Privacy Policy

1. Introduction

MKDSCPLS ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our discipleship platform and mission trip management services (collectively, the "Services").

By using our Services, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use our Services.

2. Information We Collect

2.1 Information You Provide Directly

We collect information you voluntarily provide when you:

• Create an account (name, email address, password)
• Complete your profile (phone number, profile photo)
• Participate in courses (responses to questions, reflections, journal entries)
• Register for mission trips
• Make or receive donations

2.2 Sensitive Personal Information

2.3 Information Collected Automatically

When you use our Services, we automatically collect:

• Log Data: IP address, browser type, pages visited, time spent on pages
• Device Information: Device type, operating system, unique device identifiers
• Usage Data: Features used, courses completed, login times
• Cookies: Session cookies for authentication and preferences

2.4 Information from Third Parties

• Payment Processors: Transaction confirmations from Stripe (we do not store your full credit card number)
• Organization Administrators: Your organization may provide your information when adding you to groups or courses

3. How We Use Your Information

We use the information we collect to:

• Provide Services: Deliver courses, manage groups, process donations, coordinate mission trips
• Communicate: Send course reminders, trip updates, prayer request notifications, and important announcements
• Improve Services: Analyze usage patterns, fix bugs, develop new features
• Ensure Safety: Protect against fraud, maintain security, comply with legal obligations
• Support Leaders: Enable group leaders to track participant progress and provide guidance
• Process Payments: Handle donations and mission trip payments through secure payment processors

3.1 Legal Basis for Processing (for EEA/UK Users)

We process your personal data based on:

• Contract: To provide the Services you've requested
• Consent: For sensitive data like religious information
• Legitimate Interests: To improve our Services and prevent fraud
• Legal Obligation: To comply with applicable laws

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Within the Platform

• Group Leaders: Can view participant progress, responses, and contact information for their assigned groups
• Organization Administrators: Have access to member data within their organization
• Trip Leaders: Can access participant information necessary for trip coordination
• Fellow Participants: Limited profile information may be visible to others in your groups or trips (you can control this in settings)

4.2 Third-Party Service Providers

• Stripe: Payment processing (subject to Stripe's Privacy Policy)
• Email Services: Sending notifications and reminders
• Cloud Hosting: Data storage and infrastructure
• Analytics: Understanding usage patterns (anonymized data)

4.3 Legal Requirements

We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

4.4 Business Transfers

If MKDSCPLS is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

5. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: All data transmitted to and from our servers uses TLS/SSL encryption
• Password Security: Passwords are hashed using secure algorithms (never stored in plain text)
• Access Controls: Role-based access ensures users only see information they're authorized to view
• Audit Logging: We maintain logs of access to sensitive information
• Regular Updates: We keep our systems updated with security patches

6. Your Rights and Choices

You have the following rights regarding your personal information:

6.1 Access and Portability

You can access most of your personal information through your account dashboard. You may request a copy of all data we hold about you.

6.2 Correction

You can update your profile information at any time through your account settings. For other corrections, contact us.

6.3 Deletion

You may request deletion of your account and personal data. Note that:

• Some data may be retained for legal or legitimate business purposes
• Anonymized data used for analytics may not be deleted
• Data shared with others (e.g., group messages) may persist

6.4 Communication Preferences

You can manage email notifications in your account settings or unsubscribe using links in our emails.

6.5 Additional Rights (EEA/UK/California Residents)

• Right to restrict processing
• Right to object to processing
• Right to withdraw consent
• Right to lodge a complaint with a supervisory authority
• Right to know what personal information is collected (CCPA)
• Right to non-discrimination for exercising privacy rights

7. Children's Privacy

Our Services are designed for users aged 13 and older. For users under 18 participating in mission trips:

• We require parental or guardian consent before collecting personal information
• Guardians can access, review, and request deletion of their child's information
• Guardian accounts have oversight of minor participants' profiles and documents
• We do not knowingly collect information from children under 13

If you believe we have collected information from a child under 13 without proper consent, please contact us immediately.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Essential Cookies: Maintain your login session and security
• Preference Cookies: Remember your settings and preferences
• Analytics Cookies: Understand how users interact with our Services

You can control cookies through your browser settings. Disabling certain cookies may affect functionality.

9. Data Retention

We retain your information for as long as necessary to provide our Services and fulfill the purposes described in this policy. Specifically:

• Account Data: Retained while your account is active, plus 30 days after deletion request
• Course Progress: Retained for the duration of your account
• Trip Records: Retained for 7 years for legal and financial compliance
• Donation Records: Retained for 7 years for tax and legal purposes
• Audit Logs: Retained for 2 years for security purposes

10. International Data Transfers

Your information may be transferred to and processed in the United States, where our servers are located. By using our Services, you consent to this transfer. We ensure appropriate safeguards are in place for any international transfers.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the new policy on this page
• Updating the "Effective Date" at the top
• Sending an email notification for significant changes

Your continued use of the Services after changes constitutes acceptance of the updated policy.

12. Contact Us