Effective Date: April 7, 2025
FaithLedger, LLC ("FaithLedger," "we," "us," or "our") operates the FaithLedger church treasury management platform, accessible at faithledgerapp.com and related subdomains (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard information about the churches, organizations, and individuals ("you" or "your") who use our Service.
We take the privacy of church financial data seriously. FaithLedger is designed for stewardship teams who handle sensitive congregational and organizational information, and we hold ourselves to a high standard of data protection. Please read this policy carefully. By accessing or using the Service, you agree to the practices described herein.
We collect information in three ways: information you provide directly, information collected automatically through your use of the Service, and information received from third-party integrations you authorize.
| Category | Examples |
|---|---|
| Account & Identity | Name, email address, phone number, password (hashed) |
| Church / Organization | Church name, address, congregation size, denomination |
| Financial Records | Transaction data, chart of accounts, budgets, vendor details, bank account metadata (not account numbers) |
| Donor & Giving Data | Donor names, giving history, pledge records imported by your church |
| Payroll & Personnel | Staff names, compensation data entered by church administrators |
| Contact Inquiries | Name, church, message, and phone number submitted via the Request More Info form |
When you use the Service, we automatically collect certain technical information, including your IP address, browser type and version, operating system, pages visited, time spent on pages, referring URLs, and device identifiers. We use this data solely for security monitoring, performance optimization, and aggregate analytics. We do not sell or share this data with advertisers.
If you connect a bank account via Plaid, we receive transaction data, account balances, and account metadata from Plaid's API. We do not store your bank login credentials. If you import data from QuickBooks, Planning Center, Pushpay, or other platforms via CSV or API, that data is stored in your church's isolated database partition. FaithLedger does not share this data across church accounts.
We use the information we collect to:
We do not use your church's financial data to train AI models, sell to third parties, or target advertising. Your congregation's data is yours.
FaithLedger is a multi-tenant platform. Each church or organization is assigned a unique client_id and all data — transactions, budgets, donors, users, and documents — is strictly scoped to that identifier. Row-Level Security (RLS) policies enforced at the database layer ensure that no end user can ever query, view, or modify another church's records through the application, regardless of their role or permissions within their own organization.
FaithLedger staff access. FaithLedger personnel retain direct database-level access to all client data. This access exists solely to provide customer support, verify that transactions are posting correctly, investigate and correct data errors, perform platform maintenance, and carry out other administrative tasks necessary to operate the service reliably. Staff access is not mediated by the application's RLS policies; it is controlled through separate, privileged credentials that are restricted to authorized personnel.
We treat your data with the same care we expect from our own vendors. Staff access to church data is limited to what is necessary to resolve a specific issue or perform a specific operational task. We do not browse, analyze, or share your organization's financial records for any purpose outside of operating and improving the FaithLedger platform.
FaithLedger uses Plaid Technologies, Inc. ("Plaid") to connect your financial institution accounts to our Service. By connecting a bank account, you acknowledge that your financial data will be handled in accordance with both this Privacy Policy and Plaid's End User Privacy Policy.
When you connect a bank account through FaithLedger:
For full details on how Plaid collects, uses, and protects your data, please review Plaid's End User Privacy Policy.
We do not sell, rent, or trade your personal or church data. We share data only in the following limited circumstances:
| Recipient | Purpose | Data Processing Agreement |
|---|---|---|
| Supabase (database & auth) | Hosts the database and authentication infrastructure | Yes |
| Plaid Technologies | Facilitates bank account connections; governed by Plaid's own privacy policy | Yes |
| Resend / Twilio | Delivers transactional email and SMS notifications; no financial data is transmitted | Yes |
| Stripe (if applicable) | Processes subscription payments; FaithLedger does not store full card numbers | Yes |
| Law enforcement / courts | When required by valid legal process, subpoena, or court order | N/A |
| Business transfers | In the event of a merger, acquisition, or sale of assets, subject to confidentiality obligations | N/A |
All sub-processors listed above are bound by data processing agreements or equivalent contractual obligations requiring them to protect your data in a manner consistent with this Privacy Policy.
We take the security of your data seriously. Our security practices include:
No method of transmission or storage is 100% secure. In the event of a data breach affecting your information, we will notify you within 72 hours of becoming aware of the incident, consistent with applicable law. We encourage you to use strong, unique passwords and to report any suspected security incidents to [email protected].
We retain your data for as long as your account is active or as needed to provide the Service. Specifically:
You may request an export of all your church's data at any time by contacting us at [email protected]. We will provide a machine-readable export within 10 business days.
FaithLedger uses essential session cookies to maintain your authenticated state. We do not use third-party advertising cookies or cross-site tracking technologies. We use privacy-respecting analytics (aggregate page views and feature usage) to improve the product. No personally identifiable information is included in analytics data.
The Service is not directed to children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us at [email protected] and we will promptly delete it.
Depending on your jurisdiction, you may have the following rights regarding your personal data:
| Right | Description |
|---|---|
| Access | Request a copy of the personal data we hold about you |
| Correction | Request correction of inaccurate or incomplete data |
| Deletion | Request deletion of your personal data (subject to legal retention obligations) |
| Portability | Receive your data in a structured, machine-readable format |
| Objection | Object to certain processing activities |
| Withdrawal of consent | Withdraw consent where processing is based on consent |
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.
This Privacy Policy is governed by the laws of the State of Florida. FaithLedger complies with applicable U.S. federal and state privacy laws. We will update this policy as new state privacy frameworks take effect in jurisdictions where our subscribers are located.
We may update this Privacy Policy from time to time. When we make material changes, we will notify account administrators via email and display a notice within the application at least 14 days before the changes take effect. Continued use of the Service after the effective date constitutes acceptance of the updated policy.
If you have questions, concerns, or requests regarding this Privacy Policy, please contact us: