Last updated: April 2026
GospelCall (“we,” “us,” or “our”) provides an AI-powered phone answering service for churches. This Privacy Policy describes how we collect, use, store, and protect information when you use our Service, and the rights you have regarding your data. This policy applies to church administrators who manage accounts (“Customers”) and individuals who call churches using our Service (“Callers”).
When a church registers, we collect: church name, address, phone number, email address, website URL, denomination, service times, and a description of the church. This information is used to configure the AI answering service and provide accurate responses to callers.
Church administrators provide staff contact information including: name, phone number, email address, and role. This data is used to route urgent calls and deliver messages to the appropriate staff members.
Churches provide question-and-answer content organized by category (e.g., service times, location, events). This content is used by the AI to respond accurately to caller inquiries.
When a call is handled by the Service, we collect: the caller's phone number (provided by the phone carrier), call duration, timestamps, whether the call was transferred, and the outcome of the call. This data is necessary to operate the Service and for billing purposes.
The AI generates text transcripts of each conversation in real time. These transcripts are stored in the church's account and are accessible through the dashboard. Transcripts include both the caller's words (as interpreted by the speech recognition system) and the AI's responses.
Churches can opt out of transcript storage in their settings. When opted out, no transcript data is written to the database after a call ends, though the audio is still processed in real time by our speech-to-text provider during the call.
When a caller leaves a message, we collect the information they provide: their name, phone number, reason for calling, and urgency level. This information is delivered to designated staff via SMS or email.
We collect email addresses and securely hashed passwords for account authentication. If you sign in with Google, we receive your Google profile information (name and email) through OAuth. We do not store your Google password.
We store your Stripe customer ID and subscription details to manage your account. Payment card numbers and bank details are processed and stored exclusively by Stripe and are never stored on our servers.
We use the information we collect to:
We do not sell your data or caller data to third parties. We do not use caller conversations or church data to train AI models.
We use the following third-party services to operate the Service. Each provider receives only the data necessary to perform their function:
Retell AI — Provides the phone infrastructure, real-time speech-to-text, text-to-speech, and conversational turn-taking. Receives and transmits call audio and caller phone numbers, and processes call transfers.
Anthropic (Claude) — Provides AI language processing. Receives conversation text to generate contextual responses, classify caller intent, and extract message details. Text is processed per-request and not used by Anthropic to train models.
OpenAI— Generates vector embeddings of your church's knowledge-base content (e.g. service times, ministries, FAQs) so the assistant can retrieve relevant answers during a call. Embeddings are generated when you add or import knowledge-base content.
Pinecone — Stores those vector embeddings in a per-church namespace and serves them back during calls so the assistant can answer caller questions accurately.
Firecrawl— When you opt in to website import, Firecrawl crawls your church's public website and returns the page text we use to populate the knowledge base.
Resend — Delivers email notifications for message delivery to staff contacts. Receives staff email addresses and message content.
Stripe — Processes subscription payments and manages billing. Receives billing-related data. Payment card details are handled exclusively by Stripe under their PCI DSS compliance.
Supabase — Provides database hosting and authentication services. Stores church data, call logs, transcripts, and account information in PostgreSQL databases with encryption at rest.
Vercel — Hosts the web application (dashboard and API). Processes web requests including authentication and API calls.
Railway — Hosts the voice processing server. Handles real-time call processing and WebSocket connections.
This is an AI-powered service. When someone calls a phone number managed by GospelCall, their call is answered by an artificial intelligence system. Callers are informed at the beginning of each call that the call is assisted by AI and may be recorded.
How calls are processed:Call audio is streamed in real time to our phone provider (Retell AI), which transcribes speech to text and synthesizes voice responses. The transcribed text is sent to our AI provider (Anthropic Claude) to understand the caller's intent and generate a response. Retell speaks the response back to the caller. This entire process happens in real time during the call.
Audio retention: Raw call audio is not permanently stored by GospelCall. Audio is processed in a streaming fashion during the call and is not retained after processing. Only the text transcripts of conversations are stored.
Transcript retention:Conversation transcripts are stored in your church's account and are accessible through the dashboard. You may review, and request deletion of transcripts at any time.
We take the security of your data seriously. Our security measures include:
Data is stored in the United States. Our hosting providers (Supabase, Vercel, Railway) maintain SOC 2 compliance and employ industry-standard security practices.
We retain your data for as long as your account is active or as needed to provide the Service. Specific retention periods:
Upon account closure, we will delete your data within 90 days, except where retention is required by law.
Depending on your jurisdiction, you may have the following rights regarding your data:
For Callers: If you have called a church that uses GospelCall and wish to exercise your data rights (access, correction, or deletion of your call data), please contact either the church directly or reach out to us at the contact information below.
To exercise any of these rights, contact us at privacy@gospelcall.ai. We will respond within 30 days.
Your church retains ownership of all content and data you provide to the Service, including knowledge base entries, staff contacts, and church information. We do not claim ownership of your content.
You may request an export of your data at any time by contacting us. We will provide your data in a standard, machine-readable format (e.g., CSV or JSON) within a reasonable timeframe.
The Service is intended for use by church administrators and staff, who must be at least 18 years of age. We do not knowingly collect personal information from children under 13. If a child calls a church using GospelCall, the call is processed the same as any other call. If you believe we have inadvertently collected information from a child under 13, please contact us so we can delete it.
The GospelCall dashboard uses essential cookies for authentication and session management. These cookies are necessary for the Service to function and cannot be disabled. We use:
We do not use third-party tracking cookies, advertising cookies, or analytics services that track individual users across websites.
We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. If we make material changes, we will notify you by email or through the Service dashboard. Your continued use of the Service after changes take effect constitutes acceptance of the updated policy.
If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at privacy@gospelcall.ai.