Privacy Policy

Effective Date: June 12, 2026

Grace Flow Connect ("we," "us," or "our") is committed to protecting the privacy of the churches, organizations, and individuals who use our platform. This Privacy Policy explains how we collect, use, disclose, and protect information in connection with the Grace Flow Connect Service ("Service").

1. Scope

This Policy applies to information collected through our website at graceflowconnect.com, our web application, and any communications between you and Grace Flow Connect. It covers two types of users:

  • Church/Organization Administrators ("Admins"): Staff or volunteers who manage your Organization's account
  • Church Members ("Members"): Individuals whose information is entered or managed through the Service by your Organization

2. Information We Collect

2.1 Information You Provide

When you create or manage an account, we collect:

  • Admin contact information: name, email address, phone number, church name and address
  • Member information entered by Admins: names, contact details, visit history, prayer requests, and check-in responses
  • Payment information: processed securely through our third-party payment processor (we do not store full card details)
  • Communications you send to us, including support requests

2.2 Information Collected Automatically

When you use the Service, we automatically collect:

  • Log data: IP address, browser type, pages visited, access times
  • Device information: device type, operating system
  • Usage data: feature interactions, message delivery status, engagement metrics
  • Cookies and similar tracking technologies (see Section 7)

2.3 Sensitive Information

Prayer requests and personal wellness information submitted through the Service may constitute sensitive personal data. We treat this information with heightened care and limit access to authorized personnel only. We do not use prayer request content for marketing or analytics purposes.

3. How We Use Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Process and route member communications (visitor follow-ups, prayer requests, check-ins, engagement messages)
  • Process payments and manage subscriptions
  • Respond to support requests and communications
  • Send transactional and service-related notifications
  • Monitor for security threats, fraud, and abuse
  • Comply with legal obligations
  • Analyze aggregate, anonymized usage trends to improve the platform

We do not sell your data or member data to third parties. We do not use member data for behavioral advertising.

4. Sharing of Information

4.1 Service Providers

We share information with trusted third-party vendors who assist us in operating the Service, including:

  • Cloud hosting and infrastructure providers
  • Payment processors
  • Email and SMS delivery services
  • Analytics and security services

All service providers are contractually required to protect information consistent with this Policy and are prohibited from using it for their own purposes.

4.2 Legal Requirements

We may disclose information if required to do so by law, subpoena, court order, or other governmental authority, or if we believe in good faith that disclosure is necessary to protect the rights, safety, or property of Grace Flow Connect, our users, or the public.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred to the successor entity, subject to the same privacy protections described in this Policy.

4.4 With Your Consent

We may share information in other ways if you give us explicit consent to do so.

5. Data Retention

We retain account and member data for the duration of your active subscription plus a reasonable period thereafter to comply with legal obligations, resolve disputes, and enforce our agreements. When you request deletion or terminate your account, we will delete or anonymize your data within ninety (90) days, except where retention is required by law.

You can request an export of your data at any time through your account settings or by contacting us.

6. Data Security

We implement industry-standard technical and organizational security measures to protect your information, including:

  • Encryption in transit (TLS/HTTPS) and at rest
  • Access controls and role-based permissions
  • Regular security assessments and monitoring
  • Employee training on data handling and privacy

No method of transmission or storage is 100% secure. In the event of a data breach affecting your information, we will notify you as required by applicable law.

7. Cookies

We use essential cookies to operate the Service (session management, authentication) and analytics cookies to understand how the Service is used. You can control non-essential cookies through your browser settings. Disabling cookies may affect certain Service functionality.

We do not use third-party advertising cookies or cross-site tracking technologies.

8. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request a copy of the information we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal information, subject to legal obligations
  • Portability: Request a machine-readable copy of your data
  • Opt-Out: Unsubscribe from non-essential communications at any time

Church Admins may exercise these rights on behalf of their Organization. Individual Members should contact their church directly; Admins can assist using the tools available in the platform.

To submit a privacy request directly, email us at [email protected].

9. Children's Privacy

The Service is intended for use by church organizations and is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us and we will promptly delete it.

Organizations that use the Service in connection with youth ministries are responsible for obtaining appropriate parental consents under applicable law (including COPPA where applicable).

10. Third-Party Links

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties and encourage you to review their privacy policies.

11. U.S. State Privacy Laws

Residents of certain states (including California, Virginia, Colorado, Texas, and others) may have additional rights under applicable state privacy laws. We honor verifiable requests to access, correct, delete, or opt out of the sale of personal information (we do not sell personal information) as required by applicable law. To exercise these rights, contact us at [email protected].

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or in-app notice before the effective date. We encourage you to review this Policy periodically. Continued use of the Service after changes take effect constitutes acceptance.

13. Contact Us

If you have questions, concerns, or privacy requests, please reach out:

Grace Flow Connect

Email: [email protected]

Phone: 812-287-2610

Website: graceflowconnect.com

Last updated: June 12, 2026