Privacy Policy

Data Controller:
Janik Dietz
Wolframstraße 25
86161 Augsburg
Germany
Email: hey@modernministry.ai


1. General Information

This web application ("Modern Ministry") processes personal data exclusively in accordance with applicable data protection laws, in particular the GDPR. This privacy policy explains what data is processed for what purpose and what rights you have.


2. Data We Collect

Registration & Login

To use the app, registration with an email address and password is required. This data is used exclusively for managing your user account.

Passwords are stored encrypted (via Supabase Auth with bcrypt).

Church Data and AI Assistance

When you connect your church management software (e.g. ChurchTools), data from it is processed to provide AI-powered assistance for church operations and, when you have access, finance and booking work. This assistance is delivered through one in-app assistant, and your private conversations may be stored so you can revisit them. AI inference runs on Google Vertex AI in the EU region. Results are generated in real time and are not permanently stored unless you save them or they form part of a saved conversation.

Sermon Transcription

If you use the transcription feature, sermon audio you upload is transcribed into text. Transcription is carried out by Mistral, an EU-based provider. The audio and the resulting transcript are stored in your account so you can access them.

Finance Receipts

For finance workflows you can submit receipts, including by email. Inbound receipt email is handled by Mailgun in the EU. Receipts are stored so they can be matched to bookings.

Server Logs

The hosting provider Vercel may collect technical data (e.g., IP address, browser type, access time) to ensure the operation of the app.

Aggregate Performance Metrics (Vercel Analytics)

We use Vercel Analyticsto see how many people visit, where they come from, what device they use, and how fast pages load. No cookies are involved. IP addresses get hashed and thrown away on the server, so we don't build a profile of you.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in running and improving the app). You can opt out any time on the Cookies page, and your choice takes effect on the next page view.


Cookies & Tracking

We sort cookies into four categories. You can manage them on the Cookies page.

  • Essential: needed for the app to work (Supabase Auth session, Cloudflare Turnstile bot check on signup and login, language preference). Always on. Legal basis Art. 6(1)(b) and (f) GDPR.
  • Performance: Vercel Analytics, cookieless and aggregate. Legal basis Art. 6(1)(f) GDPR. You can opt out.
  • Analytics: product analytics like PostHog. Only loads with your explicit consent. None active right now.
  • Marketing: advertising or retargeting trackers. Only loads with your explicit consent. None in use right now.

3. Purpose of Data Processing

  • Providing the functionalities of the web app
  • User management and login
  • AI-powered assistance for church operations and finance and booking classification via Google Vertex AI (EU region)
  • Transcription of sermon audio you upload
  • System security and error analysis

4. Legal Basis

Processing is based on Art. 6 para. 1 lit. b GDPR (contract fulfillment) and Art. 6 para. 1 lit. f GDPR (legitimate interest in operating and securing the app).


5. Data Recipients

  • Supabase Inc. (Auth & Database services)
  • Vercel Inc. (Hosting and aggregate, cookieless analytics)
  • Google (Vertex AI, EU region; AI processing of church operations and finance data)
  • Mistral AI (sermon transcription, EU)
  • Mailgun (inbound receipt email, EU)
  • Resend (email delivery, e.g. newsletter)
  • Railway (Finance MCP backend hosting, EU)
  • Cloudflare, Inc. (bot protection on the signup and login forms via the Turnstile service). When you open these forms, Cloudflare receives technical signals from your browser (such as IP address, user agent, and interaction metadata) to distinguish humans from automated abuse. See the Cloudflare Turnstile Privacy Addendum for details.

These service providers act as data processors within the meaning of the GDPR, some with headquarters in the USA. GDPR-compliant contracts (standard contractual clauses) exist.


6. Data Retention

  • User data remains stored as long as an account exists
  • Church operations data is processed in real time and retained only as needed
  • Server logs by Vercel: according to the provider, maximum 30 days

7. Your Rights

You have the right at any time to:

  • Information about your stored data
  • Correction of incorrect data
  • Deletion of your data ("right to be forgotten")
  • Restriction of processing
  • Data portability
  • Object to processing

Please contact us at: hey@modernministry.ai


8. SSL Encryption

The connection to this web app is made via a secure HTTPS connection.


9. Changes

This privacy policy may be updated as needed. The current version is always available on the website.


Legal Notice (Impressum)

Information according to § 5 TMG:

Janik Dietz
Wolframstraße 25
86161 Augsburg
Germany
Email: hey@modernministry.ai

Responsible for content according to § 55 para. 2 RStV:
Janik Dietz