TheoGPT Logo

Privacy Policy

Last Updated: November 24, 2025

1. Introduction

Welcome to TheoGPT ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered Bible study application.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, name, and authentication credentials when you create an account
  • Chat Messages: Your questions and conversations with our AI assistant about Bible study topics
  • Bible Study Data: Reading history, bookmarks, annotations, and cross-references you create
  • Preferences: Theme settings, Bible translation preferences, and other customization choices

2.2 Automatically Collected Information

  • Usage Data: Pages visited, features used, time spent, and interaction patterns
  • Device Information: Browser type, operating system, device type, and screen resolution
  • Technical Data: IP address, cookies, session tokens, and error logs

2.3 AI Processing Information

  • Chat Interactions: Your messages are processed by third-party AI providers (such as OpenAI or Anthropic) to generate responses
  • Context Data: We may include relevant Bible passages and your previous conversations to provide better responses

3. How We Use Your Information

We use your information for the following purposes:

  • Provide Services: Deliver AI-powered Bible study features, save your progress, and personalize your experience
  • Improve Service: Analyze usage patterns to enhance features, fix bugs, and optimize performance
  • Communication: Send service updates, security alerts, and respond to your inquiries
  • Security: Detect and prevent fraud, abuse, and unauthorized access
  • Legal Compliance: Comply with applicable laws and regulations

4. Third-Party Services

We use trusted third-party services to provide and improve our application:

  • AI Providers: OpenAI, Anthropic, or other AI services to process your chat messages and generate responses
  • Authentication: Secure authentication services to manage user accounts
  • Analytics: Google Analytics or similar services to understand usage patterns (only with your consent)
  • Hosting: Cloud infrastructure providers to host and deliver our services

These third-party providers may have access to your information only to perform services on our behalf and are obligated to protect your data.

5. Data Retention

We retain your information for as long as necessary to:

  • Provide our services to you
  • Comply with legal obligations
  • Resolve disputes and enforce our agreements

When you delete your account, we will delete or anonymize your personal information within 90 days, except where required by law to retain it longer.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

6.1 GDPR Rights (EU Users)

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your personal data ("right to be forgotten")
  • Restriction: Limit how we process your data
  • Portability: Receive your data in a machine-readable format
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Revoke consent at any time

6.2 CCPA/CPRA Rights (California Users)

  • Know: Request disclosure of personal information collected
  • Delete: Request deletion of personal information
  • Opt-Out: Opt-out of the sale or sharing of personal information
  • Non-Discrimination: Not be discriminated against for exercising your rights

To exercise any of these rights, please contact us at privacy@theogpt.com.

7. Cookies

We use cookies and similar technologies to enhance your experience. For detailed information about the cookies we use, please see our Cookie Policy.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

  • Encryption of data in transit and at rest
  • Regular security audits and vulnerability assessments
  • Access controls and authentication mechanisms
  • Employee training on data protection

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security of your information.

9. Children's Privacy

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. We encourage you to review this policy periodically.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

13. Data Protection Officer

For GDPR-related inquiries, you may contact our Data Protection Officer at dpo@theogpt.com.