come up, but we promise not to change any of the core principles, particularly with regard to sale of information, copyright and death rays. We promise to make all changes openly, with tracking and with the opportunity for users to withdraw their accounts.
LibraryThing is an equal opportunity employer and will not discriminate against any employee or applicant on the basis of religion, race, color, national origin, ethnic origin, age, sex, disability, sexual orientation, gender identity, gender expression, pregnancy status, parental status, marital status, veteran status, or any other classification protected by applicable federal, state, or local law.
Credit where it's due
We proudly use some icons from these great icon sets:
We also use icons from FontAwesome
LEXILE®, LEXILE FRAMEWORK® and the LEXILE® logo are trademarks of MetaMetrics, Inc., and are registered in the United States and abroad. Copyright © 2010 MetaMetrics, Inc. All rights reserved.
LittleFreeLibrary® and the LittleFreeLibrary.org® logo are trademarks of Little Free Library, Ltd., and are registered in the United States, as well as internationally. Copyright © Little Free Library, Ltd. 2010-2012.
BookCrossing™ and the BookCrossing™ logo are trademarks of BookCrossing, Inc. Copyright © BookCrossing, Inc. 2001-2013.
Certain content that appears in on this site comes from Amazon Services, LLC. This content is provided "as is" and is subject to change or removal at any time.