C
Chox

Privacy Policy

At Chox, we take your privacy seriously. This policy explains how we collect, use, and protect your information.

Last Updated: November 25, 2024

Introduction

Welcome to Chox. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web platform and mobile application.

By using Chox, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our services.

Information We Collect

Personal Information

We collect the following personal information when you register and use our services:

  • Name and email address
  • Church affiliation and role
  • Account credentials (securely hashed passwords)
  • Profile information and preferences

Sermon Content

When you upload sermons to our platform, we collect:

  • Audio files (MP3 format)
  • Sermon metadata (title, speaker, date, description)
  • AI-generated content (transcriptions, summaries, quizzes, devotionals)
  • Church branding assets (logos, colors)

Usage Information

We automatically collect certain information about your device and usage:

  • Device information (browser type, operating system)
  • IP address and location data
  • Usage patterns and feature interactions
  • Error logs and performance data

How We Use Your Information

We use the information we collect for the following purposes:

  • Service Delivery: To provide sermon transcription, AI summaries, quizzes, and daily devotionals
  • Account Management: To create and manage your account, authenticate users, and provide customer support
  • AI Processing: To send audio files to OpenAI (Whisper) for transcription and Anthropic (Claude) for content generation
  • Communication: To send service updates, notifications, and respond to inquiries
  • Improvement: To analyze usage patterns and improve our platform features
  • Security: To detect, prevent, and address technical issues and fraudulent activity
  • Compliance: To comply with legal obligations and enforce our terms of service

Third-Party Services

We use the following third-party services to provide our platform:

Firebase (Google Cloud)

Provides authentication, database (Firestore), file storage, and cloud functions. Subject to Google's Privacy Policy.

OpenAI

Processes audio files using Whisper API for transcription. Audio is sent securely and is not used to train OpenAI models.

Anthropic

Processes transcriptions using Claude API to generate summaries, quizzes, and devotionals. Content is not used to train Anthropic models.

Vercel

Hosts our web application with CDN and edge functions. Subject to Vercel's Privacy Policy.

Data Security

We implement industry-standard security measures to protect your information:

  • All data transmission uses HTTPS/TLS encryption
  • Passwords are securely hashed using Firebase Authentication
  • Files are stored in secure Firebase Storage with access controls
  • Database access is restricted by role-based security rules
  • Regular security audits and updates

However, no method of transmission over the Internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Data Retention

We retain your information for as long as your account is active or as needed to provide services:

  • Account Data: Retained until you delete your account
  • Sermon Content: Retained until you delete the sermon or your account
  • Usage Logs: Retained for up to 90 days for analytics and debugging
  • Backup Data: May be retained for up to 30 days in system backups

Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your account and associated data
  • Export: Request a copy of your data in a portable format
  • Opt-out: Unsubscribe from marketing communications
  • Object: Object to certain processing of your data

To exercise these rights, please contact us at privacy@getchox.com

Children's Privacy

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately at privacy@getchox.com

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from your country. We ensure appropriate safeguards are in place when transferring data internationally.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes. Changes are effective when posted.

Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: privacy@getchox.com

Support: support@getchox.com

Website: getchox.com

Questions About Privacy?

We're here to help. Reach out with any concerns.