Legal
Last updated: May 7, 2026
Your privacy is not a formality. KodeshWay was built with a deliberate philosophy: your personal data belongs to you. This policy explains clearly and honestly what is collected, why, and what is never touched.
When you sign in with Apple, KodeshWay receives a unique identifier from Apple. This is a random string — not your name, not your email address (unless you choose to share it). This identifier is stored solely to associate your subscription tier with your account.
If you subscribe to Pilgrim or Scribe, your subscription tier and a transaction identifier provided by Apple are stored. This is the minimum needed to provide the service you paid for.
If you enable push notifications, the device token Apple assigns to your iPhone is stored. This is used only to send your daily journey reminder. It is not used for any other purpose and is never shared with third parties.
If you make contact through the support form on this website, the content of your message and any email address you choose to provide are received. This is used only to respond to your inquiry.
When you ask Lumen a question, the server keeps a small row of usage metadata per request — only enough to know whether Lumen is working — linked to your Apple Sign-In identifier for thirty days, then automatically deleted. Your prompt, the response, and any verse references inside your question are never stored or logged.
KodeshWay does not collect your name, email address, phone number, or any personally identifying information beyond what Apple Sign-In provides. Your location is not collected. No third-party analytics SDKs, advertising trackers, or behavioural-tracking tools are run.
Everything you do inside the KodeshWay app — your reading progress, highlights, journal entries, bookmarks, and journey state — is stored in your personal iCloud account. It never passes through the service's servers. It cannot be seen, accessed, or shared.
The data that is stored serves exactly one purpose: providing the KodeshWay service to you. Your Apple identifier indicates which subscription tier you have. Your device token enables your daily reminder to be sent. Nothing else.
Your data is not used for advertising. Your data is not sold. Your data is not shared with third parties except as described below.
Authentication and subscription billing are handled by Apple. Apple's privacy policy governs the data they collect as part of Sign in with Apple and the App Store. Only what Apple provides is received, and nothing more.
When you request an AI insight on a Scripture verse, the verse text and your request are sent to Anthropic's API to generate a response. No personally identifying information is sent to Anthropic — only the scripture passage you are asking about. Anthropic's privacy policy governs their handling of API data.
Audio narration in KodeshWay uses pre-generated voice recordings hosted on the service's servers. When you download audio for a book or chapter, the files are stored locally on your device. No personal data is sent as part of audio downloads — only the book and chapter identifiers needed to retrieve the correct files.
The backend and this website are served from standard cloud infrastructure in the United States. Like every responsible host, the edge layer keeps short-lived request logs — IP address, user agent, timestamp, requested URL — for abuse prevention and DDoS mitigation. Those logs are not queried for analytics.
Inside the application a limited audit log of authentication and subscription events is kept, linked to your opaque Apple identifier (IP address, event type, timestamp). It is retained for thirty days and then automatically deleted.
A daily snapshot of the application database is taken and stored in encrypted cloud storage for disaster recovery. Backups are kept for seven days and then automatically pruned. They contain the same minimal account data described above — opaque Apple identifiers, subscription tiers, push tokens, and audit entries — never your iCloud content, never your prompts or responses.
Your account data is retained for as long as you have an active account. If you delete your account from within the app, your subscriber record, all session data, audit log entries, push tokens, and device attestation records are removed from the live database immediately, in a single transaction. Daily backups (kept for seven days, then automatically pruned) may still hold a copy of your account record until they age out. Because your reading data lives in iCloud, you can delete it from your device at any time through your iCloud settings.
You have the right to request a copy of the data held about you, request deletion of your data, and opt out of push notifications at any time through your iPhone's notification settings. You can export your data or delete your account directly within the app under Settings → Account, or make contact through the support page.
If you are located in the European Economic Area, United Kingdom, or Switzerland, the following additional rights and information apply to you under the General Data Protection Regulation.
Your data is processed under the following legal bases:
In addition to the rights listed above, you have the right to:
To exercise any of these rights, make contact through the support page or delete your account directly within the app under Settings → Account.
Your data may be processed in the United States where the servers are hosted. KodeshWay relies on standard contractual clauses and the data processing agreements of its service providers (Apple for authentication and billing, Anthropic for AI inference, and the cloud hosting provider) to ensure adequate protection of your data.
The data controller for your personal data is KodeshWay LLC, a Texas limited liability company. Make contact through the support page for any data protection inquiries.
If you are a California resident, the California Consumer Privacy Act provides you with additional rights regarding your personal information.
In the preceding 12 months, the following categories of personal information have been collected:
Sensitive personal information as defined by the CCPA is not collected. Personal information is not shared with third parties for cross-context behavioural advertising.
You can delete your account and all associated data at any time from within the app under Settings → Account → Delete Account. Upon deletion, your subscriber record, all session data, audit log entries, push tokens, and device attestation records are removed from the live database immediately, in a single transaction. Daily backups (kept for seven days, then automatically pruned) may still contain a copy of your account record until they age out. Data stored in your personal iCloud account (reading progress, highlights, bookmarks) is controlled by you and can be deleted through your iCloud settings.
KodeshWay is not directed at children under the age of 13. Personal information is not knowingly collected from children under 13. If a child has provided personal information, make contact through the support page and it will be deleted promptly.
If material changes are made to this privacy policy, the date at the top of this page will be updated and, where appropriate, users will be notified through the app. Continued use of KodeshWay after changes constitutes acceptance of the updated policy.
Questions about this policy? Reach the ministry here or email yeshua@kodeshway.com.