Privacy Policy

We collect information at two levels:

Church account information

• Church name and contact details
• Staff user names and email addresses
• Billing information (processed by Stripe — we do not store card numbers)

Visitor information

When visitors fill out a digital connect card, the following may be collected:

• Name and email address
• Phone number (optional)
• Prayer requests and personal notes
• Visit date and how they heard about the church

We use the data we collect to:

• Provide the Ministry Manager service (dashboard, follow-up emails, visitor tracking)
• Send automated follow-up emails on behalf of your church
• Send account-related notifications (billing confirmations, service updates)
• Improve the product based on aggregate, anonymized usage patterns

We do not use visitor data for marketing, advertising, or any purpose unrelated to providing the service to your church.

We understand that prayer requests and personal notes shared by visitors are deeply personal and sensitive. We treat this data with extra care:

• Prayer requests are stored securely and encrypted at rest
• Only authorized staff members from your church can view prayer requests — no one else, including our team, accesses this data in the normal course of business
• We never use prayer requests or personal notes for marketing, analytics, AI training, or any purpose beyond displaying them to your church staff
• Prayer requests are permanently deleted when a visitor record is deleted or when your account is closed

Your data is stored on cloud infrastructure hosted in the United States (Supabase/AWS). We use industry-standard security practices including:

• Encryption in transit (TLS) and at rest
• Row-level security ensuring churches can only access their own data
• Regular backups
• Access controls limiting who on our team can access production systems

We use a small number of third-party services to operate Ministry Manager:

• Stripe — payment processing. Stripe handles all credit card data directly; we never see or store your full card number.
• Resend — email delivery for follow-up sequences and account notifications.
• Supabase — database hosting and authentication.

We do not sell, rent, or share your data with anyone else. We do not run third-party analytics or advertising trackers.

We retain your data for as long as your account is active. If you cancel your account:

• Your data is retained for 30 days after cancellation to allow you to export or reactivate
• After 30 days, all data is permanently deleted from our systems

You can request immediate deletion of your data at any time by contacting us at hello@ministrymanager.io.

As a church using Ministry Manager, you are responsible for the visitor data you collect. This includes:

• Informing visitors about what data you are collecting and how it will be used
• Ensuring your connect card usage complies with applicable privacy laws in your jurisdiction
• Managing who on your staff has access to visitor information
• Handling any data-related requests from your visitors

Ministry Manager is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has submitted information through a connect card, please contact us and we will delete it promptly.

We may update this policy from time to time. If we make meaningful changes, we will notify you by email or through the dashboard. The updated policy will be posted on this page with a revised effective date.

Questions about your privacy? Reach us at hello@ministrymanager.io.

Mosaic Ridge LLC