Parchment

Privacy Policy

Effective: May 23, 2026

Parchment is operated by Marlin Design Co. LLC ("Parchment," "we," "us," or "our"). This Privacy Policy explains what information we collect, how we use it, and your rights regarding it. We've tried to write it plainly. Where we use legal terms, they're defined.

This policy applies to parchmentdirectory.com and the Parchment service.

1. Information We Collect

Account information. When you create an account, we collect your name, email address, password (hashed), and church or organization name.

Billing information. Stripe processes your payments. We receive billing metadata (plan, amount, last four digits of card, billing country) but never your full card number.

Member data from Planning Center. When you connect Planning Center, we read member records, including names, photos, addresses, phone numbers, email addresses, birthdates, and household relationships, depending on what you choose to include in your directory.

Usage information. We log basic information about how you use the Service — pages visited, actions taken, browser type, IP address — to operate, secure, and improve the Service.

Communications. If you email us, we keep that email and our reply.

2. How We Use Information

We use the information we collect to:

  • Provide the Service (generate directories, sync with Planning Center, send confirmation emails)
  • Process payments and prevent fraud
  • Communicate with you about your account, including service announcements and security alerts
  • Improve the Service (debugging, performance monitoring, aggregate analytics)
  • Comply with legal obligations

We do not use Your Data or any member data to train AI or machine-learning models. Ever. This is a hard commitment.

We do not sell your personal information or your members' personal information.

3. How We Share Information

We share information only with the following:

  • Service providers ("sub-processors") that help us operate the Service:
  • Stripe — payment processing
  • Planning Center Online — your existing integration
  • Render — application hosting
  • Resend — transactional email
  • Law enforcement or regulators, when required by valid legal process
  • A successor entity, in the event of a merger, acquisition, or sale of assets — in which case we'll notify you and your data will remain subject to a policy at least as protective as this one

Sub-processors are bound by contract to process data only on our instructions.

4. Data Retention and Deletion

We retain account and member data only as long as your account is active.

When you delete your account, we delete your data immediately and permanently. There is no soft-delete or recovery window. This includes all directories, synced member records, and account information.

We may retain limited records for legal, tax, or fraud-prevention reasons (for example, a record that a refund was issued), in which case we keep only what is strictly necessary.

5. Security

We use industry-standard practices to protect your data, including encryption in transit (TLS) and at rest, access controls, and regular security review. No system is perfectly secure; if a breach affecting your data occurs, we will notify you and applicable authorities as required by law.

6. Children's Data

Church directories often include information about minors. You are responsible for obtaining parental consent before adding information about children to a Parchment directory. We do not knowingly collect personal information directly from children under 13 (or the applicable age in your jurisdiction). If you believe we've inadvertently received such information without proper consent, contact us at hello@parchmentdirectory.com and we will delete it.

7. Your Rights — Everyone

Regardless of where you live, you can:

  • Access your data — most is visible in your account; for anything else, email us
  • Correct inaccurate information from your account settings or by contacting us
  • Delete your account and all associated data from your account settings
  • Export your data — email us and we'll provide a copy in a portable format

To exercise any of these rights, email hello@parchmentdirectory.com.

8. Your Rights — European Union, United Kingdom, and Switzerland (GDPR)

If you are located in the EU, UK, or Switzerland, you have the following additional rights under the General Data Protection Regulation:

  • Right of access to the personal data we hold about you
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restriction of processing
  • Right to data portability
  • Right to object to processing based on legitimate interests
  • Right to withdraw consent at any time, where processing is based on consent
  • Right to lodge a complaint with your local data-protection authority

Lawful basis. We process personal data on the following bases: (a) performance of our contract with you, (b) your consent (for optional features), (c) compliance with legal obligations, and (d) our legitimate interests in operating and securing the Service.

International transfers. If you are in the EU/UK/Switzerland, your data may be transferred to the United States, where our infrastructure is located. We rely on Standard Contractual Clauses or equivalent safeguards for these transfers.

Data Protection Officer. For GDPR inquiries, contact hello@parchmentdirectory.com.

9. Your Rights — California (CCPA / CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act and California Privacy Rights Act:

  • Right to know what personal information we collect, use, and share
  • Right to delete your personal information
  • Right to correct inaccurate personal information
  • Right to opt out of "sale" or "sharing" of personal information — we do not sell or share personal information as defined under the CCPA, so there is nothing to opt out of
  • Right to non-discrimination for exercising your rights
  • Right to limit use of sensitive personal information

To exercise these rights, email hello@parchmentdirectory.com. We will verify your identity before responding to substantive requests.

We do not knowingly sell or share the personal information of minors under 16.

10. Cookies and Tracking

We use essential cookies to keep you logged in and to remember your preferences. We use minimal analytics to understand how the Service is used. We do not use third-party advertising trackers.

You can disable cookies in your browser, but some parts of the Service may not work properly without them.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we'll notify you by email or in-app before they take effect. The "Effective" date at the top tells you when the current version began applying.

12. Contact

Questions, requests, or complaints about your privacy? Email hello@parchmentdirectory.com.

Marlin Design Co. LLC
[BUSINESS ADDRESS]