Privacy Policy

This Privacy Policy explains how Sermon AI collects, uses, stores, and protects personal data when you visit our website, create an account, upload content, or use our AI-powered services.

This document is provided for transparency and product readiness. It should be reviewed by qualified legal counsel before broad commercial launch.

1. Who we are

Sermon AI provides software that helps users and organizations transform audio, video, messages, classes, talks, and teachings into transcripts, summaries, study materials, newsletters, social content, and searchable knowledge.

For account, billing, and platform administration data, Sermon AI generally acts as a data controller. For audio, video, transcripts, generated content, and organization workspace content uploaded by customers, Sermon AI generally acts as a processor on behalf of the customer organization.

2. Data we collect

• Account data: name, email address, password hash, organization, role, and login information.
• Organization data: workspace information for organizations, schools, companies, associations, or teams.
• Uploaded content: audio files, video files, filenames, metadata, transcripts, summaries, generated content, and exports.
• Usage data: actions performed in the application, processing status, quota usage, and feature usage.
• Billing data: subscription status, customer identifiers, invoices, payment events, and plan information processed through Stripe.
• Email data: transactional email delivery information processed through Brevo.
• Technical data: IP address, device/browser information, security logs, error logs, and diagnostic events.

3. Sensitive content

Sermon AI may be used by organizations that handle sensitive topics. Uploaded messages, teachings, or documents may reveal religious beliefs or other sensitive information. Customers should only upload content they are entitled to process and should inform their teams, speakers, and contributors where required by applicable law.

4. How we use data

• To create and secure user accounts.
• To provide transcription, summarization, content generation, search, exports, and workspace features.
• To manage roles, permissions, subscriptions, quotas, and billing.
• To send transactional emails such as password resets and invitations.
• To detect abuse, protect the service, troubleshoot errors, and maintain platform security.
• To comply with legal, accounting, and security obligations.

5. Legal bases

Depending on the context, we process personal data to perform a contract, comply with legal obligations, pursue legitimate interests such as security and service improvement, or based on consent where required.

6. Sub-processors

We rely on trusted providers to operate the service, including:

• Render for application hosting and infrastructure.
• Cloudflare R2 for object storage and DNS/security services.
• OpenAI for AI transcription, analysis, and generation features.
• Stripe for billing, payments, invoices, and subscription management.
• Brevo for transactional email delivery.

7. AI processing

When you request transcription, analysis, summaries, or generated content, relevant content may be sent to AI providers to perform the requested task. Sermon AI does not intentionally use customer workspace content to train a public model unless explicitly agreed in writing.

8. Data retention

• Account and organization data is kept while the account remains active.
• Uploaded files, transcripts, and generated content are kept while the customer keeps them in the workspace.
• Security and technical logs are generally retained for a limited period needed for security and operations.
• Billing records may be retained for legal, tax, and accounting obligations.
• Invitation and password reset tokens are retained only for short operational periods.

9. Your rights

Depending on your location and applicable law, you may have rights to access, correct, delete, restrict, object to processing, or export your personal data. For workspace content, requests should normally be made through the customer organization that controls the workspace.

10. Security

Sermon AI uses access controls, role-based permissions, organization-level data isolation, private file storage, signed access URLs, malware scanning, HTTPS, environment separation, and operational logging controls to protect customer data. No internet service can be guaranteed to be perfectly secure.

11. Cookies

The public website is designed to work without non-essential marketing cookies. If analytics, advertising pixels, or other non-essential trackers are introduced, we will update this policy and implement consent where required.

12. Contact

For privacy requests or questions, contact us at contact@sermonai.app.