← Back to home

Privacy Policy

Last updated: May 16, 2026

1. Introduction

This Privacy Policy describes what personal data Pastoreai collects, how that data is used, with whom it's shared, and what your rights are as a data subject. Processing is carried out in compliance with the General Data Protection Law (Law No. 13,709/2018 — LGPD).

We collect only what is necessary to operate the platform. We do not sell your data, and the content of your sermons belongs to you.

2. Data we collect

The list below summarizes each category of data, the reason for collecting it, and the corresponding legal basis under the LGPD.

2.1. Registration and profile data

  • Full name, display name, and email — account identification, transactional communication, display on shared sermons and team workspaces.
  • Password (hashed) — authentication. The password is never stored in plain text.
  • Profile photo and bio — display of your profile within the platform and on shared sermons (optional).
  • Church name, denomination, state, and city — ministry context, personalization of AI assistant suggestions, and identification of the organization you belong to.
  • Preferred Bible version, sermon font style, topic style, sermon style, and theological view — personalization of the editor and of the suggestions generated by the assistant.
  • Notification preference and promotional opt-in — control over what you receive by email.
  • Date of acceptance of the Terms of Use — legal record of consent.

Legal basis: performance of contract (art. 7, V) and consent (art. 7, I) for optional fields and marketing.

2.2. Authentication data

  • Google OAuth tokens (when you sign in with Google) — identifiers provided by Google to validate your session. We do not access your emails, calendar, contacts, or other data from your Google account.
  • Active sessions and verification tokens — login maintenance and security of sensitive operations.
  • Temporary tokens for password reset, email change, and account deletion confirmation — security of critical operations. These tokens expire quickly and are single-use.

Legal basis: performance of contract and legitimate interest in protecting the account against unauthorized access.

2.3. Ministry content you create

  • Sermons — title, base text, outline content (formatted), post-preaching notes, preaching date, duration, location, tags, pastoral themes, and visibility (private, team, or public).
  • Sermon series — title, description, Bible book, type (thematic or expository), notes, color, and cover.
  • Schedule events — title, description, type, date and time, location, preacher, and link to series.
  • Bible coverage — record of passages already preached to feed the Analysis module.
  • Illustrations — title, content, source, tags, and themes.

Purpose: to provide the contracted service (editor, schedule, series, analysis). All this content is yours — you can edit, export, or delete it at any time.
Legal basis: performance of contract.

2.4. Workspaces, teams, and invitations

  • Active workspace, user role (owner, admin, member), and invitation status — access control for shared sermons, series, and schedule.
  • Invitees' email — sending the invitation by email and associating it with the workspace when the invitation is accepted.

Legal basis: performance of contract. If you are invited to a workspace, your email is used exclusively to send the invitation and create/associate your account.

2.5. Plan, credits, and billing

  • Subscribed plan (Start, Pro, Church) and billing cycle — control over what is included in your subscription.
  • Stripe identifiers (customer ID and subscription ID) — link to the payment provider. We do not store credit card data; processing is done directly by Stripe.
  • Local invoices (when applicable) — billing history for the Billing page.
  • AI credit balance and usage history (action, amount, date) — control of consumption and plan auditing.
  • Redeemed vouchers/coupons — control of promotions and eligibility.

Legal basis: performance of contract and compliance with legal/tax obligations.

2.6. Communication with support

  • Messages sent through the contact form — name, email, phone (optional), reason, and message content. Used only to respond to your request.

Legal basis: consent and legitimate interest in providing support.

2.7. Technical and usage data

  • Access and operation logs (date, action performed) — security, fraud prevention, and problem diagnosis.
  • Anonymized browsing data via Google Analytics — to understand how the platform is used and improve the experience. We do not individually identify users in this flow.

Legal basis: legitimate interest, with the possibility of objection via browser settings.

3. Content sent to Artificial Intelligence

When you use AI assistant features (topic generation, series ideas, pastoral diagnosis, annual report, etc.), the base text, theme, and context information you provide are sent to third-party AI providers for processing.

  • These providers process the content according to their own policies and do not use your data to train public models under our subscription plan.
  • We do not send your email, password, or financial data to AI providers — only the content needed to generate the suggestion.
  • You may choose not to use the AI features — the rest of the platform remains fully functional without them.

4. Data sharing

We share data only with processors (under the LGPD) strictly necessary to operate the service, in the following categories:

  • Hosting and database — infrastructure that stores and runs the application.
  • Authentication — social login provider, when you choose to sign in with an external account.
  • Payment processing — billing of subscriptions and cards.
  • Transactional email delivery — registration, password reset, invitations, and notifications.
  • AI processing — generating the assistant's responses from the prompts you send.
  • Usage metrics — aggregated, anonymized statistical analysis, enabled only with your consent.

We do not sell, rent, or transfer your data to third parties for marketing purposes. Sharing with public authorities occurs only under legal obligation or court order.

International transfer. Some of these processors handle data on servers located outside Brazil (for example, in the United States and the European Union). In such cases, we apply the safeguards set out in Article 33 of the LGPD, requiring each processor to maintain a level of data protection compatible with Brazilian law.

5. Sermon visibility

You control the visibility of each sermon:

  • Private — only you can view it. Link access only works if you generate and share the link manually.
  • Team — visible to members of the same workspace.
  • Public — listed in the “What's being preached” section of the dashboard, accessible by anyone with the link. When publishing, we display the author's name, church, city, and state.

The default visibility of any new sermon is private.

6. How long we keep your data

  • Active account — for as long as your account exists.
  • After account deletion — your data is kept for up to 30 days for possible recovery and then permanently deleted.
  • Invoices and tax records — for the applicable legal period (up to 5 years), under Brazilian tax law.
  • Security and audit logs — up to 12 months.
  • Contact messages — up to 24 months after the last related support.

7. Security

We adopt technical and organizational measures to protect your data:

  • Encryption in transit (HTTPS/TLS) across the entire platform.
  • Encryption at rest in the database.
  • Passwords stored with cryptographic hashing.
  • Access control by workspace and by role (owner, admin, member, viewer).
  • Temporary and single-use tokens for sensitive operations.
  • Audit records for administrative and billing actions.

No system is completely risk-free. If you identify a flaw or suspect unauthorized access, reach us immediately through our contact page.

8. Your rights (LGPD)

As a data subject, you have the right to:

  • Confirmation of the existence of processing;
  • Access to your personal data;
  • Correction of incomplete, inaccurate, or outdated data (available directly in “Settings”);
  • Anonymization, blocking, or deletion of unnecessary data or data processed in non-compliance;
  • Portability — you can export your sermons as PDF or TXT (on the Pro and Church plans);
  • Deletion of personal data — available in “Settings › Account › Delete account”;
  • Withdrawal of consent for marketing — available in your profile and in every promotional email.

To exercise any of these rights, reach us through our contact page with the subject “LGPD — exercise of right”. We will reply within 15 days.

9. Cookies

We use strictly necessary cookies to keep your session authenticated and your interface preferences — these are essential to the service and do not require consent.

Analytics cookies (Google Analytics, with anonymized IP) are only activated after your consent in the banner shown when you visit the site. You can accept, reject, or change your choice at any time using the button below. Rejecting does not affect your use of the platform.

10. Children and adolescents

The platform is intended for people over 18. We do not intentionally collect data from minors. If you identify a minor's registration, contact us so we can delete it.

11. Changes to this Policy

This policy may be updated periodically. Relevant changes will be communicated by email and by notice on the platform at least 15 days in advance. The “last updated” date at the top of this page indicates the current version.

12. Data Protection Officer (DPO) and contact

For questions, requests, or complaints about the processing of your data, reach us through our contact page.

You may also file a complaint with the National Data Protection Authority (ANPD) through the site gov.br/anpd.

Pastoreai — Ministry panel for pastors