1. Introduction
MyRomi LLC ("we," "us," or "our") operates the MyRomi mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our App.
By creating an account or using MyRomi, you agree to the collection and use of information as described in this policy. If you do not agree, please do not use the App.
2. Information We Collect
2a. Information You Provide
| Category | Data |
|---|---|
| Account | First name, last name, email address, password |
| Profile | Gender, birthdate, phone number, profile photo, bio |
| Church membership | Church affiliation, ministry assignments, role (admin, leader, member) |
| Content | Chat messages, prayer requests, announcements, form responses, HeartNote reflections, MaiRomi conversation history |
| Events | RSVPs, attendance records, event registrations, check-in data via QR scan |
| Special events | Registration details, dietary restrictions, team assignments, logistics preferences |
| Payments | Payment information for event registrations and church subscriptions (processed by Stripe; we do not store card numbers) |
2b. Information Provided by Church Administrators on Your Behalf
Church administrators and ministry leaders may create records ("shadow profiles") for members of their congregation who have not yet created their own MyRomi account. This is a common practice for churches transitioning their membership records into the app.
| Category | Data |
|---|---|
| Basic identity | First name, last name |
| Contact | Phone number (if provided by the administrator) |
| Demographics | Birthdate (if provided by the administrator) |
| Church role | Ministry assignments, membership status, role within the church |
Important: This data is entered by your church's authorized administrators, not by you directly. MyRomi requires consent before storing third-party data:
Consent Process
When a church administrator adds someone's information to MyRomi, one of the following consent methods is used:
- Digital consent (email) — If your email address is provided, you will receive an automated consent request email. You can approve or decline directly from the email. If you decline, your profile and all associated data are automatically removed.
- Offline consent (phone only) — If only a phone number is available (common for children in Sunday school rosters), the church administrator must confirm they have obtained your verbal or written consent before adding your information. This confirmation is recorded in the system.
Your rights regarding shadow profiles:
- You will be able to claim the profile when you create your own MyRomi account, merging the administrator-provided data with your self-created account
- You may review, correct, or delete any information once you claim your profile
- You may revoke consent at any time by contacting your church directly or emailing [email protected] — your profile will be removed
- Shadow profiles are not publicly visible outside of the church's authorized administrators and leaders
- For minors, consent must come from a parent or legal guardian
Church administrators are responsible for ensuring they have legitimate consent before entering personal data about their congregation members. MyRomi enforces consent collection through its app interface and tracks consent status for every shadow profile.
2c. Information Collected Automatically
| Category | Data |
|---|---|
| Device info | Operating system, app version, device type |
| Error logs | Crash reports and performance data (via Sentry, release builds only) |
| Network status | Online/offline connectivity state (for offline-first caching) |
2d. Information Collected With Your Permission
| Permission | Purpose |
|---|---|
| Camera & Photos | Profile photos, chat attachments, event photos, ministry cover images |
| Location | Sharing your location in chat messages (only when you actively choose to share) |
| Notifications | Event reminders, chat messages, church announcements, special event updates |
| Calendar | Adding events to your device calendar |
| Microphone | Voice messages in chat |
Each permission is requested at the time it is needed. You may deny or revoke any permission through your device settings at any time.
3. How We Use Your Information
- To create and manage your account
- To connect you with your church community
- To enable communication between members (chat, prayer room, announcements)
- To manage events, attendance, and registrations (including special events with teams, schedules, and logistics)
- To process payments for event registrations and church subscriptions via Stripe
- To send push notifications about relevant activity (via Supabase Realtime, not Firebase)
- To provide offline access through local data caching
- To diagnose technical issues and improve the App via error monitoring
We do not use your information for advertising, behavioral profiling, or selling to third parties. We do not use any third-party analytics or advertising SDKs.
3b. MaiRomi AI Feature
MaiRomi is an optional, subscription-based AI feature within MyRomi that allows users to ask spiritual questions and receive answers grounded in curated Coptic Orthodox texts. When you use MaiRomi:
Data Collected
| Category | Data |
|---|---|
| Conversation content | Questions you ask and AI-generated responses |
| Model selection | Which AI model you choose for your conversations |
| Subscription status | Whether you have an active MaiRomi subscription |
How AI Queries Are Processed
- Your questions are sent to third-party AI providers (Anthropic, OpenAI, and Google) to generate responses. These providers process your query text to return an answer.
- Queries are augmented with context from our curated Coptic Orthodox source library to ground responses in authentic texts. This augmentation happens on our servers before the query reaches the AI provider.
- We do not send your name, email, church affiliation, or any personal identifiers to AI providers — only the text of your question and relevant source context.
- AI providers may temporarily process your query text in accordance with their own data policies, but we select providers and configurations that minimize data retention.
- Your conversation history is stored in our database (Supabase) and is accessible only to you.
Third-Party AI Providers
| Provider | Models Used | Data Sent |
|---|---|---|
| Anthropic | Claude Haiku 4.5, Claude Sonnet 4.6 | Query text + source context only |
| OpenAI | GPT-5 Mini | Query text + source context only |
| Gemini 2.0 Flash | Query text + source context only |
No personal information (name, email, church, etc.) is included in AI requests. Each provider's data handling is subject to their respective privacy policies.
MaiRomi Subscription & Billing
MaiRomi subscriptions are processed through Stripe. We collect and store your subscription status and payment history. Card details are handled directly by Stripe and never stored on our servers. You can cancel your subscription at any time.
4. How We Share Your Information
We do not sell, rent, or trade your personal information. We share data only in these limited circumstances:
| Recipient | Purpose | Data Shared |
|---|---|---|
| Supabase | Backend infrastructure: authentication, database, realtime notifications, file storage | All account and content data |
| Stripe | Payment processing for event registrations and church subscriptions | Payment amount, event/church ID (card details go directly to Stripe) |
| Sentry | Error monitoring (release builds only) | Error logs, device info, anonymized user ID |
| Anthropic, OpenAI, Google | AI response generation for MaiRomi feature | Query text and source context only (no personal identifiers) |
| Church leaders | Church administration | Profile data based on your visibility settings |
We do not use Firebase, Google Analytics, Facebook SDK, or any advertising networks. We may also disclose information if required by law, court order, or to protect the safety of our users.
5. Your Privacy Controls
MyRomi gives you granular control over your personal information:
- Visibility settings — Control who can see your phone number, email, address, birthday, bio, and profile photo. Options: Everyone, My Ministry, Leaders Only, or Private.
- Anonymous mode — Post prayer requests anonymously.
- Message deletion — Delete your own chat messages.
- Channel muting — Mute notifications for specific chat channels.
- Account deletion — Delete your account directly from the App (Settings → Account → Delete Account). This soft-deletes your profile and clears all local cached data.
- Data export — Request a copy of your personal data through the privacy dashboard in Settings.
- Device permissions — Revoke camera, location, notification, or other permissions at any time through your device settings.
- Shadow profile rights — If a church administrator created a profile for you before you joined, you can claim it when you sign up, review and correct all data, or request its removal by contacting your church or emailing us.
6. Data Storage and Security
Your data is stored on Supabase servers with the following protections:
- Encrypted data transmission (HTTPS/TLS)
- Row-Level Security (RLS) policies enforcing role-based data access at the database level
- Passwords are hashed using bcrypt and never stored in plain text
- Leaked password protection (passwords checked against known breach databases)
- Soft deletion pattern (your data is marked as deleted, not immediately erased, allowing recovery within a retention period)
On your device, data is cached locally (using Hive encrypted storage) to support offline access. All cached data is cleared on sign-out.
7. Data Retention
We retain your personal information for as long as your account is active. When you delete your account:
- Your profile is soft-deleted (marked inactive) and removed from member directories
- Your chat messages may remain in anonymized form where they are part of community conversations
- Payment records are retained as required by financial regulations
- All locally cached data on your device is cleared immediately
- Your Sentry user scope is cleared
8. Children's Privacy
Children Under 13 (COPPA Compliance)
MyRomi complies with the Children's Online Privacy Protection Act (COPPA). Children under the age of 13 cannot create their own MyRomi account. We do not knowingly collect personal information directly from children under 13.
However, church administrators may create shadow profiles for children in their congregation (e.g., for Sunday school rosters, youth ministry tracking, or family management). In this case:
- The child's data (name, birthdate) is entered by a church administrator or parent/guardian — not by the child
- The church administrator acts as the data controller for these records and is responsible for having appropriate parental consent
- Shadow profiles for children do not have login credentials and cannot access the app independently
- A parent or guardian may request review, correction, or deletion of their child's shadow profile at any time by contacting the church administrator or emailing [email protected]
If you believe a child under 13 has independently created an account (without administrator or parental involvement), please contact us immediately at [email protected] and we will promptly delete the account.
Teens Ages 13–17
Users between 13 and 17 may create a MyRomi account with parental or guardian permission. For teen accounts:
- We collect and store a parent or guardian phone number alongside the teen's profile
- We encourage parental oversight of the account and its activity
- Teen profiles are subject to the same privacy visibility controls as adult profiles
- A parent or guardian may request account deletion on behalf of a minor at any time
- Chat, prayer room, and messaging features are available to teen users within their church community — church administrators can moderate content and restrict access as needed
Parental Rights
Parents and guardians of minors (under 18) have the right to:
- Review personal information collected about their child
- Request deletion of their child's account and associated data
- Refuse further collection of their child's personal information
- Request correction of inaccurate information
To exercise these rights, contact us at [email protected] with verification of your parental/guardian relationship. We will respond within 48 hours.
9. California Residents (CCPA/CPRA)
If you are a California resident, you have rights under the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA).
Your Rights
- Right to Know — Request what personal information we collect, use, and disclose about you.
- Right to Delete — Request deletion of your personal information, subject to certain exceptions.
- Right to Correct — Request correction of inaccurate personal information via your profile settings or by contacting us.
- Right to Opt-Out of Sale/Sharing — We do not sell or share your personal information for cross-context behavioral advertising. No opt-out is necessary.
- Right to Non-Discrimination — We will not discriminate against you for exercising your privacy rights.
How to Exercise Your Rights
Submit requests by emailing [email protected]. We will verify your identity before processing requests and respond within 45 days. This includes the right to know about and delete any shadow profile data that a church administrator may have entered about you.
Categories of Personal Information Collected
- Identifiers — Name, email, phone number, user ID (may be provided by you or by your church administrator)
- Personal information (Cal. Civ. Code 1798.80) — Name, phone number (may be provided by you or by your church administrator)
- Protected classifications — Gender, age/birthdate
- Commercial information — Event registration, payment records, subscription data
- Internet/network activity — App error logs, connectivity status
- Geolocation data — Precise location (only when explicitly shared by user in chat)
- Audio/visual data — Profile photos, chat photo/voice attachments
Do Not Track
Our App does not track users across third-party websites or apps. We do not use any cross-site tracking technologies.
10. Third-Party Links
The App may contain links to external websites or services (e.g., Stripe checkout for payments, ministry donation URLs). We are not responsible for the privacy practices of these third parties.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes through the App or by email. The "Last Updated" date at the top reflects the most recent revision.
12. Contact Us
If you have questions about this Privacy Policy or wish to exercise your privacy rights, contact us:
MyRomi LLC
Email: [email protected]
Website: myromi.app