IMPORTANT NOTICE REGARDING TEXT MESSAGING DATA
ChurchCandy does not share mobile numbers, opt-in data, or consent records with third parties or affiliates for marketing or promotional purposes. Opt-in information is kept confidential and is used only to provide messaging services. Limited sharing with subcontractors for support services, such as customer service or message delivery, is permitted. ChurchCandy manages SMS messaging on behalf of its clients and applies these practices consistently across all programs.
1. Information We Collect
Personal Information:
- Name, email address, phone number, physical address
- Payment information (if purchases or donations are made)
- Opt-in records and timestamps for all communication channels (SMS, email, etc.)
Non-Personal Information:
- IP address, browser type, device info
- Website usage patterns and analytics
- Cookies and similar technologies
Customer Communication:
- Records of inquiries and service requests
- Appointment or visit details and preferences
- Message history and engagement tracking
2. How We Use Your Information
We use collected data for:
- Providing, improving, and maintaining our services
- Processing transactions and support inquiries
- Sending SMS and email reminders, confirmations, and follow-ups
- Enhancing website functionality and user experience
- Ensuring security and fraud prevention
- Maintaining accurate records of user consent
3. TERMS & CONDITIONS – SMS Messaging Program
Business Identity
ChurchCandy provides messaging services on behalf of its client churches. SMS messages are sent from the individual church identified at the time of opt-in. Each church uses SMS messaging to allow individuals to plan visits, receive service reminders, and receive relevant church updates.
Text Message Program Terms & Conditions | Last Updated: JAN 2026
These Terms & Conditions govern participation in ChurchCandy’s SMS and email communication programs. By opting in to receive messages, you agree to these Terms and our Privacy Policy.
1. Program Description
ChurchCandy-managed SMS programs may send non-marketing text messages related to church visits, reminders, confirmations, and relevant updates. Message frequency may vary based on engagement and requests.
2. Consent to Receive Messages
You will receive SMS messages only if you voluntarily opt in by selecting an SMS consent checkbox or otherwise providing explicit consent. Consent is not required to submit inquiries or requests.
3. Opt-Out
You may opt out of SMS messages at any time by replying STOP to any message. After opting out, you will receive a confirmation message and no further SMS messages will be sent unless you re-enroll.
4. Opt-In Again
If you wish to rejoin after opting out, you may opt in again using the same method originally used to enroll.
5. Help and Support
For assistance, reply HELP to any message or contact ChurchCandy at clientsuccess@churchcandy.com.
Support contact details may vary by church and are provided in the SMS messages sent to the user.
6. Message Frequency and Rates
Message frequency varies. Message and data rates may apply. Contact your wireless carrier for details regarding your plan
7. Carrier Disclaimer
Wireless carriers are not liable for delayed or undelivered messages.
8. Privacy
Your participation in SMS programs is governed by ChurchCandy’s Privacy Policy & Terms, which describe how data is collected, stored, and protected.
9. Changes to Terms
We may update these Terms from time to time. Updates will be posted on this page with a revised effective date.
10. Contact
Questions about these Terms may be sent to ChurchCandy:
Email: clientsuccess@churchcandy.com
Website: churchcandy.com
4. Information Sharing & Disclosure
We do not sell or rent personal information. We may share with:
- Vendors assisting with technical operations or communications
- SMS delivery providers (aggregators) under strict security protocols
We will disclose information only if:
- Required by law or legal process
- In case of a business transfer (merger, acquisition, etc.)
All shared data excludes text message originator opt-in data unless required for service delivery.
5. Data Security
We apply reasonable security practices to protect data:
- Encryption in transit and at rest
- Access controls and monitoring
- Routine audits and vulnerability scanning
- Incident response and recovery plans
6. Cookies & Tracking Technologies
We use cookies to:
- Analyze site behavior
- Improve personalization and functionality
- Monitor service usage and performance
Users may adjust their browser settings to control cookies.
7. Changes to This Policy
We may update this policy. The latest version will always be available on our website with the effective date. For major changes, we will notify users via website notice or email.
8. Contact Us
If you have questions about this policy or your data:
ChurchCandy
Email: clientsuccess@churchcandy.com
Website: https://churchcandy.com
9. Children’s Privacy
Our services are not directed to individuals under the age of 13, and we do not knowingly collect personal information from children. If we become aware that a child under 13 has provided us with personal information without verified parental consent, we will take steps to delete such information promptly.
Parents or guardians who believe their child has submitted personal data may contact us at clientsuccess@churchcandy.com to request its removal.
Canadian Compliance
We provide services to clients in Canada and are committed to full compliance with Canada’s Anti-Spam Legislation (CASL) and the Personal Information Protection and Electronic Documents Act (PIPEDA).
1. Consent
- We only send SMS or email communications where we have obtained valid consent.
- Express consent is preferred and documented with the date, method, and language used.
- In limited circumstances permitted under CASL (such as existing business relationships), implied consent may apply. Implied consent is time-limited and recorded.
2. Identification in Messages
- Every SMS message we send includes our business name and a valid contact method (such as our mailing address, phone number, or email address).
3. Unsubscribe Mechanism
- All messages include clear unsubscribe instructions (e.g., “Reply STOP to unsubscribe”).
- Unsubscribe mechanisms remain valid for at least 60 days after each message is sent.
- All unsubscribe requests are processed within 10 business days, though typically within 24 hours.
4. Record-Keeping
- We securely maintain records of all consents (express or implied) and unsubscribe requests in compliance with CA
5. Cross-Border Data Transfers
- As a U.S.-based company, some personal information may be processed or stored in the United States and may be subject to U.S. laws. We ensure that all service providers handling Canadian data implement safeguards consistent with PIPEDA.
6. Children’s Privacy (Canada)
- In Canada, individuals under the age of majority in their province or territory (18 or 19 years old) should not provide personal information without parental or guardian consent.
If you are a Canadian user and have questions about our compliance with CASL or PIPEDA, please contact us at:
Email: clientsuccess@churchcandy.com
Log Files
churchcandy.com follows a standard procedure of using log files. These files log visitors when they visit websites. All hosting companies do this and a part of hosting services’ analytics. The information collected by log files include internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date and time stamp, referring/exit pages, and possibly the number of clicks. These are not linked to any information that is personally identifiable. The purpose of the information is for analyzing trends, administering the site, tracking users’ movement on the website, and gathering demographic information.
Google DoubleClick DART Cookie
Google is one of a third-party vendor on our site. It also uses cookies, known as DART cookies, to serve ads to our site visitors based upon their visit to http://www.website.com and other sites on the internet. However, visitors may choose to decline the use of DART cookies by visiting the Google ad and content network Privacy Policy at the following URL – https://policies.google.com/technologies/ads
Advertising Partners Privacy Policies
You may consult this list to find the Privacy Policy for each of the advertising partners of churchcandy.com.
Third-party ad servers or ad networks uses technologies like cookies, JavaScript, or Web Beacons that are used in their respective advertisements and links that appear on churchcandy.com, which are sent directly to users’ browser. They automatically receive your IP address when this occurs. These technologies are used to measure the effectiveness of their advertising campaigns and/or to personalize the advertising content that you see on websites that you visit.
Note that churchcandy.com has no access to or control over these cookies that are used by third-party advertisers.
Third Party Privacy Policies
churchcandy.com’s Privacy Policy does not apply to other advertisers or websites. Thus, we are advising you to consult the respective Privacy Policies of these third-party ad servers for more detailed information. It may include their practices and instructions about how to opt-out of certain options.
You can choose to disable cookies through your individual browser options. To know more detailed information about cookie management with specific web browsers, it can be found at the browsers’ respective websites.
CCPA Privacy Rights (Do Not Sell My Personal Information)
Under the CCPA, among other rights, California consumers have the right to:
Request that a business that collects a consumer’s personal data disclose the categories and specific pieces of personal data that a business has collected about consumers.
Request that a business delete any personal data about the consumer that a business has collected.
Request that a business that sells a consumer’s personal data, not sell the consumer’s personal data.
If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.
GDPR Data Protection Rights
We would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:
The right to access – You have the right to request copies of your personal data. We may charge you a small fee for this service.
The right to rectification – You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete the information you believe is incomplete.
The right to erasure – You have the right to request that we erase your personal data, under certain conditions.
The right to restrict processing – You have the right to request that we restrict the processing of your personal data, under certain conditions.
The right to object to processing – You have the right to object to our processing of your personal data, under certain conditions.
The right to data portability – You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.
