ShepherdOS
Privacy Policy
Last updated: February 1, 2026
ShepherdOS ("we," "our," "us") is committed to protecting your privacy. This policy explains what data we collect, why we collect it, and how we handle it.
1. What We Collect
| Data | Purpose | Stored |
|---|
| Email address | Account authentication | Yes |
| Church name and address | Church organization features, Google Places verification | Yes |
| Contact information (names, phone numbers, emails) | People management, care module delivery, SMS/call actions | Yes |
| Device contacts (when you import) | Importing contacts into ShepherdOS | Only imported contacts |
| Google Calendar events (when connected) | Activity import, smart scheduling | Event metadata only |
| Gmail thread metadata (when connected) | Engagement history tracking | Metadata only, not message content |
| Care module enrollment and touchpoint data | Automated follow-up tracking | Yes |
| Prayer requests and spiritual notes | Prayer mode, pastoral care tracking | Yes |
| Availability and scheduling preferences | Smart meeting scheduling | Yes |
2. What We Do NOT Collect
- We do not read the content of your text messages or phone calls.
- We do not access your full email inbox. Gmail integration only retrieves thread metadata (sender, subject, date) for people in your ShepherdOS directory.
- We do not sell, rent, or share your data with third parties for marketing purposes.
- We do not use your data to train AI models.
3. How We Store Your Data
All data is stored securely using Supabase (built on PostgreSQL) with:
- Row-level security (RLS) ensuring you can only access your own data
- Encrypted connections (TLS/SSL) for all data in transit
- Data at rest encrypted using AES-256
- Authentication tokens stored securely on your device
4. Third-Party Services
ShepherdOS integrates with the following services when you explicitly connect them:
- Google Calendar API: Used to import events and propose meeting times. Access is read/write for calendar events only. We request the minimum scopes necessary.
- Gmail API: Used to display email engagement history with people in your directory. Read-only access to thread metadata. We do not read full email bodies.
- Google Places API: Used to verify and autocomplete church names during onboarding. No personal data is sent to Google Places.
- Expo Push Notifications: Used to deliver morning action summaries, crisis alerts, and meeting reminders.
5. Church Organization and Shared Data
If you join a church organization in ShepherdOS:
- Your church membership (name, role) is visible to other pastors at the same church.
- People marked as shared (with a church_id) are visible to all pastors in that church organization.
- Your private notes, personal care module enrollments, and individual care data remain private to your account.
- Church-level ministries and care modules are shared and managed by the church admin.
6. Your Rights
- Access: You can view all data associated with your account within the app.
- Export: You can request a full export of your data at any time by contacting support.
- Deletion: You can delete your account and all associated data from the app settings. This action is permanent and cannot be undone.
- Disconnect: You can disconnect Google Calendar and Gmail at any time from Settings, which revokes our access immediately.
7. Data Retention
We retain your data for as long as your account is active. If you delete your account, all data is permanently removed within 30 days. Anonymized, aggregated analytics (not linked to any individual) may be retained for product improvement.
8. Children's Privacy
ShepherdOS is not intended for use by anyone under the age of 13. We do not knowingly collect personal information from children under 13.
9. Changes to This Policy
We may update this policy from time to time. When we do, we will update the "Last updated" date at the top. Continued use of ShepherdOS after changes constitutes acceptance of the updated policy.
10. Contact Us
If you have questions about this privacy policy or your data, contact us at:
hello@wgodw.com