Privacy Policy

Effective Date: April 4, 2026

At myChelper, your privacy is important to us. This Privacy Policy explains how we collect, use, disclose, and protect personal information when you use our websites, church admin tools, and mobile applications (collectively, the “Services”). For questions, contact us using the details in Contact Information below.

This notice is intended to support common expectations under laws such as the EU/UK GDPR and the California Consumer Privacy Act (CCPA) as amended by the CPRA. It does not create rights beyond what the law provides, and certain sections apply only where required for your region.

1. Who We Are (Data Controller)

The data controller responsible for personal information processed through the Services is:

[Legal entity name — e.g. myChelper LLC]
[Street address]
[City, state/province, postal code, country]
Email: [email protected]

2. Information We Collect

Account and profile data: Name, email address, and physical address when you create or manage an account or church profile; profile photo if you upload one; church affiliation and roles where applicable.
Group messaging and community content: When your church enables group chat or announcements, we process the content you send (such as message text and attachments you choose to upload), along with related metadata (for example sender, group, and timestamps). Other members and authorized church leaders who can access the group may see this content as part of the Service.
Communications and support: Information you provide when you contact support or respond to surveys.
Payment data: Donations and subscriptions are processed by Stripe. We do not store full payment card numbers on our servers; Stripe handles card data under its own privacy policy.
Device, log, and push notification data: We use Firebase Cloud Messaging (FCM) to deliver push notifications. That involves device tokens and related technical data. We may also collect diagnostic or security logs to operate and protect the Services.
Usage and analytics data: With your consent where required (for example in the mobile app in certain regions), or otherwise as described in this policy, we may collect usage data such as screens viewed, actions in the app or site, and coarse identifiers (for example a church URL name as an analytics property) to understand product usage and improve the Services. Our websites may use cookies and similar technologies as described in the Cookies and Similar Technologies section.
Church onboarding attestations: Churches may confirm eligibility requirements (such as alignment with faith-related criteria in our terms) through checkboxes or similar controls. Depending on your jurisdiction, such information may be treated as sensitive or special category data. We use it only for the purposes described at collection and as required to operate the Services.
Children’s data: The Services are not directed to children. We do not knowingly collect personal information from children under 13 (U.S.) or under the minimum age required by applicable law. If you believe we have collected such information, contact us so we can delete it.

3. How We Collect Information

We collect information directly from you (forms, messages you send, files you upload), automatically when you use the Services (logs, device tokens, analytics where enabled), and from payment processors (transaction status, not full card data on our systems).

4. Why We Use Information (Purposes)

Providing, operating, and securing the Services.
Authenticating users and managing churches, groups, and permissions.
Delivering in-app messaging, notifications, and community features.
Processing payments and fulfilling subscriptions.
Analytics and product improvement, where permitted.
Complying with law, responding to lawful requests, and enforcing our terms.

5. Legal Bases (EEA, UK, and Similar Jurisdictions)

Where GDPR-style laws apply, we rely on one or more of the following:

Contract: Processing necessary to provide the Services you request (accounts, groups, messaging core to the product, payments).
Legitimate interests: For example security, fraud prevention, service improvement, and internal reporting, where not overridden by your rights.
Consent: Where we ask for consent (such as non-essential analytics or certain cookies on the website), you may withdraw consent at any time without affecting the lawfulness of processing before withdrawal.
Legal obligation: Where we must retain or disclose information to comply with the law.

6. Cookies and Similar Technologies (Websites)

We use cookies and similar technologies for essential site operation and, where you agree through our cookie banner, for measurement and advertising tags (such as Google Ads / Google tags). You can change your choice via the banner or your browser settings. See also Google’s cookie information.

7. Third-Party Services

Stripe: Payment processing — Stripe Privacy Policy.
Google (Analytics, Ads) and Firebase (app / FCM): On this marketing website we use Google tags for analytics and advertising measurement when you allow them via our cookie banner. The myChelper app may use Google and Firebase services (including Firebase Cloud Messaging) for product features such as push delivery. See Google’s Privacy Policy, Firebase privacy information, and How Google uses data in advertising.
Other subprocessors: We use infrastructure and software vendors to host and operate the Services. A current list may be provided on request.

8. International Data Transfers

We are based in the United States and process data on servers located in the United States. If you access the Services from outside the U.S., your information will be transferred to the U.S. and other countries that may have different data protection laws. Where required, we use appropriate safeguards such as the EU Commission Standard Contractual Clauses (SCCs) or equivalent mechanisms. Contact us for more information.

9. Retention

We retain personal information for as long as needed to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements. Retention periods vary by data type, for example:

Account and church records: For the life of the account or church subscription and a reasonable period thereafter, unless a longer period is required by law.
Group messages: Stored so that members can use group chat and until deleted according to product behavior and your deletion requests, subject to backups and legal holds.
Logs and analytics: Typically retained for a limited period appropriate for security and analytics purposes.

10. Your Rights and Choices

10.1 General

Depending on your location, you may have rights to access, correct, delete, or export personal information we hold, and to object to or restrict certain processing. You may also have the right to lodge a complaint with a data protection authority in your country or region.

To exercise these rights, email [email protected] or [email protected], or use in-app or admin features where available (such as profile editing or account deletion where offered).

10.2 California (CCPA / CPRA)

If you are a California resident, you may have the right to know the categories and specific pieces of personal information we collect, the purposes for collection, and whether we “sell” or “share” personal information as those terms are defined under California law. We do not sell personal information for money. We may use analytics and advertising technologies that could be considered a “share” for cross-context behavioral advertising under California law; you can control cookies and similar technologies through our website banner and browser or platform settings.

You may have the right to request deletion or correction of personal information, subject to exceptions, and to not receive discriminatory treatment for exercising these rights. Authorized agents may submit requests as permitted by law. We will verify requests as required.

Categories of personal information collected (illustrative): identifiers (name, email, online identifiers); commercial information (transactions via Stripe); internet or network activity (usage, analytics); geolocation (coarse, derived from IP or device); audio/electronic/visual information (profile photos, message content you choose to send); professional or church affiliation information.

11. Account and Data Deletion

Mobile app: Where available, you may delete your church-linked profile from the app. That action removes your church person record and associated data that is tied to that record in our systems, including group messages and related content that our database is configured to delete with that record, subject to technical constraints and legal exceptions.

If you use the same login with multiple churches, deleting one church profile may not remove data associated with other churches or your underlying app account until separately addressed.

Email requests: You may request broader account deletion by emailing [email protected] with the subject “Account Deletion Request” and the email address on your account. Church administrators may also follow instructions in the admin portal (for example admin.mychelper.com/account-deletion).

Some information may be retained where required for legal, tax, or security reasons, or in aggregated or de-identified form.

12. Opt-Out of Analytics and Marketing Measurement

Website: Use our cookie banner choices and your browser settings. See Google’s opt-out tools.
Mobile app: Where the app prompts for analytics consent (for example in certain regions), you can accept or decline non-essential analytics. Core service data needed to run the app is still collected.

13. Security

We implement administrative, technical, and organizational measures designed to protect personal information. No method of transmission or storage is 100% secure.

14. Contact Information

For privacy questions or to exercise your rights, contact [email protected].

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will post the updated policy with a new effective date. Where required, we will provide additional notice.