Kingdom Bible App ("we", "our", "the app") is operated by Delvin Hale, who acts as the data controller for personal data processed through the app. This policy explains what information we handle, the choices you have, and how to exercise your rights.
Guest mode (no account)
You can use the app fully as a guest. Your progress, level stars, language, settings and streaks are stored locally on your device using browser localStorage and never leave your device.
When you create an account
If you sign in with email, Google or Apple, we store the following in our managed cloud backend so your progress follows you across devices and can power the leaderboard:
- Your email address (required for sign-in, password reset, and opt-in reminder emails).
- A user ID issued by our authentication provider.
- An optional display name and avatar URL.
- Your app activity (chapters, stars, streaks, prayers logged, hearts, settings).
- If you use Google or Apple, the OAuth identifier returned by that provider.
Data is transmitted over HTTPS and stored encrypted at rest by our backend provider. Your display name and aggregate score appear on the public leaderboard if you opt in by signing in; nothing else is shared.
Legal basis (UK / EEA)
If you are in the UK or EEA, we rely on the following legal bases under UK GDPR / GDPR:
- Contract (Art. 6(1)(b)): account creation, sign-in, syncing your progress, and providing the Disciple subscription.
- Consent (Art. 6(1)(a)): push notifications, reminder emails, and (on Android) personalized ads. Withdraw at any time in Settings or your device settings.
- Legitimate interests (Art. 6(1)(f)): security, fraud prevention, anonymous performance diagnostics, and tuning ad frequency caps.
- Legal obligation (Art. 6(1)(c)): retaining payment records via Paddle for tax and accounting law.
Push notifications
If you opt in to push notifications (daily verse, streak nudges, reminders), the app registers a device push token with our backend so we can deliver those messages. The token is linked to your account, used only to send notifications you requested, and is deleted when you turn notifications off or delete your account. The app may also send local reminder notifications scheduled on your device, which never leave the device.
Reminder emails
If you enable email reminders in Settings, we send transactional emails to the address on your account (daily walk, streak retention). You can unsubscribe from any reminder email or disable reminders entirely in Settings at any time.
Diagnostics
To keep the app reliable, we collect anonymous performance and crash diagnostics (page load timings, Web Vitals, JavaScript errors). These reports are not linked to your account or any advertising identifier and are used only to fix bugs and improve speed.
Cookies & local storage
We use browser localStorage and first-party cookies strictly to keep you signed in and to remember your settings. We do not use analytics cookies or third-party marketing cookies.
What we do not collect
- We do not collect your phone number, contacts, precise location or microphone audio.
- We do not sell personal data. We only share data with the limited service providers described below.
Who we share data with
We share personal data only with the following categories of recipients, and only to the extent needed to provide the service:
- Hosting and backend provider — to store your account, progress, and to authenticate sign-in.
- Paddle.com (Merchant of Record) — when you purchase a Disciple subscription, Paddle processes the sale, subscription management, payments, tax compliance, and invoicing. Paddle has its own privacy notice and acts as an independent controller for payment data.
- Authorities — only where required by law.
Data retention
We retain personal data only for as long as needed for the purposes set out above:
- Account, profile, and progress: kept while your account is active. Permanently deleted within 30 days of an account-deletion request.
- Push tokens: deleted immediately when notifications are turned off or the account is deleted.
- Reminder email suppression list: retained indefinitely so we honour your unsubscribe.
- Anonymous diagnostics & ad-frequency telemetry: kept for up to 12 months in aggregate; user IDs are severed at account deletion.
- Payment & subscription records (held by Paddle): retained per Paddle's privacy notice and applicable tax law (typically 7 years).
You can request deletion at any time at /delete-account.
International transfers
Our hosting, authentication, email, and payment providers may process data outside the UK and EEA (including the United States). Where this happens, we rely on the recipient's adequacy decision or the UK / EU Standard Contractual Clauses with appropriate supplementary safeguards.
Advertising
The free tier of the published Android app displays advertisements served by Google AdMob. AdMob is a third-party advertising SDK that may collect a limited set of identifiers (such as the Android Advertising ID) to show relevant ads, measure impressions, and prevent fraud. On first launch we show Google's UMP consent form so you can choose between personalized and non-personalized ads, and you can reset or opt out of personalized ads at any time from your device settings. We track our own ad events (impressions, rewards, closes) internally to tune frequency caps — this internal data is not shared with third parties. Subscribing to Kingdom Premium removes all ads entirely.
Your rights
Subject to applicable law (including UK GDPR and GDPR for UK / EEA users) you have the right to:
- Access & portability: Settings → Download my data returns a JSON copy of everything we hold about you.
- Rectification: update your display name and email from Settings.
- Erasure: /delete-account or Settings → Delete my account permanently removes your account, profile, push tokens, and cloud progress.
- Restriction & objection: opt out of reminder emails, push notifications, and personalized ads at any time.
- Withdraw consent: for any processing based on consent, without affecting prior lawful processing.
- Local reset: Settings → Delete all data wipes everything from this device.
- Lodge a complaint: UK / EEA users may complain to their supervisory authority (e.g. the UK ICO). We aim to respond to rights requests within one month.
Security
We use appropriate technical and organisational measures — HTTPS in transit, encryption at rest, role-based access controls, and row-level security in the database — to protect your data. No system is perfectly secure; please use a strong, unique password.
Children
Accounts are intended for users aged 13 and over. Younger users may play in guest mode without providing any personal information.
Contact
Questions about this policy? Visit the Contact page.