Privacy Policy
Effective Date: July 7, 2026
1. Introduction
ReachTheSoul ("we," "us," or "our") operates the ReachTheSoul platform, which provides prayer support and soul-care tools for churches, ministries, and individuals (the "Service"). We take the privacy of the deeply personal information entrusted to us seriously. This Privacy Policy explains what information we collect, how we use it, how it is processed and protected, and the choices you have.
2. Information We Collect
2.1 Information You Provide
- Account information: name, email address, church or organization name, and password.
- Prayer and care content: prayer requests, notes, reflections, and counseling-related messages you or your respondents submit.
- Respondent information: when your organization interacts with people seeking prayer or care, their names, contact details, and message content may be stored.
- Communications: messages you send to us for support or feedback.
2.2 Information Collected Automatically
- Usage data: pages visited, features used, and time spent on the Service.
- Device and log data: IP address, browser type, and device identifiers.
- Cookies and similar technologies (see Section 8).
3. How We Use Your Information
We use the information we collect to:
- Provide, operate, and maintain the Service.
- Generate AI-assisted first responses to incoming prayer and care messages.
- Detect messages that may indicate crisis or self-harm, so they can be escalated to your human team.
- Communicate with you about your account and updates.
- Improve and secure the Service.
- Comply with legal obligations.
4. AI Processing and Third-Party Sub-Processors
The Service uses artificial intelligence to generate initial responses to prayer and counseling messages and to help detect messages that may need urgent human attention. To do this, the content of messages is sent to third-party AI providers (for example, OpenAI and/or Anthropic) that process the content on our behalf to generate a response.
These AI providers act as our sub-processors. We do not use your prayer or counseling content to train our own AI models, and we rely on providers whose terms restrict the use of submitted content for training their models. We will not use your content to train AI models without first updating this Policy and, where required, obtaining your consent.
5. How We Share Your Information
We do not sell your personal information. We share information only in these limited circumstances:
- With infrastructure and service providers that operate the Service — including Vercel (hosting), Google Firestore (database), and the AI providers described in Section 4 — under confidentiality and data-processing obligations.
- With messaging platforms you connect (such as WhatsApp, Instagram, Facebook, or TikTok), solely to send and receive the messages you route through them.
- With your church or organization administrator, where you interact with the Service through them and per their configured settings.
- When required by law, or to protect the rights, safety, and security of users and the public.
- In connection with a merger, acquisition, or sale of assets, with notice to you.
6. Data Isolation
Each organization's data is logically isolated so that one church or ministry cannot access another organization's data. Access is controlled through authentication and access rules.
7. Data Security
We rely on industry-standard infrastructure to protect your information. Data is encrypted in transit (via HTTPS) and encrypted at rest by our database provider. We restrict internal access to personal information to those who need it to operate the Service.
Please note that no method of transmission or storage is completely secure. While our infrastructure encrypts stored data, authorized personnel with administrative access may be able to view content in order to operate and support the Service. We do not provide end-to-end encryption, and you should not assume that submitted content is invisible to all staff.
8. Cookies
We use cookies and similar technologies to operate the Service, remember your preferences, and understand usage. You can control cookies through your browser settings.
9. Data Retention
We retain your information for as long as your account is active or as needed to provide the Service, then delete or anonymize it, unless a longer retention period is required by law.
10. Your Rights and Choices
Depending on your location, you may have the right to access, correct, delete, or export your personal information, and to withdraw consent. To exercise these rights, contact us at the address in Section 12.
11. Children's Privacy
The Service is not directed to children under 13 (or the minimum age required in your jurisdiction), and we do not knowingly collect their personal information without verifiable parental consent.
12. Contact Us
If you have questions about this Privacy Policy or your information, contact us at:
ReachTheSoul
Email: hello@reachthesoul.org
Address: Djava Residence C 2 / 16 North Cikarang Indonesia
13. Changes to This Policy
We may update this Privacy Policy from time to time. We will post the updated version with a new effective date and, where appropriate, notify you.