Privacy Policy

Last updated: July 2, 2026

Keryo is an operating system for churches. This policy explains what data we process, why, and what rights you have — in plain language, because you are actually going to read it.

1. Who is responsible for your data

Each church using Keryo is the controller of its members’ data: it decides what information is recorded and for what purpose. Keryo acts as the processor: we store and process that data only on your church’s instructions.

For questions about specific data your church keeps about you, your church administrator is the first contact. You can also write to us at juancamilojpc2@gmail.com.

2. What data we process

Profile data: name, email, phone, date of birth, city, photo (if you upload one). Church-life data: teams, groups, courses, attendance, roles and — if your church uses the finance module — the church’s accounting records (not your personal banking data).

Sensitive data: some churches record information such as emergency medical instructions or identity documents for their members, including minors. The church is responsible for holding the member’s or the parents’/guardians’ authorization. These fields are protected by strict role-based access controls.

3. What we use data for

Exclusively to operate the service: member directories, team and event coordination, courses, notifications and church accounting. We do not sell data. We do not run ads. We do not use your data to train AI models.

4. Isolation between churches

Every church is isolated from every other at the database level (Row-Level Security). One church can never see another church’s data. Within your church, visibility depends on role: administrators see more; members see only basic directory information plus their own full profile.

5. Who we share data with (subprocessors)

We rely on infrastructure providers to run Keryo: Supabase (database and authentication, AWS us-east-1), Vercel (web hosting) and a transactional email provider for invitations. Each processes only what its function requires.

6. Your rights

Under Colombia’s Law 1581 of 2012, the EU GDPR and equivalent laws: you may access, update, correct and request deletion of your data, and withdraw your authorization. Exercise these rights through your church administrator or by writing to us directly.

Churches can export all their data in open formats (CSV) at any time from Settings. If you delete your account, your access and the personal data tied to your user are removed.

7. Retention

Event data older than 90 days is summarized and the detailed records are automatically deleted. Profile data is kept while your church keeps your record active, or until deletion is requested.

8. Security

Encryption in transit (TLS), per-church database isolation, role-based access control, error monitoring and periodic security audits. No system is infallible: if we detect an incident affecting your data, we will notify your church and the authorities where the law requires it.

9. Minors

Records of minors are created and managed by the church under its responsibility, with parental/guardian consent. A minor requesting their own platform access requires explicit approval from a church administrator.

10. Changes and contact

If we materially change this policy we will announce it inside the application. Questions or requests: juancamilojpc2@gmail.com.