Skip to main content
← Back to Home

Privacy Policy

Last updated: November 22, 2025

Introduction

Our commitment to your privacy

This Privacy Policy describes how we collect, use, store, and protect personal information in our church management system. We are committed to protecting your privacy and handling your personal data in accordance with applicable privacy laws, including GDPR, CCPA, and other relevant regulations.

This system is designed to help churches manage member information, households, and services. By using this system, you acknowledge that you have read and understood this Privacy Policy.

Information We Collect

Types of personal data we process

Member Information

For church members, we may collect and store:

  • Name (first name, last name, preferred name)
  • Contact information (email address, phone number)
  • Date of birth
  • Demographic information (sex, marital status)
  • Address information (via household records)
  • Emergency contact information
  • Service and ministry participation
  • Notes and other information provided by church staff
  • Profile photos (if uploaded)

User Account Information

For system users (church staff and administrators), we collect:

  • Name and email address
  • Password (hashed and encrypted)
  • Role and permissions within the system
  • Profile photo (if uploaded)

How We Use Your Information

Purposes for processing personal data

We use the information we collect for the following purposes:

  • Church Management: To manage member records, households, and service assignments for church operations
  • Communication: To facilitate communication between church staff and members (with appropriate permissions)
  • Service Coordination: To organize and manage church services, ministries, and volunteer activities
  • Administrative Purposes: To maintain accurate records and support church administration
  • Security: To protect the system and prevent unauthorized access
  • Compliance: To comply with legal obligations and respond to data subject requests

Data Security

How we protect your information

We implement appropriate technical and organizational measures to protect your personal data:

  • Encryption: Sensitive data is encrypted at rest and in transit
  • Access Controls: Role-based access control ensures only authorized users can access personal data
  • Authentication: Secure authentication mechanisms protect user accounts
  • Audit Logging: All access and modifications to personal data are logged for security and compliance
  • Regular Security Updates: We regularly update our systems to address security vulnerabilities

Data Sharing

Who has access to your information

We do not sell, rent, or trade your personal information. Your data is only accessible to:

  • Authorized Church Staff: Users with appropriate roles and permissions within your church organization
  • Service Providers: Trusted third-party service providers who assist in operating the system (e.g., hosting, email services) under strict confidentiality agreements
  • Legal Requirements: When required by law or to protect our rights and the rights of others

Your Rights

Your rights regarding personal data

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Right to Access: You can request a copy of all personal data we hold about you
  • Right to Rectification: You can request correction of inaccurate or incomplete data
  • Right to Erasure: You can request deletion of your personal data (subject to legal retention requirements)
  • Right to Data Portability: You can request your data in a structured, machine-readable format
  • Right to Object: You can object to certain types of data processing
  • Right to Restrict Processing: You can request that we limit how we use your data

To exercise these rights, please contact your church administrator or use the data export and deletion features available in the system (for authorized users).

Data Retention

How long we keep your information

We retain personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

  • Active Members: Data is retained while the member is active in the church
  • Inactive Members: Data may be retained for a reasonable period after a member becomes inactive
  • Deleted Data: When data is deleted, it is anonymized or permanently removed in accordance with data protection requirements
  • Audit Logs: Audit logs are retained for security and compliance purposes, typically for 7 years

Children's Privacy

Special protections for children

We take special care to protect the privacy of children. If we collect information about children under 13, we comply with COPPA requirements:

  • We require parental consent before collecting data from children under 13
  • We limit the collection of data from children to what is necessary
  • Parents can request access to or deletion of their child's data

International Data Transfers

Data storage and transfer

Your data may be stored and processed in servers located outside your country of residence. We ensure that appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable data protection laws.

Changes to This Privacy Policy

Updates and modifications

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

Contact Us

Questions about privacy

If you have questions about this Privacy Policy or wish to exercise your data protection rights, please contact:

  • Your Church Administrator: For questions about how your church uses this system
  • System Support: For technical questions or to report privacy concerns

For data subject requests (access, deletion, etc.), please contact your church administrator who can assist you using the system's built-in compliance features.