Effective Date: December 15, 2025

1. Introduction

MyShul, LLC (“MyShul,” “we,” “us,” or “our”) is committed to protecting the privacy of individuals who use our website, mobile applications, and services (collectively, the “Services”).

This Privacy Policy explains how we collect, use, disclose, retain, and protect personal information when you access or use MyShul, whether as a synagogue (“Shul,” “Organization,” or “Client”) or as an individual attendee or member (“User”).

By accessing or using the Services, you agree to the practices described in this Privacy Policy.

2. Company Information

• Legal Name: MyShul, LLC
• Trade Name: MyShul
• Website & Apps:
  
  • https://www.myshul.com
  • MyShul iOS App
  • MyShul Android App
• Business Address:
  2843 Pembroke Rd, Suite 3
  Hollywood, FL 33020
  United States
• Privacy Contact: info@myshul.com

3. Jurisdictions & Legal Compliance

MyShul operates in and targets users in:

• United States
• Canada

We comply with applicable U.S. privacy laws, including:

• California Consumer Privacy Act (CCPA)
• California Privacy Rights Act (CPRA)

We do not currently target the European Union or United Kingdom and do not claim GDPR compliance.

4. Personal Information We Collect

A. Information You Provide Directly

Depending on your role (Shul or User), we may collect:

• First and last name
• Email address
• Phone number
• Account credentials (passwords are never stored in plain text; see Security section)
• Communications with us (support requests, messages)
• Payment-related information processed entirely by Stripe

Important: MyShul does not store full credit card numbers or sensitive payment data. All payment processing is handled by Stripe, a PCI-DSS compliant third-party processor.

In connection with payment processing, Uses can choose to save limited, non-sensitive payment method details provided by Stripe, including:

• Card brand (e.g., Visa, Mastercard)

• Last four digits of the card number

• Card expiration month and year

MyShul does not collect, store, or have access to:

• Full card numbers

• CVC/CVV codes

• PINs or magnetic stripe data

All sensitive card data is securely stored and processed by Stripe.

In certain circumstances, a Shul administrator may enter payment information on behalf of a User.

When this occurs:

• The payment method is used for a single transaction only, unless explicitly designated for a recurring payment.

• The payment information is not saved to the User’s account for future use unless the User authorizes a recurring payment setup.

• Full card numbers, CVC/CVV codes, and sensitive authentication data are never stored by MyShul.

B. Information Collected Automatically

When you use the Services, we may automatically collect:

• IP address
• Device type
• Browser type
• Operating system
• Usage and interaction data
• Diagnostic and performance data

MyShul does not use cookies.

5. How We Use Personal Information

We use personal information to:

• Create and authenticate accounts
• Deliver and operate the Services
• Process payments and generate invoices
• Communicate with Shuls and Users
• Send operational and marketing emails
• Personalize user experiences
• Monitor performance and improve the platform
• Prevent fraud, abuse, and security incidents
• Comply with legal obligations

6. Dual-Client Structure & Data Visibility (IMPORTANT)

MyShul is a multi-tenant platform serving two categories of users:

1. Shuls (Non-Profit 501(c)(3) Organizations)
2. Individual Users (Members / Attendees)

How Data Is Shared Between Shuls and Users

• Shuls may add Users to their account by entering a phone number.
• Phone numbers are used as unique identifiers across the platform.
• If a phone number already belongs to an existing User account:
  
  • The Shul will be notified that the number is associated with an existing User.
  • The User’s first and last name will be displayed for confirmation.
  • If confirmed, the User’s name, phone number, and email address will be associated with the Shul’s account.

This association may occur even if the User did not directly provide their information to that specific Shul.

Admin-Initiated One-Time Payments

• Shul administrators may process a one-time payment on behalf of a User when the User provides payment details directly.

• One-time payment methods are not retained, reused, or converted into saved payment methods.

• These payments are transaction-specific and expire immediately after processing.

Admin-Managed Recurring Payment Setup

Shul administrators may save a payment method on behalf of a User solely for the purpose of establishing a recurring payment, provided that:

• The User has authorized the recurring payment.

• The saved payment method is restricted exclusively to the associated recurring payment.

• The saved payment method cannot be reused for any other transactions.

• Neither the Shul administrator nor the User may use that saved method outside of the authorized recurring payment.

User-Controlled Recurring Payments

Users may:

• Set up recurring payments directly from their account.

• View, manage, update, or cancel recurring payments at any time.

• Change the payment method associated with a recurring payment.

All recurring payment changes take effect according to the billing cycle in place at the time of modification.

By using the Services, Users acknowledge and consent to this functionality as a core feature of the platform.

7. Third-Party Service Providers

We may share information with trusted third parties that help us operate the Services, including:

• Stripe – Payment processing
• Twilio / SendGrid – Email delivery
• QuickBooks – Accounting and invoicing
• MouseFlow – Analytics and session monitoring
• Vultr – Cloud hosting infrastructure

These providers may access personal data only as necessary to perform their services and are contractually obligated to protect it.

8. Data Sales & Disclosure

• We do not sell personal information.
• Data is shared only:
  
  • With service providers
  • As required by law
  • During business transfers (e.g., merger or acquisition)

• Saved payment method metadata may be shared internally between Shuls and Users only within the MyShul platform and only as necessary to support invoicing, payment requests, and account management.

• MyShul does not sell or externally disclose saved payment method information.

9. Data Retention

• User and Shul data is retained indefinitely unless otherwise required by law.
• Financial records (invoices, payments) are owned by the Shul and may only be deleted by Shul administrators.
• Users may request account deletion; however:
  
  • Data associated with a Shul’s records will not be deleted, as it is owned and controlled by the Shul.

10. Data Security

We implement industry-standard safeguards, including:

• Password hashing and encryption
• Secure, encrypted servers
• Mandatory phone-based verification during account creation
• Two-factor verification mechanisms
• Third-party PCI-compliant payment processing

No system is 100% secure, but we take reasonable measures to protect your information.

11. User Rights

Depending on applicable law, you may have the right to:

• Access your personal information
• Correct inaccurate information
• Request deletion (subject to Shul data ownership)
• Opt out of marketing communications

Requests may be made by logging into your account or contacting info@myshul.com.

12. Children’s Privacy

MyShul is not intended for children under 13.
We do not knowingly collect personal information from children under 13.

13. International Data Transfers

MyShul does not transfer personal data outside the United States or Canada.

14. Policy Updates

We may update this Privacy Policy from time to time.
Changes will be communicated by email.
Continued use of the Services after the effective date constitutes acceptance.