Privacy Policy

1. Who We Are

StewardView is a financial management platform for churches and religious organizations, operated by Sagaciasoft LLC ("we", "us", or "our"). Our registered contact email is [email protected].

This Privacy Policy explains what data we collect, how we use it, and the choices you have. It applies to anyone who uses the StewardView platform, including church administrators, treasurers, and other authorized users ("you" or "user").

2. Data We Collect

2.1 Account Data

When you create an account, we collect:

• Your name and email address
• Your organization (church) name
• Your account role within your organization
• A hashed (non-reversible) representation of your password — your password is never stored in plaintext

2.2 Financial Data

When you use StewardView to manage your organization's finances, we collect and store:

• Transaction records, fund balances, budgets, and financial reports you enter or import
• Giving records and donor contribution data entered by authorized users

2.3 Bank Account and Import Data

When you add bank accounts or import transactions, we receive and store:

• Your bank's institution name, account nickname, optional last 4 digits, and balances you enter
• Transaction history imported from CSV files you upload
• Import audit details, such as imported and skipped row counts

StewardView never asks for or stores your online banking credentials. Uploaded CSV files are parsed for import and are not stored as documents.

2.4 Technical and Usage Data

• IP addresses, which are stored in our audit log for security and accountability purposes
• HTTP request logs (request path, status code, timestamp) retained for 30 days
• An immutable audit log of actions taken within your organization's account (who did what, when)

We do not use analytics tracking services (e.g., Google Analytics), advertising pixels, or behavioral tracking tools.

3. How We Use Your Data

We use the data we collect solely to provide and improve StewardView's services:

• To authenticate you and manage your session
• To display your organization's financial data, transactions, and reports
• To import bank transactions from CSV files you provide
• To enforce role-based access controls within your organization
• To maintain an audit trail of financial actions for accountability and record-keeping
• To process subscription billing through Stripe
• To detect and prevent unauthorized access, fraud, or security threats
• To comply with applicable legal obligations

We do not use your data for advertising, marketing profiling, or any purpose unrelated to operating the platform.

4. Data Sharing

We do not sell, rent, or share your data with third parties for commercial purposes. Data is shared only as follows:

• Railway.app — our cloud hosting and managed database provider. Railway processes data on our behalf under a data processing relationship and is SOC 2 Type II certified.
• Stripe, Inc. — to process subscription billing. Only billing-related information is shared with Stripe; financial transaction data and bank account data are not.
• Legal compliance — if required by law, court order, or to protect the rights and safety of users or the public, we may disclose data to government authorities.

5. Data Security

We take the security of your financial data seriously:

• All data is transmitted over HTTPS/TLS (TLS 1.2 or higher)
• Passwords are hashed using bcrypt and are never recoverable
• Access to financial data is restricted by role-based access control enforced server-side
• All data is logically isolated per organization — no tenant can access another tenant's data
• Our hosting infrastructure (Railway) is SOC 2 Type II certified and provides encryption at rest for database storage
• Production system access requires multi-factor authentication

Despite these measures, no system is completely immune to risk. In the event of a security incident affecting your data, we will notify you within 72 hours of confirmed discovery.

6. Data Retention

We retain your data for as long as your account is active and for a period afterward to allow data export:

• Active accounts: Data is retained for the duration of your subscription
• Canceled accounts: Data is retained for 90 days after cancellation, during which you can request an export. After 90 days, all data — including financial records, user accounts, bank account information, and audit logs — is permanently deleted.
• Bank account data: Bank account records are deactivated when removed. Historical financial records are retained for audit integrity.
• Backup retention: Automated daily backups are retained for 30 days, then pruned.

Note: Churches often have legal obligations to retain financial records (generally 7 years under IRS guidance for US nonprofits). We recommend exporting your data before cancellation if you need records beyond our 90-day retention window.

7. Your Rights and Choices

You have the following rights with respect to your personal data:

• Access: You can access your financial data and account information within the application at any time.
• Export: You can request a full export of your organization's data at any time by contacting us at [email protected].
• Deletion: You may request deletion of your personal data. We will remove your personal identifiers within 30 days. Financial records attributed to your account may be retained for your organization's audit integrity at the request of your organization's administrator.
• Remove bank accounts: You can remove any bank account from active use at any time through the application.
• Cancel your subscription: You may cancel at any time. Your data remains available for 90 days after cancellation before permanent deletion.

To exercise any of these rights, contact us at [email protected].

8. Cookies and Tracking

StewardView does not use advertising cookies, third-party tracking pixels, or behavioral analytics. The application uses a JSON Web Token (JWT) stored in memory for authentication; no persistent authentication cookies are set.

9. Children's Privacy

StewardView is intended for use by adults managing organizational finances. We do not knowingly collect personal data from individuals under the age of 18. If you believe a minor's data has been submitted to our platform, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the effective date at the top of this page and notify active users by email. Continued use of StewardView after notification constitutes acceptance of the updated policy.

11. Contact Us

For privacy-related questions, data requests, or concerns, contact us at: