(206) 736-5504

villaDeus Privacy Policy

Effective Date: Jan 15, 2026
–version 2.0

Welcome to the villaDeus Privacy Policy. This policy explains how villaDeus, Inc. (“villaDeus,” “we,” “us,” or “our”) collects, uses, stores, protects, and discloses information when providing our software, services, websites, and integrations (collectively, the “Services”). Our goal is to be transparent, protect the trust placed in us by churches and ministries, and safeguard the sensitive information entrusted to our care.

This Privacy Policy applies to all webpages, applications, embeddable modules, integrations, APIs, and services hosted by or provided by villaDeus, including future versions and updates.

1. Overview and Scope

villaDeus primarily serves churches, ministries, and faith-based organizations (“Church Clients”). In most cases, villaDeus acts as a data processor on behalf of Church Clients, while the Church Client remains the data controller for congregant, donor, and staff information. By using our Services, you acknowledge that information may be collected, processed, and stored as described in this Privacy Policy. In the context of payment processing and donation collection services, villaDeus and villaDeus GIVING may also act as an authorized agent of the Church Client, as further described in the Terms of Service.

2. Information We Collect

Depending on the Services used, we may collect and process the following categories of information:

a. Account and Business Information

  • Names, email addresses, phone numbers, and other contact details
  • Church or organizational information
  • User credentials and role-based access information

b. Donor and Congregant Information

On behalf of Church Clients, we may process:
  • Names, contact information, household and directory details
  • Donation and contribution records
  • Giving history, fund designations, and related transaction metadata
All donor and congregant data remains the property of the Church Client.

c. Merchant and Financial Information

When required to establish or maintain merchant or payment services, we may collect:
  • Tax identification numbers
  • Corporate and ownership details
  • Personal identity information (e.g., government-issued ID, date of birth)
This information is collected only when necessary and handled with heightened security controls.

d. Technical and Usage Information

  • IP addresses, browser types, device information
  • Cookies and similar technologies (see Section 8)

3. Third-Party Church Management System (ChMS) Integrations

villaDeus offers integrations with third-party Church Management Systems (“ChMS”) such as Planning Center, Rock RMS, Church Community Builder (CCB), and similar platforms. When a Church Client enables an integration:
  • villaDeus may access donor, congregant, contribution, and related church data from the third-party ChMS via secure APIs.
  • Some of this data may be stored within villaDeus systems to:
    • Facilitate gift and donor management
    • Reduce administrative burden for churches
    • Support data synchronization between systems
    • Assist with platform migrations (into or out of villaDeus)

API Credentials and Authorized Access

  • In some cases, Church Clients may create API credentials or service accounts within a third-party ChMS for villaDeus use.
  • In limited situations, Church Clients may authorize specific villaDeus staff to access third-party systems solely for implementation, integration, support, or migration purposes.
villaDeus access is:
  • Authorized by the Church Client
  • Limited to the scope necessary to provide requested Services
  • Governed by internal access controls and audit practices

No Third-Party Disclosure

Data accessed via ChMS integrations:
  • Is never sold, rented, or shared with unrelated third parties
  • Is used only to provide Services requested by the Church Client
  • Is not used for marketing, advertising, or profiling

4. Use of Information

We use information collected or processed to:

  • Provide, operate, and improve our Services
  • Support integrations and data synchronization
  • Assist with onboarding, migrations, and technical support
  • Comply with legal and regulatory requirements
  • Protect the security and integrity of our systems

villaDeus does not use donor or congregant data for its own fundraising or marketing purposes.

5. Data Ownership and Client Responsibility

  • All donor, congregant, and directory data processed by villaDeus remains the sole property of the Church Client.
  • Church Clients are responsible for obtaining any required consents from their congregants.
  • villaDeus processes data strictly in accordance with Church Client instructions and this Privacy Policy.

6. Data Sharing and Disclosure

villaDeus does not sell, trade, or disclose personal information except:

  • To trusted service providers (e.g., hosting, infrastructure, security services) who are contractually bound to confidentiality and data protection obligations
  • When required by law, court order, or governmental regulation
  • To protect the rights, property, or safety of villaDeus, our clients, or others

7. Security Measures

We take security seriously and employ administrative, technical, and physical safeguards, including:

  • Encryption of sensitive data in transit and at rest
  • Role-based access controls and least-privilege principles
  • Regular vulnerability scanning and system monitoring
  • Restricted employee access based on job responsibilities

While no system can be guaranteed 100% secure, we work diligently to protect all information entrusted to us.

8. Cookies and Tracking Technologies

Cookies are used to:

  • Maintain sessions and preferences
  • Improve functionality and user experience
  • Analyze usage patterns and site performance

Cookies are not used to collect sensitive personal or financial information. You may disable cookies through your browser settings without materially impacting core functionality.

9. Children’s Privacy (COPPA)

villaDeus does not knowingly collect information from children under the age of 13. Any such information discovered will be promptly deleted.

10. Fair Information Practices and Data Breach Notification

In the event of a data breach involving personally identifiable information, villaDeus will notify affected Church Clients and/or individuals via email within ten (10) business days of discovery, unless a shorter timeframe is required by law.

11. External Links

Our Services may contain links to third-party websites. villaDeus is not responsible for the privacy practices or content of those sites. We encourage users to review third-party privacy policies.

12. Email Communications (CAN-SPAM)

To opt out of non-transactional email communications, contact us at info@villaDeus.com, and we will promptly honor your request.

13. Your Rights and Requests

You may contact us to:

  • Request access to information we process about you
  • Request correction or deletion of information (subject to Church Client authorization)
  • Raise concerns about data handling practices

Requests related to church-managed data may be redirected to the applicable Church Client.

Data retention and deletion timelines may be governed by contractual obligations set forth in the Terms of Service and Terms of Use, including post-termination access and retention periods.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be posted on our website, and the Effective Date will be updated accordingly.

15. Contact Us

For questions or concerns regarding this Privacy Policy, please contact:

villaDeus, Inc.
Email: info@villaDeus.com

info@villaDeus.com
206-736-5504

Copyright © 2025 villaDeus

Facebook Instagram Linkedin X-twitter