1. General Information

This web application ("Modern Ministry") processes personal data exclusively in accordance with applicable data protection laws, in particular the GDPR. This privacy policy explains what data is processed for what purpose and what rights you have.

2. Data We Collect

Registration & Login

To use the app, registration with an email address and password is required. This data is used exclusively for managing your user account.

Passwords are stored encrypted (via Supabase Auth with bcrypt).

Church Operations Data

Data from your connected church management software (e.g. ChurchTools) is processed to provide AI-powered operational assistance. Processing is automated through the OpenAI API. Query results are generated in real time and are not permanently stored unless explicitly saved by you.

Server Logs

The hosting provider Vercel may collect technical data (e.g., IP address, browser type, access time) to ensure the operation of the app.

Aggregate Performance Metrics (Vercel Analytics)

We use Vercel Analyticsto see how many people visit, where they come from, what device they use, and how fast pages load. No cookies are involved. IP addresses get hashed and thrown away on the server, so we don't build a profile of you.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in running and improving the app). You can opt out any time on the Cookies page, and your choice takes effect on the next page view.

Cookies & Tracking

We sort cookies into four categories. You can manage them on the Cookies page.

• Essential: needed for the app to work (Supabase Auth session, Cloudflare Turnstile bot check on signup and login, language preference). Always on. Legal basis Art. 6(1)(b) and (f) GDPR.
• Performance: Vercel Analytics, cookieless and aggregate. Legal basis Art. 6(1)(f) GDPR. You can opt out.
• Analytics: product analytics like PostHog. Only loads with your explicit consent. None active right now.
• Marketing: advertising or retargeting trackers. Only loads with your explicit consent. None in use right now.

3. Purpose of Data Processing

• Providing the functionalities of the web app
• User management and login
• AI-powered church operations assistance via OpenAI API
• System security and error analysis

4. Legal Basis

Processing is based on Art. 6 para. 1 lit. b GDPR (contract fulfillment) and Art. 6 para. 1 lit. f GDPR (legitimate interest in operating and securing the app).

5. Data Recipients

• Supabase Inc. (Auth & Database services)
• Vercel Inc. (Hosting and aggregate, cookieless analytics)
• OpenAI, L.L.C. (AI processing of consultation data)
• Cloudflare, Inc. (bot protection on the signup and login forms via the Turnstile service). When you open these forms, Cloudflare receives technical signals from your browser (such as IP address, user agent, and interaction metadata) to distinguish humans from automated abuse. See the Cloudflare Turnstile Privacy Addendum for details.

These service providers act as data processors within the meaning of the GDPR, some with headquarters in the USA. GDPR-compliant contracts (standard contractual clauses) exist.

6. Data Retention

• User data remains stored as long as an account exists
• Church operations data is processed in real time and retained only as needed
• Server logs by Vercel: according to the provider, maximum 30 days

7. Your Rights

You have the right at any time to:

• Information about your stored data
• Correction of incorrect data
• Deletion of your data ("right to be forgotten")
• Restriction of processing
• Data portability
• Object to processing

Please contact us at: hey@modernministry.ai

8. SSL Encryption

The connection to this web app is made via a secure HTTPS connection.

9. Changes

This privacy policy may be updated as needed. The current version is always available on the website.

Legal Notice (Impressum)

Information according to § 5 TMG:

Janik Dietz
Wolframstraße 25
86161 Augsburg
Germany
Email: hey@modernministry.ai

Responsible for content according to § 55 para. 2 RStV:
Janik Dietz