Privacy Policy

Last updated: April 30, 2026

1. Information We Collect

We collect information you provide when registering (name, email, church name) and content you upload (sermons, drafts, illustrations). We also collect basic usage data (login timestamps, feature usage counts) for service improvement.

2. How We Use Your Information

Your information is used to provide the Service, send transactional emails (verification, password reset), and improve features. We do not sell your personal information or sermon content to third parties.

3. AI Processing

When you use AI features, your sermon content is sent to third-party AI providers (Anthropic, OpenAI) using your API keys. We do not store AI API keys in plaintext — they are encrypted at rest using AES-256-GCM. Review each provider's privacy policy for how they handle data.

4. Data Storage

Your data is stored on secured servers. Passwords are hashed with bcrypt. API keys are encrypted at rest. We use HTTPS for all connections.

5. Data Retention

Your content is retained as long as your account is active. Deleted items are soft-deleted and permanently removed after 30 days. You can export all your data at any time from the admin settings.

6. Your Rights

You can access, update, or delete your personal information through your account settings. You can export all your data (sermons, drafts, metadata) at any time. You can delete your account, which will remove all associated data.

7. Cookies

We use session cookies for authentication and localStorage for UI preferences (theme, sidebar state). We do not use third-party tracking cookies or analytics services.

8. Changes to This Policy

We may update this policy from time to time. We will notify registered users of significant changes via email.

9. Contact

For privacy-related questions, contact us at the email address provided in your account settings.