← Morning Grace

Privacy Policy

Last updated: March 13, 2026

Welcome to Morning Grace. We take your privacy seriously, and we want to be completely open about how we handle your information. This Privacy Policy explains what personal information we collect, how we use it, and what choices you have.

Morning Grace is operated by Morning Grace LLC (“we,” “us,” or “our”). Our service is available at morninggrace.io. If you have any questions after reading this policy, please contact us at grace@morninggrace.io.

1. Information We Collect

We only collect the information we need to provide and improve Morning Grace. Here is exactly what we collect:

Information You Give Us Directly

  • Name: Your first and last name when you create an account.
  • Email address: Used to log in and receive messages from us.
  • Phone number (optional): Only if you choose to provide it for SMS scripture reminders.
  • Payment information: If you subscribe to Morning Grace Premium ($4.99/month), your credit card details are handled entirely by Stripe — we never see or store your card number.
  • Prayers you submit: When you post a prayer to our Prayer Galaxy, that prayer text is stored and displayed publicly to other Morning Grace users. Please do not include sensitive personal information in your prayers.
  • Challenge responses and journal entries: Your daily scripture challenge results and private journal entries are stored to power your streak and history features.

Information Collected Automatically

  • Usage data: We collect information about how you use Morning Grace — pages visited, features used, and time spent — through Google Analytics (GA4).
  • Device and browser information: Your browser type, operating system, and general location (country/region) to help us improve the experience.
  • Advertising data: We use the Facebook Pixel to measure the effectiveness of our advertisements on Facebook and Instagram. This technology may collect information about your visit to our site.
  • Session cookies: Small files placed on your device to keep you logged in between visits. These are essential for the site to work properly.

Cookies We Use

We use a minimal set of cookies:

CookiePurposeType
Auth session cookieKeeps you logged inEssential
Google Analytics (_ga, _gid)Measures site usageAnalytics
Facebook Pixel (_fbp)Ad performance measurementAdvertising

We do not use tracking cookies beyond analytics and advertising measurement. You can disable cookies in your browser settings, though some features may not work correctly.

2. How We Use Your Information

We use your information only to operate and improve Morning Grace:

  • To provide the service: Create and manage your account, save your challenge results, and display your Prayer Galaxy submissions.
  • To process payments: Manage your Premium subscription through Stripe.
  • To send you emails: Deliver account confirmations, password reset emails, and (if you opt in) daily scripture reminder emails. We use Resend to deliver these messages from grace@morninggrace.io.
  • To send SMS messages (optional): If you provide a phone number and opt in, we send scripture reminders by text message.
  • To improve the product: Understand how people use Morning Grace so we can make it better.
  • To measure advertising: Understand which ads lead people to Morning Grace so we can run our mission more efficiently.
  • To keep Morning Grace safe: Detect and prevent fraud, spam, and abuse.

3. Third-Party Services We Use

Morning Grace is built using reputable, trusted services. Each service receives only the data they need to do their job:

SupabaseDatabase & authentication
Their Privacy Policy

Stores your account information, challenge history, journal entries, and prayers. Hosted in the United States.

StripePayment processing
Their Privacy Policy

Handles all credit card transactions for Premium subscriptions. We never store your card details. Stripe is PCI-DSS compliant.

VercelWeb hosting
Their Privacy Policy

Hosts the Morning Grace website. May collect basic server logs (IP addresses, request times).

Google Analytics (GA4)Usage analytics
Their Privacy Policy

Helps us understand how people use Morning Grace. Data is anonymized and aggregated. Property ID: G-B94D4ND8WY.

Meta (Facebook) PixelAd measurement
Their Privacy Policy

Measures the effectiveness of our Facebook and Instagram advertisements. Pixel ID: 1493198712417818. You can opt out via your Facebook Ad Preferences.

ResendTransactional email
Their Privacy Policy

Delivers account emails (welcome emails, password resets, daily reminders) from grace@morninggrace.io.

CloudflareDNS & network security
Their Privacy Policy

Routes traffic to our servers and provides DDoS protection. May log basic network data.

4. We Do Not Sell Your Personal Information

We do not sell, rent, trade, or otherwise share your personal information with third parties for their own marketing or commercial purposes — period.

The third-party services listed above (Google Analytics, Facebook Pixel, etc.) receive data to perform services on our behalf, not to use your data for their own purposes independent of Morning Grace. This satisfies the “Do Not Sell My Personal Information” requirement under the California Consumer Privacy Act (CCPA).

5. Your Choices and Rights

You are in control of your information. Here is what you can do:

Unsubscribe from Emails

Every email we send includes an unsubscribe link at the bottom. Click it at any time to stop receiving emails. You can also unsubscribe through your Account Settings page. We will honor unsubscribe requests promptly — within 10 business days as required by the CAN-SPAM Act.

Note: Even if you unsubscribe from marketing emails, we may still send you essential account emails (like password resets) as required to operate your account.

Opt Out of SMS Messages

To stop receiving text messages, reply STOP to any SMS we send you, or remove your phone number from your Account Settings. Message and data rates may apply.

Delete Your Account

You can delete your account at any time from your Account Settings page. When you delete your account:

  • Your profile, challenge history, and journal entries are permanently removed.
  • Prayers you submitted to the Prayer Galaxy are removed.
  • Your email address is removed from our mailing list.
  • If you have an active Premium subscription, it is canceled.

We may retain certain records for legal, tax, or fraud-prevention purposes for up to 7 years, as required by law — for example, records of completed financial transactions.

Access and Correct Your Information

You can update your name, email, and phone number at any time in your Account Settings. If you need a copy of the data we hold about you, or you believe something is incorrect, email us at grace@morninggrace.io.

Opt Out of Analytics and Advertising Tracking

6. California Residents — Your Privacy Rights

If you live in California, the California Consumer Privacy Act (CCPA) gives you additional rights:

  • Right to Know: You have the right to request a list of the categories and specific pieces of personal information we have collected about you in the last 12 months.
  • Right to Delete: You have the right to request that we delete your personal information. (You can do this yourself by deleting your account — see Section 5 above.)
  • Right to Opt Out of Sale: We do not sell your personal information. You do not need to take any action to opt out.
  • Right to Non-Discrimination: We will not deny you service, charge you a different price, or provide a different level of service because you exercised your privacy rights.
  • Right to Correct: You can request that we correct inaccurate personal information we hold about you.

To exercise any of these rights, email us at grace@morninggrace.io with the subject line “California Privacy Request.” We will respond within 45 days.

Categories of Personal Information We Collect (CCPA Disclosure)

  • Identifiers (name, email address, phone number)
  • Commercial information (subscription records, payment history)
  • Internet or electronic network activity (pages visited, features used)
  • User-generated content (prayers submitted, journal entries)

7. International Visitors and European Privacy Rights

Morning Grace is primarily designed for users in the United States. Our servers are located in the United States. If you access Morning Grace from the European Union, United Kingdom, or other regions with privacy laws, please be aware that your information will be transferred to and processed in the United States, which may have different data protection laws than your country.

If you are located in the European Economic Area (EEA) or United Kingdom, you have rights under the General Data Protection Regulation (GDPR), including:

  • Right of Access — request a copy of your personal data
  • Right to Rectification — correct inaccurate data
  • Right to Erasure — request deletion of your data
  • Right to Data Portability — receive your data in a machine-readable format
  • Right to Object — object to certain types of processing
  • Right to Restrict Processing — limit how we use your data

Legal basis for processing: We process your personal data based on (a) your consent, (b) performance of a contract (providing the service you signed up for), and (c) our legitimate interests (improving Morning Grace and measuring advertising effectiveness).

To exercise any of these rights, contact us at grace@morninggrace.io. You also have the right to lodge a complaint with your local data protection authority.

8. Children's Privacy

Morning Grace is designed for adults. Our service is not directed at children under the age of 13, and we do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us at grace@morninggrace.io and we will delete it promptly.

9. How We Protect Your Information

We take reasonable steps to protect your personal information:

  • All data is transmitted over HTTPS (encrypted in transit).
  • Passwords are never stored — we use Supabase's secure authentication system.
  • Payment card details are handled exclusively by Stripe and never pass through our systems.
  • We limit access to your personal information to only those who need it to provide the service.

No system is 100% secure. If you believe your account has been compromised, please contact us immediately at grace@morninggrace.io.

10. How Long We Keep Your Information

We keep your information for as long as your account is active. When you delete your account, we delete your personal data promptly (typically within 30 days), except where we are required by law to retain certain records.

  • Account data (name, email, challenge history, journals): Deleted when you delete your account.
  • Billing records: Retained for up to 7 years as required by tax and financial regulations.
  • Analytics data: Retained by Google Analytics per their standard retention policy (up to 14 months).
  • Server logs: Typically retained for 30–90 days.

11. Email Communications

When you create a Morning Grace account, you may receive:

  • Transactional emails: Account confirmation, password resets, subscription receipts. These are required to operate your account and cannot be opted out of entirely.
  • Daily scripture reminders: A morning email with the day's scripture challenge. You can unsubscribe at any time.
  • Occasional product updates: News about new features or special devotional content. Sent rarely; unsubscribe any time.

In compliance with the CAN-SPAM Act:

  • Every commercial email identifies itself as being from Morning Grace.
  • Every email includes a clear and easy unsubscribe link.
  • We honor unsubscribe requests within 10 business days.
  • We do not use deceptive subject lines.

Our physical mailing address is available upon request by emailing grace@morninggrace.io.

12. Links to Other Websites

Morning Grace may contain links to external websites (for example, Bible reference sites). We are not responsible for the privacy practices of those websites. We encourage you to read their privacy policies before providing any personal information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will update the “Last updated” date at the top of this page. If we make significant changes, we will notify you by email (if you have an account) or by posting a notice on the Morning Grace website. Your continued use of Morning Grace after changes take effect means you accept the updated policy.

14. Contact Us

If you have any questions, concerns, or requests about this Privacy Policy or how we handle your personal information, please reach out — we're happy to help:

Morning Grace

morninggrace.io

grace@morninggrace.io

We will respond to all privacy-related requests within 30 days (or 45 days for CCPA requests).

HomePricingContact