Privacy Policy
Last updated: June 2, 2026
1. Who We Are
EasyChurchApp is a website-building and church-management platform operated by EasyChurchApp, LLC (“we,” “us,” or “our”). We provide tools for Christian churches to build public websites and manage their congregations. This Privacy Policy explains what information we collect, how we use it, and your rights as a user.
Questions? Reach us at support@easychurchapp.com.
2. What We Collect
Account information: When you create an account, we collect your name, email address, and date of birth. Date of birth is collected solely to verify that you meet our minimum age requirement (see Section 7) — we do not use it for marketing, profiling, or analytics. We also record the date and version of the Terms of Service and Privacy Policy you accepted at signup as evidence of consent.
Church information: You provide your church’s name, address, service times, logo, and other details to populate your public website.
Member data: If you use the member portal (App plan), you manage your own congregation data — names, emails, giving records, group memberships, etc. You are the data controller for your members; we are the processor.
Giving records: If your church uses online giving, donations are processed through Stripe. We store giving records (amount, fund, donor name) for reporting and statement generation. Card numbers are never stored by us — Stripe handles all payment processing.
Family and child profiles (mobile app): The mobile app includes a “My Family” feature where members can store child profiles — name, date of birth, allergy/medical notes, and emergency contact information — for use in event registration and church check-in. This information is visible only to the member and their church administrators, and is never shared outside the church workspace.
Push notification token (mobile app): If you grant notification permission in the mobile app, we store a device push token issued by Apple (APNs) or Google (Firebase Cloud Messaging) to deliver notifications from your church — event reminders, prayer wall activity, and group messages. You can revoke permission at any time in your device Settings. We do not use push tokens for advertising.
Location (mobile app — Outreach Walk only): The Outreach Walk feature requests access to your device’s location to display your position on a canvassing route map. Location is used only during an active walk session while the app is in the foreground. We do not store your precise GPS coordinates, and location access is never used in the background.
Usage data: We collect basic analytics on page views and feature usage to improve the product. We do not sell this data.
Cookies (web): We use session cookies for authentication and preference cookies for admin UI state. We do not use advertising cookies or cross-site trackers. First-time visitors to the marketing site and to church public sites are shown a cookie consent banner with two choices: “Accept all” (allows optional product-analytics cookies if we enable them in the future) and “Necessary only” (auth + Stripe SCA cookies only). Your choice is stored in your browser; you can change it at any time via the “Cookie preferences” link in the footer. We honor the browser-level Do-Not-Track signal as “Necessary only.”
3. How We Use Your Data
- To provide, maintain, and improve the EasyChurchApp platform
- To send transactional emails (auth, notifications, giving statements)
- To generate reports and statements for your church administration
- To communicate product updates, changes to terms, and important service notices
- To prevent fraud, abuse, and violations of our Terms of Service
We do not use your data for advertising. We do not sell or share your data with third parties except as necessary to operate the platform (see Section 4).
4. Third-Party Services
We rely on the following sub-processors to deliver EasyChurchApp. Each handles data only as necessary to perform their function:
- Supabase — database, authentication, and file storage (primary region: United States)
- Vercel — application hosting and edge delivery (servers in US/EU)
- Stripe — payment processing for church giving and platform subscriptions. Stripe stores payment information under its own retention policies, separately from EasyChurchApp.
- Resend — transactional email delivery
- Cloudflare — CAPTCHA (Turnstile) for sign-up and form protection
- Sentry — application error tracking and crash reports. Captured payloads may include request URLs, stack traces, and account identifiers necessary to reproduce errors; we do not send payment data, passwords, or member contact info to Sentry.
- Apple (APNs) — push notifications on iOS devices (device token and notification payload only)
- Google (Firebase Cloud Messaging) — push notifications on Android devices (device token and notification payload only)
5. Data Retention
Your data is retained for as long as your account is active. Upon cancellation:
- Your church data is available for export for 30 days
- After 30 days, church content and member data is permanently deleted
- Giving and financial records are retained for 7 years per IRS recordkeeping requirements, then permanently deleted from our systems
- Backup copies may persist for up to 90 days before purging from all systems
- Payment records held by Stripe (our payment processor) are subject to Stripe’s own retention policy and may persist independently of the above timelines
5a. Deleting an individual member account
You can delete your own account from Account settings in the app. We send a confirmation email; once you confirm, there is a 14-day cooling-off period before the deletion actually runs. During those 14 days, a banner appears across the app with a one-click Cancel button. After the period elapses, an automated job removes your personal data per the rules below. The deletion is logged in our compliance audit log; the log entry itself is retained.
The defaults below apply unless you override them via the “Customize what happens to each type of data” expander on the deletion screen.
| Data | What happens on member self-delete |
|---|---|
| Your login (email + password) | Deleted. You can’t sign in afterwards. |
| Profile (name, email, phone) | Deleted. |
| Prayer requests (you choose) | Default anonymized (shown as “Former member”) so the church’s prayer record stays intact. Override to delete available. |
| Comments (you choose) | Default deleted. Override to anonymize available. |
| Direct messages you sent (you choose) | Default the body is replaced with “[Former member’s messages deleted]”; the recipient keeps their own side of the conversation. Override to fully remove available. |
| Event RSVPs (you choose) | Default anonymized (counted in headcount as anonymous). Override to delete available. |
| Group memberships and attendance (you choose) | Default anonymized in roster history. Override to delete available. |
| Giving amounts, dates, and funds | Retained per IRS rule (§170(f)(8) — 7-year donation records). Your name is anonymized on receipts. |
| Recurring giving subscriptions | Cancelled in Stripe the moment you confirm. |
| Children’s profiles (permission slips, allergies, emergency contacts) | Archived, not deleted. These are church safeguarding records retained per church policy. The parent’s link to the child is removed. |
| Compliance audit log entries | Retained. Records of your deletion request and its completion are kept for compliance. |
Admin-initiated deletion (GDPR / CCPA requests): If a church administrator deletes an account in response to a formal legal request, the destructive parts of the table above run immediately, without the 14-day cooling-off period. Children’s profiles are removed in that path, because a formal legal request is broader in scope than a personal account decision.
Archive vs delete: A church admin can also archive a member (e.g. when someone moves to another church). Archive is a soft action — the person is hidden from the active directory and stops counting toward the church’s billing tier, but all data is preserved and they can be un-archived at any time. Archive is not a deletion.
6. Your Rights — Universal
Regardless of where you’re located, you can:
- Access — request a copy of the personal data we hold about you
- Correct — update incorrect or outdated information via your account settings
- Export — download your church data at any time via Admin → Settings → Export
- Delete — request deletion of your account and associated data
To exercise any of these rights, email us at support@easychurchapp.com. We will respond within 30 days (or sooner if required by your jurisdiction).
6a. California Residents (CCPA / CPRA)
If you are a California resident, the California Consumer Privacy Act (as amended by the CPRA) gives you the following rights regarding your personal information:
- Right to know — what categories of personal information we collect, the sources, the business purposes, and the categories of third parties with whom we share it (all disclosed in Sections 2 – 4 above)
- Right to access — a copy of the specific personal information we have collected about you in the prior 12 months
- Right to delete — request deletion of personal information we have collected about you, subject to legal retention obligations (e.g. IRS recordkeeping for giving records)
- Right to correct — request correction of inaccurate personal information
- Right to opt out of sale or sharing — we do not sell your personal information and we do not share it for cross-context behavioral advertising. No opt-out is needed because no such activity occurs.
- Right to limit use of sensitive personal information — sensitive categories we may process include precise geolocation (only during an active Outreach Walk session), account credentials, and information about minors entered by parents/guardians. We use these only for the purposes disclosed and do not use them for inferences about you
- Right to non-discrimination — we will not deny you service, charge you a different price, or provide a different level of quality because you exercised any CCPA right
- Right to designate an authorized agent — you may use an authorized agent to submit a request on your behalf; we will require verification of the agent’s authority and your identity
Submit any of the above requests via email to support@easychurchapp.com with subject line “California Privacy Request.” We will verify your identity by matching the request against information already in your account before responding.
Categories of personal information collected in the prior 12 months: identifiers (name, email, account ID), commercial information (subscription history), internet activity (page views, feature usage), geolocation (only during Outreach Walk), professional information (church role), and inferences drawn from the above (e.g., active vs. inactive users for product improvement).
Sources: directly from you, automatically from your use of the Service, and from sub-processors listed in Section 4. Business purposes: providing the Service, security, fraud prevention, analytics, and complying with legal obligations.
6b. Other U.S. State Residents
Residents of Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), Texas (TDPSA), Oregon (OCPA), Montana (MCDPA), Iowa (ICDPA), Tennessee (TIPA), Indiana, Delaware, New Hampshire, New Jersey, Nebraska, Maryland, Minnesota, Kentucky, Rhode Island, and other states with comprehensive privacy laws have rights similar to those described above for California residents, including the rights to access, correct, delete, and opt out of targeted advertising or the sale of personal data. As stated above, we do not sell personal data and do not engage in targeted advertising. To exercise any state-law right, email support@easychurchapp.com with subject line “Privacy Request.”
We do not engage in profiling that produces legal or similarly significant effects on you. We do not process personal data for automated decision-making.
6c. EU, EEA, UK, and Swiss Residents (GDPR / UK GDPR)
EasyChurchApp is operated from the United States and primarily serves U.S. churches. If you are located in the European Union, European Economic Area, United Kingdom, or Switzerland, the following applies:
Data Controller: EasyChurchApp, LLC, reachable at support@easychurchapp.com. We have not appointed an EU representative under Article 27 GDPR because our activities are not directed at the EU; if you are an EU resident using the Service, you do so on your own initiative.
Legal basis for processing (Article 6 GDPR):
- Contract (Art. 6(1)(b)) — processing necessary to provide the Service you signed up for
- Legitimate interests (Art. 6(1)(f)) — fraud prevention, security, analytics, product improvement, and direct communication about the Service
- Legal obligation (Art. 6(1)(c)) — tax recordkeeping for giving records, responding to lawful requests
- Consent (Art. 6(1)(a)) — push notifications, location access during Outreach Walk, optional analytics cookies (when applicable)
Special categories of personal data (Article 9 GDPR): the Service may incidentally process information that reveals religious belief (e.g. church membership) and health information (allergy/medical notes entered by parents on child profiles). We process these on the basis of explicit consent (Art. 9(2)(a)) and the legitimate-activities exemption for not-for-profit religious bodies (Art. 9(2)(d)) where applicable.
Your rights under GDPR / UK GDPR (Articles 15–22):
- Access (Art. 15) — confirmation that we process your data, and a copy of it
- Rectification (Art. 16) — correct inaccurate or incomplete data
- Erasure / right to be forgotten (Art. 17) — subject to legal retention obligations
- Restriction of processing (Art. 18)
- Data portability (Art. 20) — receive your data in a structured, machine-readable format (we offer this via Admin → Settings → Export)
- Object to processing based on legitimate interests (Art. 21)
- Not be subject to automated decision-making (Art. 22) — we do not engage in such decision-making
- Withdraw consent at any time where processing is based on consent
- Lodge a complaint with your local supervisory authority (e.g. ICO in the UK, CNIL in France, your national Data Protection Authority) — though we hope you’ll contact us first so we can resolve your concern directly
International transfers: Because we are U.S.-based, using the Service involves transferring your personal data to the United States. Where required by law, transfers are protected by the European Commission’s Standard Contractual Clauses (SCCs) incorporated into our agreements with sub-processors (Supabase, Vercel, Stripe, Resend, Cloudflare, Sentry), and by additional supplementary measures such as TLS encryption in transit and encryption at rest. You may request a copy of the relevant SCCs by emailing support@easychurchapp.com.
Retention: as described in Section 5 above.
7. Children’s Privacy
Minimum age to create an account: You must be at least 13 years old to create an EasyChurchApp account. The mobile app collects date of birth at signup and rejects account creation for anyone under 13. We do not knowingly collect personal information from children under 13 through the account-creation flow. If we discover that we have collected such information without verified parental consent, we will delete it.
Family / child profiles (parent-managed): The mobile app’s “My Family” feature allows a parent or guardian to store records about their minor children — name, date of birth, allergy/medical notes, and emergency contact information — for church check-in and event registration. These children are not users of the platform: they have no login, no profile of their own, no push notifications, and no analytics identity. All information is entered by and visible only to the parent/guardian and authorized church administrators.
Parental authority confirmation: Each time a parent or guardian adds a child to their family, the app requires an explicit confirmation that the adult is the child’s parent or legal guardian and has the authority to provide the information. The date and version of that confirmation are recorded against the parent’s account.
If you are a church administrator using our platform to manage children’s ministry enrollment, attendance, or other youth records, you are responsible for obtaining appropriate parental consent under applicable law (COPPA, GDPR-K, etc.) before entering any minor’s personal information into the system.
8. Security
We implement reasonable technical and organizational measures to protect your data, including encrypted connections (HTTPS/TLS), authentication via Supabase Auth, and role-based access controls. No system is completely secure — we cannot guarantee absolute security, and you use the platform at your own risk. Please notify us immediately at support@easychurchapp.com if you become aware of any security incident.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email or a notice in your admin dashboard at least 14 days before they take effect. The “last updated” date at the top of this page reflects the most recent revision.
10. Contact
Privacy questions, data requests, or concerns: support@easychurchapp.com. See also our Terms & Conditions.