Kanisani Kwetu

Legal

Privacy Policy

Last updated: June 27, 2026

Kanisani Kwetu (“the Platform”, “we”, “us”) is a church management platform operated by [Operator Legal Name] that helps churches and their branches manage members, services, giving, events, and communications. This Privacy Policy explains what information we collect, how we use it, and the choices you have. We are not lawyers; churches using the Platform remain responsible for their own compliance.

1. Roles: who controls your data

The Platform supports many independent churches and their sub-branches. Each church (or its parent organization) is the controller of the member data it manages and decides how that data is used. We act as a processor that provides the software and infrastructure on the church's behalf, and as a controller only for limited operational data (such as account security and platform logs). If you are a member, direct requests about your data first to your church administrator.

2. Information we collect

We collect information you or your church provide, and information generated as you use the Platform.

Account and identity

  • Names (first, middle, last), profile photo, and a member code.
  • Contact details: phone number, email address, and postal/physical address (street, city, state, country, postal code).
  • Login credentials (passwords are stored only as salted hashes, never in plain text).

Member profile

  • Demographic details: gender, date of birth, and marital status.
  • Background details: profession, type of work, and education level.
  • Membership details: the church and branch you belong to, membership date, status, assigned role, group memberships, family relationships, and administrative notes recorded by church staff.

Giving and financial information

  • Contribution campaigns, pledges, and progress entries.
  • Payments recorded against pledges or contributions, including amount, currency, date, method (for example cash, mobile money, bank transfer), and reference or transaction identifiers, and issued receipts.
  • We do not store full payment-card numbers. Online payments are handled by third-party payment providers (such as mobile-money or card processors) under their own terms and privacy policies.

Activity and engagement

  • Attendance records, event invitations and responses, prayer requests and pastoral-care records, personal sermon notes you write, and in-app notifications addressed to you.

Communications

  • Messages (SMS and email) that a church sends through the Platform, including delivery status, and message templates and automated reminders configured by the church.

Live streaming

  • When a service (“Ibada”) is streamed, the church may provide a live or recorded video link. If you choose to watch an embedded stream from a third-party platform (such as YouTube, Vimeo, or Facebook), that platform may collect information about you in accordance with its own privacy policy. We use privacy-enhanced embedding where available.

Technical information

  • Device and app information, log data, approximate usage, IP address, and app version, used to operate, secure, and improve the Platform.

3. How we use information

We use information to: create and manage accounts and member profiles; operate church, branch, group, and membership management; record attendance and events; manage giving, pledges, contributions, payments, and receipts; send service reminders, invitations, and notifications you or your church have configured; provide live and recorded services and personal sermon notes; provide pastoral care features; secure the Platform, prevent abuse, and troubleshoot; comply with legal obligations; and analyze and improve the Platform.

4. Legal bases

Where applicable law requires a legal basis, we and the churches rely on one or more of: performance of a contract or membership relationship; your consent (which you may withdraw); legitimate interests in operating and securing the Platform; and compliance with legal obligations.

5. How information is shared

We share information only as needed to provide the Platform:

  • With your church and its authorized administrators and leaders, according to their roles and permissions.
  • With service providers acting on our behalf, such as cloud hosting, SMS and email gateways, payment processors, and video-streaming platforms, bound to appropriate confidentiality and security obligations.
  • For legal reasons, where required by law or to protect rights, safety, and the integrity of the Platform.
  • In a business transfer, such as a merger or acquisition, subject to this Policy.

We do not sell your personal information.

6. Data retention

We retain personal information for as long as your account and membership are active and as needed to provide the Platform, then for any additional period required to meet legal, accounting, or record-keeping obligations (for example, financial and giving records that a church must keep). When information is no longer needed, we delete or anonymize it.

7. Security

We protect information using encryption in transit (HTTPS/TLS), access controls and role-based permissions, tenant isolation between churches, and other administrative and technical safeguards. No method of transmission or storage is completely secure, but we work to protect your information.

8. Your rights and choices

Subject to applicable law, you may request to access, correct, update, delete, export, or restrict the processing of your personal information, and object to certain processing. You can update much of your profile directly in the app. To exercise other rights, contact your church administrator or us at [privacy@yourdomain]. You may opt out of non-essential messages using the unsubscribe or stop instructions provided.

9. Account and data deletion

You can delete your account from within the app (Settings → Delete account) or by requesting deletion at [privacy@yourdomain]. Deleting your account permanently disables your login, revokes your access tokens, and removes or anonymizes the personal information in your member profile (including name, contact details, and photo). Some records that a church is required to keep — such as historical financial and giving records — may be retained in anonymized or aggregated form as permitted or required by law.

10. Children's privacy

The Platform is intended for use by churches to manage their congregations and is not directed to children for independent sign-up. Where a church registers a minor, it does so under its own responsibility and with appropriate guardian consent as required by local law. If you believe a child has provided us information without proper consent, contact us so we can address it.

11. International transfers

Your information may be processed and stored in countries other than your own. Where required, we take steps to ensure appropriate safeguards for such transfers.

12. Changes to this Policy

We may update this Policy from time to time. We will revise the “Last updated” date above and, where appropriate, provide additional notice. Continued use of the Platform after changes take effect constitutes acceptance.

13. Contact us

For questions or requests regarding this Policy, contact [Operator Legal Name] at [privacy@yourdomain], [physical address]. This Policy is governed by the laws of [Country/Jurisdiction].