Skip to main content

How Bookcicle Prioritizes Trust

· 4 min read
Andrew Barraford
Andrew Barraford
Bookcicle Maintainer

One of the decisions we have been working through at Bookcicle is how much third-party tracking we should allow into our marketing and product surfaces.

The easy answer would be to do what many companies do by default: install every advertising pixel, open up the site to every major ad platform, and let those systems collect as much behavioral data as possible as early as possible. Privacy = 0.

That is not the same as saying we reject retargeting, lookalike audiences, or campaign optimization.

We do not.

Those tools can be useful when the timing, channel, spend, and implementation are right. The question is not whether Bookcicle will ever use advertising optimization. The question is whether we should make broad third-party tracking the default before we have proven the channel, the message, and the need.

That is the common path, the easy path.

It is not automatically the right path for Bookcicle.

Bookcicle is built for authors. Our users may bring unpublished manuscripts, early ideas, drafts, prompts, translations, edits, notes, outlines, and commercially sensitive creative work into our platform. We classify that as confidential IP. That changes the standard we need to hold ourselves to.

As a founder, I have to look at product decisions not only through the lens of growth, but through the lens of trust. If I were a Bookcicle customer, I would not want ad networks quietly sitting on the edge of my writing workflow. I would not want my creative behavior treated as just another signal in someone else’s advertising graph.

That does not mean we are against analytics. We need measurement. We need to understand which campaigns work, which landing pages convert, where users get stuck, and which messages resonate. Good marketing depends on good data, 100%.

But there is a difference between measuring our own funnel and inviting a large number of third-party advertising scripts into the browser that will collect as much as they can, regardless of context.

Our preference is first-party measurement first. We can use campaign links, UTMs, landing page analytics, CTA clicks, signup events, trial starts, checkout events, subscriptions, purchases, and revenue to understand campaign performance. That gives us real visibility into ROI, CAC, conversion rates, and payback by source and campaign.

When paid channels become meaningful, we can take the more controlled path: server-side conversion reporting. That lets us send selected high-level conversion events to the platforms we actually use, without installing broad third-party JavaScript across our site or product.

This still supports campaign learning and optimization. It just changes the architecture. Instead of allowing ad platforms to observe broadly from the browser, we decide which events are appropriate to share, when they are appropriate to share, and which platforms have earned that integration.

This is more work? Yes.

It would be easier to add every pixel and move on. But easier is not always better.

Third-party ad scripts can affect page performance, complicate consent, weaken security posture, expand our content security policy, and increase the surface area for user tracking. For a product built around unpublished creative work, that tradeoff matters.

So our current posture is simple: protect the user first.

We may make narrow exceptions where they are clearly justified. For example, limited usability tools on selected public marketing pages can help us understand friction in the experience. But that is different from allowing ad networks to track broadly across our site or product.

Our line is especially clear inside the authenticated product. No ad-network pixels inside the authoring app. No ad-network pixels inside the editor. No ad-network scripts observing the places where authors write, revise, translate, or manage their work.

This is not anti-marketing. It is pro-trust.

The first six months of a product launch are usually not won through sophisticated retargeting. They are won through sharper messaging, better creative, clearer offers, stronger onboarding, faster pages, and a product that earns confidence from the people it serves.

For Bookcicle, trust is not a compliance checkbox. It is part of the product, it's in our architecture DNA.

Authors are trusting us with their work before the world sees it. That deserves care.

So yes, we will measure. Yes, we will learn. Yes, we will run campaigns. But we will do it in a way that keeps the customer’s interest at the center.

Because protecting our users as much as possible beats opening the door to every ad platform at launch, unnecessarily.