Legal
Privacy Policy
Effective: May 11, 2026 · Operated by Dwayne Omarr Evangelistic Ministries
🏛️ Who We Are
KingdomOS is a ministry management platform operated by Dwayne Omarr Evangelistic Ministries (DOEMI), a registered 501(c)(3) nonprofit organization based in Wildomar, California.
This Privacy Policy applies to the KingdomOS website at kingdomosbydoemi.org and all services offered through the platform. By using KingdomOS, you agree to the collection and use of information in accordance with this policy.
Our commitment: We are a ministry-first organization. We collect only what we need to serve you well, we never sell your personal information, and we protect your data with the same stewardship we apply to everything we do.
📋 Information We Collect
We collect the following categories of information when you use KingdomOS:
Information you provide directly:
- Account registration — your full name and email address when you create a KingdomOS account
- Profile information — ministry name, role, or other details you add to your profile
- Payment information — billing details processed securely through Stripe; we do not store raw card numbers
- Donation records — giving amounts, dates, and payment method (Cash App, PayPal, Zelle, etc.) that you log in your dashboard
- Content and communications — events, calendar entries, and any messages you send via our contact form
Information collected automatically:
- Usage analytics — pages visited, time on site, clicks, and navigation patterns via Google Analytics 4
- Advertising signals — interactions and conversions tracked via Facebook (Meta) Pixel and Meta Conversions API
- UTM parameters — marketing source data (utm_source, utm_medium, utm_campaign, utm_term, utm_content) captured at signup to understand which channels bring members to our ministry
- Session data — login session tokens stored securely in our database to keep you signed in across visits
- Device and browser information — browser type, operating system, IP address, and referrer URL collected automatically by analytics services
⚡ How We Use Your Information
We use the information we collect to:
- Create and manage your KingdomOS account and authenticate your identity
- Provide the ministry management features you signed up for — donation tracking, member dashboard, event calendar, and analytics
- Process subscription payments and send billing receipts via Stripe
- Send transactional emails — welcome messages, password reset links, and account notifications
- Notify ministry leadership of new member signups (internal operations only)
- Understand how members use the platform to improve features and fix issues
- Measure the effectiveness of our outreach and marketing so we can reach more ministry leaders
- Comply with legal obligations applicable to a 501(c)(3) nonprofit organization
We do not use your information for automated decision-making or profiling that produces legal or significant effects on you.
🍪 Cookies & Tracking
KingdomOS uses cookies and similar tracking technologies for the following purposes:
- Session cookies — essential, HttpOnly cookies that keep you logged in during your visit. Without these, the platform cannot function. These expire when you log out or after 7 days of inactivity.
- Analytics cookies — Google Analytics 4 uses cookies to measure site traffic, page views, and user behavior in aggregate. This data is anonymized and used to improve the platform.
- Advertising cookies — the Meta Pixel places cookies to measure the effectiveness of our outreach on Facebook and Instagram. This includes tracking whether a visitor signs up after seeing our content.
You can control cookies through your browser settings. Disabling cookies may affect your ability to log in and use member features. Google Analytics data collection can be opted out of via the Google Analytics Opt-out Browser Add-on.
🔗 Third-Party Services
KingdomOS integrates with the following third-party services. Each has its own privacy policy that governs their data practices:
Stripe
Payment processing for subscriptions and donations. Stripe handles PCI-compliant card processing; we never see raw card numbers.
Google Analytics 4
Website usage analytics — page views, session duration, traffic sources. Data is aggregated and anonymized.
Meta (Facebook) Pixel
Conversion tracking and audience measurement for ministry outreach on Facebook and Instagram. Server-side Conversions API also used.
Polsia / Postmark
Transactional email delivery — welcome emails, password resets, account notifications. We use Polsia's authenticated email proxy.
Neon PostgreSQL
Serverless PostgreSQL database where member accounts, donation records, and session data are stored securely.
Render
Cloud hosting provider where the KingdomOS application runs. Server logs may contain IP addresses and request data.
🔒 Data Sharing & Disclosure
We do not sell, rent, or trade your personal information to third parties.
We share data only in the following limited circumstances:
- Service providers — We share data with Stripe, Google, Meta, and other vendors listed above only as necessary to provide the services you requested. These providers are contractually obligated to protect your data.
- Legal requirements — We may disclose information if required by law, court order, or government authority, or to protect the rights, property, or safety of DOEMI, our members, or the public.
- Ministry operations — Ministry leadership (Dwayne Omarr and authorized DOEMI staff) may access member records for legitimate operational purposes, including responding to your requests and managing the ministry community.
- Business transfers — If DOEMI merges with or transfers assets to another ministry organization, member data may transfer as part of that transaction, subject to equivalent privacy protections.
We never sell your data. As a 501(c)(3) ministry, our interests are aligned with your trust — not with data monetization.
🗓️ Data Retention
We retain your data for as long as your account is active or as needed to provide services. Specifically:
- Account data — retained for the duration of your membership plus 3 years after account closure to comply with nonprofit record-keeping requirements
- Donation records — retained for 7 years in accordance with IRS nonprofit financial record requirements
- Session data — active sessions expire after 7 days of inactivity; terminated on logout
- Password reset tokens — expire 1 hour after issuance and are deleted immediately upon use
- Analytics data — Google Analytics retains data per their standard retention settings (14 months by default); we do not control this data after transmission
- Contact form submissions — retained until your inquiry is resolved, then archived for 1 year
You may request deletion of your account data at any time by contacting us (see Section 12). Legal retention obligations may prevent immediate deletion of certain records.
🛡️ Security
We take the security of your data seriously and implement reasonable administrative, technical, and physical safeguards, including:
- HTTPS encryption for all data in transit between your browser and our servers
- Bcrypt password hashing — your password is never stored in plain text
- HttpOnly, Secure, SameSite session cookies that cannot be accessed by JavaScript and are protected against cross-site request forgery
- Parameterized database queries to prevent SQL injection
- Stripe's PCI-compliant infrastructure for all payment processing
- Access to production systems restricted to authorized personnel only
No method of electronic transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. If you believe your account has been compromised, contact us immediately at kingdomos-7@polsia.app.
⚖️ Your Rights (CCPA & GDPR)
Depending on your location, you may have the following rights regarding your personal information:
- Access — request a copy of the personal data we hold about you
- Correction — request that we correct inaccurate or incomplete information
- Deletion — request deletion of your personal data ("right to be forgotten"), subject to legal retention obligations
- Portability — request your data in a structured, machine-readable format
- Opt-out of sale — we do not sell personal information; this right is satisfied by our business model
- Restriction — request that we restrict processing of your data in certain circumstances
- Objection — object to processing of your data for direct marketing purposes
California residents (CCPA): You have the right to know what personal information we collect and how it is used, to request deletion, and to opt out of any sale of personal information (we do not sell data). To exercise your rights, contact us using the information in Section 12.
EEA/UK residents (GDPR): Our legal basis for processing your data is: (a) contract performance — to provide the KingdomOS service you signed up for; (b) legitimate interests — analytics and security; and (c) consent — where we explicitly request it (e.g., marketing communications). You may withdraw consent at any time.
To exercise any of these rights, email us at kingdomos-7@polsia.app. We will respond within 30 days.
👨👧 Children's Privacy
KingdomOS is intended for adults aged 18 and older. We do not knowingly collect personal information from children under 13. If we learn that we have inadvertently collected data from a child under 13, we will delete that information promptly.
If you believe a child under 13 has provided us with personal information, please contact us at kingdomos-7@polsia.app.
📝 Changes to This Policy
We may update this Privacy Policy from time to time as our services evolve or legal requirements change. When we make material changes, we will:
- Update the "Effective" date at the top of this page
- Notify active members via the email address associated with their account
- In some cases, request your renewed consent
Your continued use of KingdomOS after changes are posted constitutes your acceptance of the updated policy. We encourage you to review this page periodically.