Sign In Sign Up
Online Bible Study
HolyJot logo

Privacy Policy

HolyJot, LLC (“HolyJot,” “we,” “our,” or “us”) is committed to protecting your privacy and safeguarding your personal information. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our Sites, Services, or any application powered by HolyJot, including our AI guide “Faith.” By accessing or using HolyJot, you agree to the terms of this Privacy Policy.

HomeLegalPrivacy Policy

Privacy Policy
HolyJot, LLC (“HolyJot,” “we,” “our,” or “us”) is committed to protecting your privacy and safeguarding your personal information. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our Sites, Services, or any application powered by HolyJot, including our AI guide “Faith.” By accessing or using HolyJot, you agree to the terms of this Privacy Policy.

Effective Date: September 24, 2025

For legal inquiries or to report concerns, please contact: legal@holyjot.com

1. Information We Collect

We collect the following categories of information:

A. Personal Information

When you create an account or interact with our platform, we may collect:

  • Full name
  • Email address
  • Profile details
  • Payment information (processed by secure third parties)
  • Optional data: phone number, geolocation, and user-uploaded content

B. Technical & Usage Data

We automatically collect:

  • IP address and browser information
  • Session duration, clickstream data, and device identifiers
  • Cookies and local storage (for functionality and analytics)

C. User-Generated Content

You may input content into journals, comment threads, AI chat with Faith, group discussions, and media reflections. You control what is shared and with whom.

D. Aggregated & De-Identified Data

We may anonymize or aggregate data for analytics, product development, and reporting purposes. Such data does not identify individuals.

2. How We Use Your Information

Your data is used to:

  • Deliver and improve HolyJot services
  • Facilitate journaling journeys, study groups, and content interaction
  • Enable secure payments and account authentication
  • Personalize your experience
  • Communicate with you via email or platform notifications
  • Comply with legal obligations

3. Sharing of Information

We never sell your personal information. We may share data with:

  • Third-party vendors (e.g., payment processors, email tools, hosting providers)
  • Legal authorities (when required by law, court order, or investigative process)
  • Faith-based professionals (therapists, pastors, group leaders) at your direction
  • Analytics and service partners, in compliance with applicable laws

4. Respecting Third-Party Rights

You may not use HolyJot or its AI features to:

  • Generate or upload content that infringes third-party copyrights, trademarks, privacy, or publicity rights
  • Include or replicate third-party personal information or intellectual property without consent
  • Plagiarize or reproduce content from others unlawfully

Resources to understand your legal obligations:

  • U.S. Copyright Office
  • U.S. Patent & Trademark Office
  • Lumen Database

To report misuse of your own intellectual property: contact legal@holyjot.com

5. Data Retention

We retain your data as long as your account is active or as necessary for legal and operational purposes. You can request deletion at any time through your account settings or by contacting info@holyjot.com.

6. Children’s Data

HolyJot is not intended for individuals under the age of 16. We do not knowingly collect data from children without verifiable parental consent. If we become aware of such data, it will be deleted promptly.

7. Your Rights & Choices

You may:

  • Access and edit your account information
  • Opt out of promotional communications
  • Delete your account and associated data
  • Disable cookies via browser settings (though doing so may affect usability)

8. YouTube API Disclosure

HolyJot uses YouTube API Services. Use of YouTube content is subject to:

  • Google Privacy Policy
  • YouTube Terms of Service

You may revoke HolyJot’s access to your YouTube data via your Google Security Settings.

9. Links to Third-Party Sites

Our platform may include links to other websites. We are not responsible for the content or privacy practices of third-party sites.

10. Hold Harmless & Limitation of Liability

By using HolyJot, you agree to hold HolyJot, LLC and its affiliates, officers, employees, agents, partners, and licensors harmless from any claims, damages, losses, or liabilities arising from:

  • Your use of the Services
  • Your content or interactions on the platform
  • Your reliance on any generated AI output from Faith
  • Violations of third-party rights or laws

We provide the platform and content as-is and disclaim all warranties, express or implied. HolyJot is not liable for errors, omissions, or harm resulting from your use of the platform.

11. Security & Data Protection 

We treat the protection of sensitive data with the highest priority. The following measures and commitments apply to any personal data that qualifies as sensitive under applicable law (for example: health, biometric, financial, authentication credentials, or religious beliefs):

  1. Encryption in Transit & At Rest
    • All data transmissions between users, client devices, and our servers are secured via TLS/SSL (or equivalent industry standard).
    • Sensitive data stored in our systems is encrypted at rest using AES-256 (or stronger) or equivalent cryptographic algorithms.
    • Encryption keys are stored and managed in a secure key management system (e.g. using a hardware security module, or equivalent), with strict controls on access and key rotation.
  2. Access Controls & Least Privilege
    • Access to systems or services handling sensitive data is restricted to authorized individuals only, following a least-privilege principle.
    • Role-based access control (RBAC) is enforced such that personnel, contractors, or third parties can only access data strictly necessary for their roles.
    • All access is logged, and periodic reviews of access rights and usage are conducted.
  3. Pseudonymization / Tokenization / Anonymization
    • Where feasible, we replace real identifiers with pseudonyms or tokens in downstream systems, so that only core systems deal with raw sensitive data.
    • For analytics, testing, or development environments, sensitive data is anonymized or de-identified unless the raw data is strictly needed.
  4. Monitoring, Intrusion Detection & Incident Response
    • We employ intrusion detection/prevention systems (IDS/IPS), security logging, anomaly detection, and continuous monitoring to detect suspicious activity.
    • We maintain a documented incident response plan and conduct regular drills.
    • In the event of a breach or unauthorized access involving sensitive data, we will promptly investigate, contain the breach, notify affected users, and notify regulators as required under applicable law.
  5. Data Minimization & Retention
    • We collect only the minimum sensitive data necessary to perform our services.
    • Sensitive data is purged, archived, or irreversibly anonymized when no longer needed or at the end of retention periods, subject to legal obligations.
  6. Third-Party & Vendor Safeguards
    • Any third-party vendor or service provider that processes, stores, or accesses sensitive data on our behalf must adhere to equivalent security and privacy standards and sign data protection agreements.
    • We conduct security reviews, audits, or assessments of critical vendors periodically.
  7. Regular Security Testing & Audits
    • We perform periodic vulnerability scanning, penetration testing, and security code reviews.
    • Findings are triaged and remediated in a prioritized manner, focusing first on issues that could threaten sensitive data.
  8. Data Breach Notification & Accountability
    • We maintain internal policies, procedures, and escalation paths to identify, assess, and remediate data breaches involving sensitive data.
    • Where required by law, we will notify affected users and regulators of any significant breach, providing details about the nature, scope, remediation, and mitigation steps taken.

We commit to transparency, accountability, and continuous improvement in how we safeguard sensitive data.

12. Changes to this Policy

We may update this Privacy Policy periodically. When we do, we will post the updated version on our site and revise the “Effective Date” accordingly. Your continued use of the platform after those changes constitutes acceptance of the revised policy.

Contact Us

If you have any questions or concerns about this Policy, or requests regarding your personal data, please contact:

  • info@holyjot.com
  • legal@holyjot.com

Last updated: September 24, 2025 

Last updated Wednesday, September 24, 2025

Legal

Generative AI User Guidelines
DMCA & Copyright Policy
Acceptable Use Policy (AUP)
User-Generated Content (UGC) Policy
Refund & Cancellation Policy
Cookie Policy
Privacy Policy
Terms of Service