Privacy Policy

This policy explains how ChurchPlan (the “Application”) collects, uses and protects users’ personal data. ChurchPlan is a management application for churches (songs, playlists, members, events), intended for authorized users of partner churches.

1. Who we are

ChurchPlan is operated by ChurchPlan ("We"). For questions related to data protection, you can contact us at support@churchplan.app.

2. What data we collect

  • Account information: first name, last name, email address, password (stored encrypted).
  • Organizational context: current church, current band, roles and permissions.
  • Operational content: songs, playlists, events, calendars, members, persons associated with the church.
  • Activity logs and preferences (e.g. number of records per page).
  • Technical session cookies: the session token (e.g. „squey_token”).

3. How we use the data

  • For authentication and maintaining the user’s session.
  • For managing church content (events, members, songs, playlists).
  • For enforcing permissions and strict separation per church (multi-tenancy).
  • For internal communications (confirmation emails, notifications, password reset).
  • For improving the experience and ensuring security.

Note: all songs added to the application are visible and accessible to all users, even if they are not from the same church.

4. Legal basis

We process data based on the legitimate interest of churches to manage their activities and community, as well as based on the performance of the contract/consent for using the application. We comply with the provisions of Regulation (EU) 2016/679 (GDPR).

5. Cookies

We use cookies strictly necessary for the session and operation (e.g. „squey_token”). They enable authentication, session maintenance and correct display of permissions. We do not use tracking or advertising cookies.

6. Security

  • Passwords are stored in encrypted form.
  • Data is accessible only to authorized users, according to permissions.
  • Data separation per church is strict: users see only the data of the current church in which they have rights, except for songs which are visible to all users of the application.

7. Data sharing

We do not share data with third parties for commercial purposes. Data may be processed by technical providers (email services, hosting) within the limits necessary for operating the application.

8. Data retention

We keep data for the period of use of the application and in accordance with church policies. Upon account deactivation or upon request, data may be deleted/anonymized within legal and operational limits.

9. Your rights

  • The right of access to your data.
  • The right to rectification and updating.
  • The right to erasure („the right to be forgotten”), to the extent permitted by law.
  • The right to restriction of processing.
  • The right to data portability.
  • The right to object.
  • The right to lodge a complaint with the supervisory authority (ANSPDCP).

To exercise your rights, contact us at support@churchplan.app.

10. Integration with mobile apps

In the context of mobile applications (e.g. iOS/Android), certain attributes (e.g. permissions, the name of the current church/band) may be exposed as data-* on the page for UI initialization. These attributes are derived from the current session and do not expose raw IDs.

11. Changes

We may update this policy periodically. The current version is published in the application. Continued use implies acceptance of the changes.

12. Contact

For any question related to privacy, write to us at support@churchplan.app.

13. Account Deletion

This section is intended for our Google Play listing and clearly describes how you can delete your ChurchPlan account and what happens to your data.

Steps to delete your account in the app:
  • Log in to the ChurchPlan app.
  • Open the „More” menu.
  • Go to „My profile”.
  • Select the „Delete account” option and confirm.
What data is deleted:
  • Account data (name, email), credentials and associated preferences.
  • Your associations with the current church/band and your personal permissions.
What data may be retained:
  • Within the limits of the law, we may retain strictly legal/transactional records (e.g. accounting documents) that cannot be deleted immediately.
  • Songs added and already used in the system (e.g. in playlists or events) remain available as church resources and are not deleted when the account is deleted.
Retention period:

Deletion of account data is performed immediately after confirmation. There is no additional retention period, except for data that must be kept by law (see the section above).