TogetherChurch
Legal

Privacy Policy

Last updated: April 24, 2026

This Privacy Policy explains what information TogetherChurch (“we”) collects, how we use it, and the choices you have. It applies to TogetherChurch.app and related services (the “Service”).

Short version

  • We collect what we need to run the Service for your church.
  • We do not sell your data and we do not use it to train AI models.
  • Your church controls its members’ data. You can export or delete it.
  • We use sub-processors like Stripe, Twilio, and AWS to deliver the Service.

1. Information we collect

Information you provide

  • Account info: name, email, password (hashed), role, and church name.
  • Church data: member directory records, households, events, tickets, messages, groups, meal trains, kids check-in, announcements, forms, and uploaded files (“Your Content”).
  • Billing info: we use Stripe to process payments. We receive limited transaction metadata (amount, last 4, status). We do not store full card numbers.
  • Support communications: content of emails and messages you send us.

Information collected automatically

  • Log data: IP address, user agent, pages visited, and actions taken (for security, debugging, and product analytics).
  • Device tokens: if you opt in to push notifications, we store the token and platform so we can deliver notifications.
  • Audit log: actions taken inside the Service (e.g., who edited a record) so admins can review them.

2. How we use information

  • Operate, maintain, and improve the Service;
  • Provide customer support;
  • Process payments and billing;
  • Send service-related emails and, with your opt-in, notifications;
  • Detect, prevent, and respond to abuse, fraud, and security incidents;
  • Comply with legal obligations.

We do not sell personal information. We do not use Your Content to train third-party AI models.

3. Roles: controller and processor

Each church is the controller of the member data it puts into the Service; we act as a processor under the church’s direction for that data. For account-level data (billing, support), we are the controller.

4. Sub-processors

We rely on these sub-processors to operate the Service:

  • Amazon Web Services — hosting and email delivery (Amazon SES).
  • Stripe — payments and subscription billing.
  • Twilio — SMS delivery.
  • Supabase (self-hosted on our infrastructure) — database, authentication, and file storage.
  • Google Analytics — aggregated marketing-site traffic analytics (for togetherchurch.app marketing pages only).

5. Sharing and disclosure

  • Within your church: data is visible to users of your church workspace based on their role (admin, leader, member). Admins can change access.
  • With sub-processors: only as needed to run the Service.
  • For legal reasons: if required by law or to protect our rights, users, or the public.
  • With your consent: for anything else.

6. Data retention

  • Active accounts: we retain Your Content for as long as your church uses the Service.
  • Canceled accounts: Your Content is retained for 30 days after cancellation so you can reactivate or export, then deleted from active systems within a further 60 days. Encrypted backups may persist for up to 90 days.
  • Billing records: retained as required by tax and accounting rules.

7. Your rights and choices

Depending on where you live, you may have rights to access, correct, delete, export, or restrict processing of your personal information. To exercise these rights, email info@togetherchurch.app. If you are a church member, contact your church admin first; they control your record and can fulfill most requests directly.

Church admins can export people, events, and other data from inside the app. You can opt out of non-essential emails and push notifications from your account settings.

8. Children

We do not knowingly collect data directly from children under 13. Kids check-in records are created by church admins on behalf of parents. Churches are responsible for obtaining parental consent as required by law (including COPPA in the U.S.).

9. Security

We protect information with encryption in transit (TLS), access controls, audit logging, and restricted database access. No system is perfectly secure; if we become aware of a security incident that affects you, we will notify affected accounts promptly.

10. International transfers

The Service is hosted in the United States. If you use the Service from outside the U.S., your information will be transferred to and processed in the U.S.

11. SMS consent and opt-out

We only send SMS to recipients your church has a lawful basis to message. Recipients may reply STOP at any time to opt out. We honor opt-outs across your church’s account.

12. Changes to this policy

We may update this Privacy Policy. If a change is material, we will notify you by email or an in-app notice before it takes effect. The “last updated” date at the top reflects the most recent version.

13. Contact

Privacy questions? Email info@togetherchurch.app.