At Undershepherd, we take your privacy and security seriously. Your personal and church data is safe with us — we never sell it.
1. Data Usage for Providing Service
Like most online services, we do rely on trusted third-party tools to help improve our offering. This includes platforms like Google Analytics to better understand website traffic and Brevo for sending you onboarding emails. However, rest assured, your church data is never shared or sold to any other company.
2. Data Usage for Product Analytics
To help improve our product and better serve your church’s needs, we do collect anonymized usage data, such as the frequency or amount of people a church adds, the number of interactions logged by each user, and similar metrics. However, we respect your privacy and do not access or review any personal details, notes, or sensitive information within interactions, life events, or tasks. Your data remains private, and we only use this aggregated information to inform our development of the platform.
3. Privacy & Security Details
To protect your information, we use HTTPS across our site and app to encrypt and prevent data modification or interception. Your data is stored securely in access-controlled databases hosted on Heroku and Amazon Web Services (AWS) data centers. Both Heroku and AWS are certified under ISO 27001, SOC 1, and SOC 2 standards, ensuring the highest levels of security.
Additionally, all data written to disk is automatically encrypted at rest, and all database connections are encrypted via SSL for an added layer of security.
At the end of the day, you own and are in control of your data. You have the freedom to delete it at any time. We retain backups for up to 30 days, but after that, your data is completely erased from our servers and backup systems.
If you have any questions at all, please don’t hesitate to reach out! We’re happy to answer any questions as it relates to data privacy and security.