Prayer Journal

Privacy Policy

Last updated: March 1, 2026

Effective Date: March 1, 2026 - Version: 1.0

1. Introduction

At Prayer Journal, your privacy is not just a legal requirement, it's a core part of what we believe in. We understand that your diary entries are deeply personal, and we treat them with the respect and confidentiality they deserve. This policy explains how we handle your data, what we collect, and how we protect it in clear language.

Prayer Journal is a service provided by Sinai Global Limited, and we operate in full compliance with the UK GDPR and, where applicable, the EU GDPR. If you have any questions about this policy, please don't hesitate to email us at support@prayerjournal.app.

2. Company Information

Sinai Global Limited
Registered Office: 124 City Road, London, United Kingdom, EC1V 2NX
Company Number: 16119341

3. What Data We Collect

  • First and Last Name: Collected during signup for account management and communication.
  • Email Address: Collected during signup for account management and communication.
  • Audio Recordings: Daily audio journal entries recorded by you.
  • Text Entries: Data provided alongside audio recordings.
  • Location Data: Optional data recorded and mapped during prayer walks.
  • Transcriptions and Analysis: Generated using OpenAI Whisper and ChatGPT from your audio data.
  • Anonymous Usage Data: Collected through Mixpanel for product improvement.

If you sign up using Google or Apple, we receive your name, profile photo, and email address from the provider to create your account. Authentication is handled securely via OAuth. We do not access your password.

4. Confidentiality of Entries

Your entries are private. Prayer Journal employees do not access your recordings or transcripts unless explicitly required by law (e.g., a valid court order). Third-party providers (DigitalOcean and Supabase) also follow strict protocols and cannot access your data without legal mandates.

5. Lawful Basis for Processing

We process your personal data to provide the Prayer Journal service you signed up for. By creating an account and using the app, you consent to the processing of your data for the sole purpose of delivering this service.

Data TypeLawful Basis
Email AddressContract
Audio RecordingsContract
Text EntriesContract
LocationContract
Transcription/AnalysisContract
Usage AnalyticsLegitimate Interest (anonymous)

If your entries contain sensitive data (such as information about your health or mental state), you are choosing to provide that data voluntarily. It is processed solely to deliver the service to you. This qualifies as explicit consent under Article 9(2)(a) of the GDPR, based on your affirmative action of using the app.

6. Children's Data

Prayer Journal is not intended for individuals under 13 years old (or under 16 in the EU where applicable). We do not knowingly collect personal data from children.

7. How We Use Your Information

  • To provide and maintain your personal audio journal service.
  • To generate transcriptions and insights solely for your use.
  • To generate image and map of route walked and number of steps taken.
  • To send essential communications via Postmark.
  • To understand general usage trends through anonymous analytics.

8. Data Sharing and Third Parties

We work with the following processors, who operate solely on our instructions and do not use your data for their own purposes:

  • DigitalOcean: Secure hosting of account data and journal metadata (including transcriptions).
  • Supabase: Secure storage of audio files, transcripts, bible verse and image maps.
  • OpenAI: Transcription, analysis, and audio output (data is not used to train OpenAI models).
  • Azure: OCR image-to-text analysis (data is not used to train Azure models).
  • Postmark: Email communications.
  • PostHog: Anonymous analytics.

9. International Data Transfers

Your data may be processed outside the UK and EU. We rely on trusted providers, including Supabase, DigitalOcean, Postmark, and OpenAI. Supabase, Azure, DigitalOcean, PostHog and Postmark include GDPR-compliant Data Processing Addendums (DPAs) in their service terms.

All transfers use Standard Contractual Clauses (SCCs) to meet GDPR requirements. OpenAI does not use your data to train its models.

10. Data Security

We implement robust security measures, including encryption, access control, and regular audits, to protect your data from unauthorized access or misuse.

11. Data Retention

We retain your data until you delete your account or request deletion. You can request removal of your data at any time by contacting us at support@prayerjournal.app.

12. Marketing Communications

We may use your email address to send you updates and marketing materials about Prayer Journal, but only if you have given us your explicit consent or if you are an existing customer and have not opted out.

You can unsubscribe from marketing communications at any time by clicking the unsubscribe link in the email or by contacting us at support@prayerjournal.app.

13. Cookies and Tracking

Prayer Journal does not use cookies, local storage, or browser fingerprinting. We use Mixpanel solely to gather anonymous usage statistics without persistent tracking.

14. Government Requests

We may disclose personal data if legally compelled to do so. All requests are reviewed and, where appropriate, challenged. Where possible, we will notify you before any disclosure.

15. Your Rights (UK and EU Users)

  • Access your data.
  • Correct inaccuracies.
  • Delete your data (right to be forgotten).
  • Restrict or object to processing.
  • Withdraw your consent.
  • Request data portability.
  • Lodge a complaint with a supervisory authority.

16. Supervisory Authority

UK Information Commissioner's Office (ICO)
https://ico.org.uk
Phone: +44 303 123 1113
Address: Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom

17. Notice to California Residents (CCPA/CPRA)

If you are a California resident, you have the following rights:

  • Access, correct, or delete your data.
  • Know whether your data is sold or shared (it isn't).
  • Non-discrimination for exercising your rights.

To exercise your rights, contact us at support@prayerjournal.app.

18. Contact Us

Email: support@prayerjournal.app

19. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via the app or by email. We recommend reviewing the policy periodically.