Who we are
"Prayhouse" (the app, the website at prayhouse.app, and related services) is operated by Good Steward Labs, doing business as Prayhouse. When this policy says "we," "us," or "Prayhouse," it means Good Steward Labs.
What we collect
- Account info: your email address, display name, and (if you choose) a profile photo.
- Household content: prayer requests, answered prayers, notes, household members you invite, and the visibility settings you choose for each item.
- Usage data: anonymous product analytics (pages viewed, features used, crashes) to help us improve the app. We use PostHog for this.
- Device data: device type, OS version, and a unique device identifier for push notifications.
We do not sell your data. We do not show third-party ads. We do not use your prayer content to train AI models.
How we use it
- To run the app — saving and syncing your household's prayers.
- To send the notifications you ask for (prayer reminders, revisit nudges, household invitations).
- To send transactional emails (sign-in, account, billing).
- To diagnose bugs and improve features.
Households and sharing
Prayer requests, answered prayers, and notes are visible only to the people in the household you create them in, plus anyone you explicitly invite. You can mark individual items as private to a subset (for example, between co-parents). We do not share household content with anyone outside your household.
How long we keep it
We keep your household content for as long as your account is active. If you delete a prayer, it's removed. If you delete your account, we permanently delete your personal data within 30 days, except where we're required to retain limited records (for example, billing receipts for tax compliance).
Your rights
You can request a copy of your data, correct it, or delete it at any time by emailing [email protected]. If you're in the EU/UK or California, you have additional rights under GDPR and CCPA respectively — including the right to object to processing and the right not to be discriminated against for exercising those rights.
Security
Your data is encrypted in transit (TLS) and at rest. Access to production systems is restricted to a small number of authorized team members. We use established cloud infrastructure providers (Supabase, Cloudflare) and follow standard industry practices. No system is perfectly secure, but we take this seriously — these are the prayers people love most.
Cookies and analytics
We use a small number of essential cookies to keep you signed in, and PostHog for privacy-respecting product analytics. We do not run third-party advertising trackers.
Children's privacy
Prayhouse is designed to be used by families together, but accounts are intended for adults (13+ in the US, 16+ in the EU). A parent or guardian may include a child's name in their own prayer requests — we never knowingly collect data directly from children.
Third-party services
We use a small set of vendors to run the service: Supabase (database, auth, storage), Cloudflare (hosting, CDN), Resend (transactional email), and PostHog (product analytics). Each is bound by their own privacy terms and processes data only on our behalf.
Changes to this policy
If we make material changes, we'll update the effective date above and notify active users by email. Continued use of Prayhouse after a change means you accept the updated policy.
Contact
Questions, requests, or concerns? Email [email protected].
Good Steward Labs (DBA Prayhouse) · Colorado Springs, CO