Effective and last updated: July 16, 2026
1. Scope
This policy applies to the Stewardex website, application, pilot program, support services, and related communications. Stewardex is designed for churches and their authorized adult team members and is not directed to children under 13.
2. Information we process
- Account information: name, email address, authentication status, church membership, role, and permitted departments.
- Church information: organization name, campuses, addresses, contacts, ministries, rooms, and settings.
- Inventory information: assets, identifiers, locations, condition, checkout history, maintenance, reservations, audits, labels, files, and optional financial estimates.
- Support and pilot information: support requests, feedback, communications, and resolution history.
- Technical information: browser and device details, approximate network information, timestamps, application errors, security logs, and service activity needed to operate and protect Stewardex.
3. How information is used
We use information to provide and secure the service, isolate church workspaces, enforce permissions, process invitations, generate exports and labels, respond to support, diagnose errors, prevent abuse, maintain records requested by the church, and improve Stewardex. We do not sell church inventory or account information.
4. Service providers and integrations
Stewardex uses service providers for hosting, databases, file storage, authentication, security, and transactional email. Current core providers include Cloudflare and Supabase. If a church chooses an optional integration, such as Intuit QuickBooks, the information that church directs us to transfer is also governed by that provider’s terms and privacy practices.
5. Church administrators and team members
The church subscription owner and authorized administrators control their workspace, including team invitations, roles, department access, exports, and records. A church may be responsible for notices or permissions required before entering personal information about employees, volunteers, borrowers, donors, or vendors.
6. Retention, export, and deletion
We retain information while an account is active and as reasonably needed for security, support, legal obligations, dispute resolution, and backup recovery. Authorized administrators can export church records. Requests to close a church account or delete personal account information may be sent to the privacy contact below. Some limited records may be retained when required by law or necessary to document a security, billing, or legal event.
7. Cookies and local storage
Stewardex uses authentication cookies and browser storage necessary to keep users signed in, remember application preferences, and support active workflows such as inventory audits. We do not currently use third-party advertising cookies.
8. Security and incidents
We use access controls, tenant separation, authenticated requests, audit records, and managed infrastructure safeguards designed to protect information. No internet service can guarantee absolute security. If a qualifying incident occurs, Stewardex will investigate and provide notices as required by applicable law.
9. Privacy requests and changes
To request access, correction, export, or deletion, contact privacy@getstewardex.com. We may verify identity and church authority before completing a request. Material policy changes will be posted here with a revised date and, when appropriate, communicated to account owners.