Privacy Policy

Last Updated: May 18, 2026

What This Policy Covers

This Privacy Policy explains what information The Living Word Timeline (“we,” “our,” or “the App”) collects, how we use it, and your rights regarding your data. We respect your privacy and are committed to protecting it.

Information We Collect

Information You Provide

When you create an account with email and password, we collect:

• Your email address
• Your display name (if you choose to set one)
• Your password (stored securely by our authentication provider, never visible to us)

When you sign in with Google, we receive your email address, your Google account name, and a profile picture URL from Google. We do not request access to your contacts, calendar, Drive, or any other Google services. You can revoke this access at any time from your Google account settings.

When you use the App, we may store:

• Bookmarks you save on timeline events
• Personal notes you attach to events
• Study Room progress and preferences
• Your last timeline position and zoom level

Information Collected Automatically

When you visit the App, our hosting provider (Vercel) and our error monitoring provider (Sentry) may collect:

• Your IP address and general geographic region (country/state level, never precise location)
• Your device type, browser, and operating system
• Pages you visit and the path that led to any errors
• Stack traces and breadcrumbs when an error occurs in the App (collected by Sentry)

We do NOT collect:

• Your precise location
• Your contacts or phone data
• Any financial or payment information (handled entirely by our payment processor if applicable)
• Any data from other apps on your device

How We Use Your Information

We use your information to:

• Provide and maintain your account
• Save your bookmarks, notes, and preferences
• Improve the App based on how people use it
• Send you important account-related communications (password resets, security alerts)

We do NOT:

• Sell your data to anyone
• Share your personal information with advertisers
• Use your data for targeted advertising
• Send you marketing emails without your consent

Third-Party Services

The App uses the following third-party services that may collect data:

Supabase — Our database and authentication provider. Stores your account information and app data securely. Privacy policy: supabase.com/privacy

Vercel — Our hosting provider. Handles every request to the App and may log connection metadata (IP, user agent, referrer, response status) for the purpose of operating the site. Privacy policy: vercel.com/legal/privacy-policy

Sentry — Our error monitoring provider. When the App encounters an error, Sentry receives a stack trace, the URL where the error happened, your browser and OS, your IP address, and any “breadcrumb” events leading up to the error (such as navigation events and clicks). Sentry does NOT receive your password, your notes, or any of the content of your bookmarks. Privacy policy: sentry.io/privacy/

Google (Sign-in with Google) — When you choose Google sign-in, we redirect you to Google to authenticate. Google shares your email, account name, and profile picture URL with us. Google may set its own cookies during this flow. Privacy policy: policies.google.com/privacy

bible-api.com and bolls.life — Public scripture APIs we call from your browser when you open the scripture pane or run a Bible word search. These services may log basic connection data (IP, user agent, requested verse) when you request a passage. We do not send them any account information.

Google Fonts — We load fonts (Cormorant Garamond and DM Sans) from Google’s servers. Google may collect basic connection data when fonts are loaded. Privacy policy: policies.google.com/privacy

YouTube — Some content within the App includes embedded YouTube videos. When you play a video, YouTube may set cookies and collect data according to their privacy policy. Videos are embedded using YouTube’s privacy-enhanced mode where possible. Privacy policy: policies.google.com/privacy

OpenStreetMap / Carto — Our interactive map uses map tiles from OpenStreetMap contributors and Carto. These services may log basic connection data when map tiles are loaded. Privacy policy: carto.com/privacy

Cookies

When you sign in, our authentication provider (Supabase) sets a small number of first-party cookies on your browser to keep you signed in across page loads. These cookies are essential to the sign-in feature and are deleted when you sign out or when their session expires.

Third-party services embedded in the App (YouTube videos, Google Fonts, Google sign-in) may set their own cookies according to their own policies. By using the App, you acknowledge that these third-party cookies may be set.

Data Storage and Security

Your data is stored securely on Supabase servers. We implement industry-standard security measures including:

• Encrypted data transmission (HTTPS everywhere)
• Row Level Security on all database tables ensuring users can only access their own data
• Secure authentication token handling
• Environment variables for all sensitive configuration

No method of electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Your Rights

You have the right to:

Access your data — You can view all your bookmarks, notes, and preferences within the App at any time.

Update your data — You can edit your display name, email, and password through your profile settings.

Delete your data — You can delete your account and all associated data (bookmarks, notes, preferences) at any time through the “Delete My Account” option in your profile settings. This action is permanent and cannot be undone.

Export your data — You may request a copy of your data by contacting us at the email address below.

Data Retention

We retain your data for as long as your account is active. If you delete your account, all your personal data (email, display name, bookmarks, notes, preferences) is permanently deleted from our systems within 30 days.

Server logs and error reports are retained by our hosting and monitoring providers (Vercel, Sentry) according to their own retention policies, generally between 30 and 90 days, after which they are deleted automatically.

Children’s Privacy

The App is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us and we will delete it.

International Users

If you are accessing the App from outside the United States, please be aware that your data may be transferred to and stored on servers in the United States. By using the App, you consent to this transfer.

For California Residents (CCPA)

If you are a California resident, you have the right to:

• Know what personal information we collect and how we use it
• Request deletion of your personal information
• Opt out of the sale of your personal information (we do not sell your data)
• Not be discriminated against for exercising your privacy rights

For European Users (GDPR)

If you are located in the European Economic Area, you have additional rights including:

• The right to access, correct, or delete your personal data
• The right to restrict or object to processing of your data
• The right to data portability
• The right to withdraw consent at any time
• The right to lodge a complaint with a supervisory authority

Our legal basis for processing your data is your consent (when you create an account) and our legitimate interest in providing and improving the App.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting a notice within the App or by email. Your continued use of the App after changes are posted constitutes your acceptance of the updated policy.

Contact Us

If you have any questions about this Privacy Policy or your data, contact us at: