Privacy Policy

PrayBloom ("Company," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application ("Service"). Please read this policy carefully. By using the Service, you consent to the practices described herein.

Effective Date: February 8, 2026

1. Information We Collect

a. Information You Provide

Account Information: Email address, password, display name or nickname
Social Login Data: When you sign in via Google or other social providers, we receive your social account identifier, email address, and profile information (as permitted by you)
User Content: Prayer records (titles, content, dates, responses), AI chat counseling conversations, and any other content you create within the Service
Payment Information: If you subscribe to a paid plan, payment details are processed by Paddle, our authorized payment processor. We do not store your full credit card number. For more information, see Paddle's Privacy Policy.

b. Information Collected Automatically

Device Information: Device type, operating system and version, unique device identifiers
Log Data: IP address, access times, app version, pages viewed, and actions taken within the Service
Usage Data: Feature usage patterns, session duration, and interaction data

2. How We Use Your Information

We use the information we collect for the following purposes:

Provide the Service: To operate, maintain, and deliver the features of the Service, including prayer management and AI chat counseling
Account Management: To create and manage your account, authenticate your identity, and prevent fraud
Communication: To send you service-related notices, updates, and security alerts
Improvement: To analyze usage patterns, diagnose technical issues, and improve the Service
Legal Compliance: To comply with applicable laws, regulations, and legal processes

3. Disclosure of Your Information

We do not sell your personal information. We may share your information in the following circumstances:

Service Providers: We use third-party services to help operate the Service, including:
- AI API providers (e.g., OpenAI) — your chat conversation content is transmitted to generate AI responses
- Cloud hosting providers (e.g., Supabase) — for data storage and server infrastructure
- Paddle (payment processor) — to securely process subscription payments. Paddle handles billing, tax compliance, and payment security. We do not store your full credit card number.
Legal Requirements: We may disclose information if required by law, subpoena, court order, or government request
Protection of Rights: To protect the rights, property, or safety of the Company, our users, or the public
Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction

4. Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this policy:

Account information: Until you delete your account. Upon deletion, your data is removed within 30 days, except as required by law.
Prayer records & chat history: Until you delete your account or individual records. You may delete individual records at any time within the app.
Usage and log data: Retained for up to 12 months for service improvement and security purposes.
Payment records: Retained as required by applicable tax and financial regulations (typically 3-7 years).

5. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

Access: Request a copy of the personal information we hold about you
Correction: Request correction of inaccurate or incomplete information
Deletion: Request deletion of your personal information
Data Portability: Request your data in a portable format
Opt-Out: Opt out of certain data processing activities

To exercise these rights, use the account settings within the app or contact us at the email address listed below. We will respond within 45 days of receiving your request.

6. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

Right to Know: You may request the categories and specific pieces of personal information we have collected, the sources of collection, the business purposes, and the categories of third parties with whom we share it.
Right to Delete: You may request that we delete your personal information, subject to certain legal exceptions.
Right to Correct: You may request that we correct inaccurate personal information.
Right to Opt-Out of Sale/Sharing: We do not sell or share your personal information for cross-context behavioral advertising as defined by the CCPA/CPRA.
Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To submit a request, contact us at our support email. We may verify your identity before fulfilling your request.

7. Children's Privacy (COPPA)

The Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child under 13 has provided us with personal information, please contact us immediately. We will take steps to delete such information promptly. Users between 13 and 18 must have parental consent to use the Service.

8. AI Chat Counseling & Data Processing

AI Chat Counseling is powered by third-party AI technology. Your conversation content is transmitted to the AI service provider to generate responses.
We may analyze anonymized and aggregated chat data to improve service quality. Individual conversations are not reviewed by Company staff unless required for safety or legal compliance.
Your chat content is encrypted in transit and at rest. Only you can access your conversation history.
AI counseling does not constitute professional advice. For medical, psychological, or legal matters, please consult qualified professionals.

9. Cookies and Tracking Technologies

As a mobile application, we do not use traditional browser cookies. However, we may use:

Local storage: To save your preferences and session data on your device
Analytics tools: To collect anonymized usage statistics to improve the Service

Do Not Track: Our Service does not currently respond to "Do Not Track" browser signals. However, you can control data collection through your device settings.

10. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your personal information:

Encryption of data in transit (TLS/SSL) and at rest
Access controls and authentication for internal systems
Regular security assessments and updates
Limited staff access to personal information on a need-to-know basis

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have data protection laws that differ from those in your jurisdiction. By using the Service, you consent to the transfer of your information to such countries. We take appropriate safeguards to ensure your data is protected in accordance with this Privacy Policy.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy within the Service and updating the "Effective Date" above. We encourage you to review this policy periodically. Your continued use of the Service after changes become effective constitutes your acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

PrayBloom Privacy Team

Email: privacy@praybloom.com

If you are not satisfied with our response, you may have the right to lodge a complaint with a supervisory authority, such as the Federal Trade Commission (FTC) or your state's Attorney General.

Effective Date: February 8, 2026

Privacy Policy

Effective Date: February 8, 2026

1. Information We Collect

a. Information You Provide

Account Information: Email address, password, display name or nickname
Social Login Data: When you sign in via Google or other social providers, we receive your social account identifier, email address, and profile information (as permitted by you)
User Content: Prayer records (titles, content, dates, responses), AI chat counseling conversations, and any other content you create within the Service
Payment Information: If you subscribe to a paid plan, payment details are processed by Paddle, our authorized payment processor. We do not store your full credit card number. For more information, see Paddle's Privacy Policy.

b. Information Collected Automatically

Device Information: Device type, operating system and version, unique device identifiers
Log Data: IP address, access times, app version, pages viewed, and actions taken within the Service
Usage Data: Feature usage patterns, session duration, and interaction data

2. How We Use Your Information

We use the information we collect for the following purposes:

Provide the Service: To operate, maintain, and deliver the features of the Service, including prayer management and AI chat counseling
Account Management: To create and manage your account, authenticate your identity, and prevent fraud
Communication: To send you service-related notices, updates, and security alerts
Improvement: To analyze usage patterns, diagnose technical issues, and improve the Service
Legal Compliance: To comply with applicable laws, regulations, and legal processes

3. Disclosure of Your Information

We do not sell your personal information. We may share your information in the following circumstances:

Service Providers: We use third-party services to help operate the Service, including:
- AI API providers (e.g., OpenAI) — your chat conversation content is transmitted to generate AI responses
- Cloud hosting providers (e.g., Supabase) — for data storage and server infrastructure
- Paddle (payment processor) — to securely process subscription payments. Paddle handles billing, tax compliance, and payment security. We do not store your full credit card number.
Legal Requirements: We may disclose information if required by law, subpoena, court order, or government request
Protection of Rights: To protect the rights, property, or safety of the Company, our users, or the public
Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction

4. Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this policy:

Account information: Until you delete your account. Upon deletion, your data is removed within 30 days, except as required by law.
Prayer records & chat history: Until you delete your account or individual records. You may delete individual records at any time within the app.
Usage and log data: Retained for up to 12 months for service improvement and security purposes.
Payment records: Retained as required by applicable tax and financial regulations (typically 3-7 years).

5. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

Access: Request a copy of the personal information we hold about you
Correction: Request correction of inaccurate or incomplete information
Deletion: Request deletion of your personal information
Data Portability: Request your data in a portable format
Opt-Out: Opt out of certain data processing activities

To exercise these rights, use the account settings within the app or contact us at the email address listed below. We will respond within 45 days of receiving your request.

6. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

Right to Know: You may request the categories and specific pieces of personal information we have collected, the sources of collection, the business purposes, and the categories of third parties with whom we share it.
Right to Delete: You may request that we delete your personal information, subject to certain legal exceptions.
Right to Correct: You may request that we correct inaccurate personal information.
Right to Opt-Out of Sale/Sharing: We do not sell or share your personal information for cross-context behavioral advertising as defined by the CCPA/CPRA.
Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To submit a request, contact us at our support email. We may verify your identity before fulfilling your request.

7. Children's Privacy (COPPA)

8. AI Chat Counseling & Data Processing

AI Chat Counseling is powered by third-party AI technology. Your conversation content is transmitted to the AI service provider to generate responses.
We may analyze anonymized and aggregated chat data to improve service quality. Individual conversations are not reviewed by Company staff unless required for safety or legal compliance.
Your chat content is encrypted in transit and at rest. Only you can access your conversation history.
AI counseling does not constitute professional advice. For medical, psychological, or legal matters, please consult qualified professionals.

9. Cookies and Tracking Technologies

As a mobile application, we do not use traditional browser cookies. However, we may use:

Local storage: To save your preferences and session data on your device
Analytics tools: To collect anonymized usage statistics to improve the Service

Do Not Track: Our Service does not currently respond to "Do Not Track" browser signals. However, you can control data collection through your device settings.

10. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your personal information:

Encryption of data in transit (TLS/SSL) and at rest
Access controls and authentication for internal systems
Regular security assessments and updates
Limited staff access to personal information on a need-to-know basis

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

11. International Data Transfers

12. Changes to This Privacy Policy

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

PrayBloom Privacy Team

Email: privacy@praybloom.com

If you are not satisfied with our response, you may have the right to lodge a complaint with a supervisory authority, such as the Federal Trade Commission (FTC) or your state's Attorney General.

Effective Date: February 8, 2026