Privacy Policy

This Privacy Policy explains what personal data we collect through Maximora ChurchHub (the “Service”), why we collect it, how we protect it, and the rights individuals have. It applies to visitors of our marketing pages, church administrators using the platform, and members or contacts whose data is stored by a church account.

Controllers and processors. When you visit our marketing site, Maximora Global is the data controller. When a church uses Maximora ChurchHub to manage its membership, contributions and ministry data, that church is the data controller of its records and Maximora Global is the data processor acting under written instructions as set out in the Data Processing Terms.

1. Data we collect

Account & profile

• Email, full name, phone, profile photo, role and church affiliation.
• Authentication metadata: hashed password, session tokens, sign-in timestamps, IP address used for sign-in, and Google account ID where social sign-in is used.

Church operations

• Member records, families, attendance, events, ministries, small groups, prayer requests, pastoral care and counselling notes, sermons and media.
• Contributions, pledges, giving funds, M-Pesa receipt numbers, payment intents and subscription invoices.
• Governance records (denomination, region, area, district, church entities, codes, invitations and approvals).

Communication

• Email metadata for transactional messages we send on your behalf (template, recipient, delivery state, bounce/complaint events).
• Suppression list entries when a recipient unsubscribes or a provider reports a hard bounce.

Usage & technical

• Audit log entries (who did what, when, on which church), browser type, device and rough geolocation derived from IP for security.
• Strictly necessary cookies for authentication and session management. See the Cookie Policy.

2. Why we use this data (lawful bases)

• Performance of contract — to provide the Service to your church.
• Legitimate interests — to keep accounts secure, prevent abuse, improve the product, and provide customer support.
• Legal obligation — to comply with the Kenya Data Protection Act, tax and financial-record requirements.
• Consent — for optional features such as email newsletters or media use where required by law.

3. Children’s data

Churches often record information about children (e.g. Sunday school, youth ministry, families). Data about minors is processed under the direction of the church account, which must obtain parental or guardian consent in line with the Kenya Data Protection Act and any applicable local laws. Sensitive child welfare or safeguarding records should only be entered by authorised pastoral leaders.

4. Sensitive ministry records

Pastoral care notes, counselling sessions and prayer requests are treated as sensitive. Access is restricted by role and by tenant scope; super_admin staff at Maximora do not browse these records. Access is logged in the audit trail.

5. Sharing your data

We do not sell personal data. We share data only with sub-processors listed on the Sub-processors page (such as our cloud and email infrastructure), with payment providers you choose to enable (e.g. Safaricom Daraja for M-Pesa), and where required by law or to protect rights, property or safety.

6. International transfers

Maximora ChurchHub is hosted on global cloud infrastructure. Personal data may be processed outside Kenya. Where this happens, we rely on appropriate safeguards (such as standard contractual clauses or provider-level compliance commitments) consistent with the Kenya Data Protection Act and equivalent frameworks.

7. Retention

• Active church data is retained for as long as the account is active.
• After cancellation, data is available for export for 30 days, then deleted from production within 30 days and from backups within 90 days.
• Audit logs and minimal billing records may be retained longer where required for legal, tax or fraud-prevention reasons.

8. Security

Encryption in transit and at rest, role-based and tenant-scoped access control enforced at the database, server-side authorization on every privileged action, audit logging, suppression of bounced or unsubscribed addresses, and queued retries for outgoing email. Read more on the Trust & Security page.

9. Your rights

Subject to applicable law, individuals can request access, rectification, erasure, restriction, portability and objection. Members should send requests to their church administrator first; the church is the controller of its records. For requests about data Maximora Global holds as controller (e.g. marketing site interactions), contact info@maximoraglobal.com. You also have the right to lodge a complaint with the Office of the Data Protection Commissioner of Kenya.

10. Changes

We may update this Policy. Material changes will be notified by email to billing contacts and posted here with a new “Last updated” date.

11. Contact

Privacy questions: info@maximoraglobal.com.