Christ Church USA
Last updated: May 19, 2025
This Privacy Policy describes how Christ Church USA ("Christ Church," "we," "us," or "our") collects, uses, and protects information through the ChurchOps AI internal operations portal ("the Platform"). The Platform is a private, staff-only system used to manage church operations including communications, pastoral care, janitorial services, grant management, and YouTube channel analytics.
Access to the Platform is restricted to authorized Christ Church staff, volunteers, and contractors. It is not a public-facing application.
Staff accounts are created by system administrators. We collect name, work email address, job title, and role/permission assignment. Authentication is handled via Microsoft 365 (Azure Active Directory / Entra ID) using OAuth 2.0. We do not store Microsoft account passwords.
The Platform logs user actions (e.g., notes created, certificates generated, reports viewed) for audit and accountability purposes. This data is accessible only to system administrators.
The Platform integrates with the Google YouTube Data API v3 and YouTube Analytics API on behalf of Christ Church's official YouTube channel. When an authorized administrator connects the YouTube channel via Google OAuth 2.0, we access and store:
This data is used exclusively to display analytics dashboards and generate performance reports for Christ Church staff. It is never sold, shared with third parties, or used for advertising purposes.
Our use of YouTube API Services is subject to the YouTube API Services Terms of Service. By using the YouTube integration, you also agree to the Google Privacy Policy.
Staff may enter pastoral care notes, reception handoff notes, grant documents, and other operational content into the Platform. This content is stored securely and accessible only to staff with appropriate role-based permissions.
We do not use personal data for advertising, profiling, or any purpose unrelated to church operations.
We use the following third-party services to operate the Platform:
We do not sell personal data to any third party.
Operational data (notes, logs, certificates) is retained for as long as the Platform is in active use or as required by applicable law. YouTube OAuth tokens are stored only while the channel integration remains active and are deleted upon disconnection.
Staff accounts are deactivated upon separation from the organization and may be permanently deleted upon written request to the system administrator.
All data is transmitted over HTTPS. OAuth tokens are stored encrypted. Access to the Platform is protected by role-based permissions. Only authorized administrators can connect or disconnect external service integrations.
You may revoke the Platform's access to your Google account at any time by visiting Google Account Permissions. Revoking access will disconnect the YouTube integration from the Platform. Authorized administrators may also disconnect the integration directly within the Platform.
The Platform is intended for use by adult church staff and contractors only. We do not knowingly collect information from individuals under the age of 18.
We may update this Privacy Policy periodically. Material changes will be communicated to authorized users via the Platform or by email. Continued use of the Platform after any change constitutes acceptance of the updated policy.
For privacy-related questions or data deletion requests, please contact:
Christ Church USA
Operations & Technology Team
Email: helpdesk@christchurchusa.org
Website: https://christchurchusa.vercel.app
© 2026 Christ Church USA. All rights reserved.