Privacy Policy

Effective Date: July 2026 

Last Updated: July 2026

 

Introduction

HeartCheck (operated by VerticalLife, a 501(c)(3) nonprofit organization) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, mobile application, and use our services.

 

Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our services.

  

1. Information We Collect

1.1 Information You Provide Directly

Account Registration:

•       Name

•       Email address

•       Phone number (if you opt-in to SMS)

•       Password (encrypted)

•       Age confirmation (18+)

•       Timezone/location preferences

 

Spiritual Reflection Data:

•       Heart reflection responses and journal entries

•       Reflection history and timestamps

•       Personal spiritual preferences and interests

•       Saved reflections and bookmarks

 

SMS Program (if opted-in):

•       Mobile phone number

•       SMS preferences (frequency, time)

•       Opt-in/opt-out status

•       Confirmation that you are 18+ and a US resident

 

Contact and Support:

•       Messages you send to support

•       Feedback and suggestions

•       Survey responses

 

1.2 Information Collected Automatically

Device and Usage Information:

•       Device type and operating system

•       Browser type and version

•       IP address

•       Pages visited and time spent

•       Links clicked

•       Referral source

•       Crash reports and error logs

 

Cookies and Tracking:

•       Session cookies (for login functionality)

•       Preference cookies (for user settings)

•       Analytics cookies (to understand usage patterns)

•       We do NOT use third-party tracking cookies for advertising

 

Location Information:

•       Timezone (for SMS reminder timing)

•       General location (country/region level only, not precise GPS)

 

2. How We Use Your Information

We use the information we collect for the following purposes:

 

2.1 Service Delivery

•       Create and maintain your HeartCheck account

•       Send SMS reminders (if opted-in)

•       Deliver spiritual reflection content

•       Process your requests and inquiries

•       Provide customer support

 

2.2 Communication

•       Send service-related announcements

•       Respond to your support inquiries

•       Send SMS reminders at your preferred frequency and time

•       Send opt-in and opt-out confirmations

 

2.3 Improvement and Analytics

•       Understand how users interact with HeartCheck

•       Improve app features and user experience

•       Conduct research on spiritual reflection practices

•       Identify and fix technical issues

•       Optimize performance

 

2.4 Legal and Compliance

•       Comply with legal obligations

•       Enforce our Terms of Service

•       Protect against fraud and abuse

•       Respond to lawful requests from authorities

 

2.5 What We Do NOT Do

•       We do NOT sell your personal data to third parties

•       We do NOT share your data for marketing purposes to external companies

•       We do NOT use your spiritual reflection data for advertising

•       We do NOT share SMS consent with third parties or affiliates for marketing or promotional purposes

•       We do NOT track you across other websites for advertising

 

3. Data Sharing and Third Parties

3.1 Service Providers

We share limited information with trusted service providers who help us operate HeartCheck:

 

Service

Purpose

Data Shared

Twilio

SMS message delivery

Phone number, message content

Cloud Hosting Provider

Server infrastructure

Encrypted user data, app data

Analytics Provider

Usage analytics

Anonymized usage statistics

Email Service

Support communications

Email address, support messages

Important: These service providers are contractually obligated to:

•       Use your data only for the specified purpose

•       Maintain confidentiality and security

•       Not use your data for their own marketing purposes

•       Comply with applicable privacy laws

 

3.2 Legal Requirements

We may disclose your information when required by law, such as:

•       Court orders or subpoenas

•       Government investigations

•       Fraud prevention

•       Protecting the rights and safety of HeartCheck users

 

3.3 No Sale of Data

We do not sell, rent, or lease your personal information to third parties under any circumstances.

 

4. Data Security

4.1 Security Measures

We implement industry-standard security practices:

 

•       Encryption: All data in transit is encrypted using SSL/TLS

•       Database Security: Encrypted storage with restricted access

•       Access Controls: Only authorized employees can access personal data

•       Regular Audits: Security assessments and vulnerability testing

•       Incident Response: Procedures to respond to data breaches

 

4.2 Your Responsibility

You are responsible for:

•       Keeping your password confidential

•       Logging out of your account when finished

•       Notifying us of unauthorized access

 

4.3 Limitations

While we use reasonable security measures, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

 

5. Your Privacy Rights

5.1 Access and Correction

You have the right to:

•       Access your personal data

•       Correct inaccurate information

•       Request a copy of your data

 

To exercise these rights, contact: Bill@VerticalLife.org

 

5.2 Data Deletion

You can request deletion of your account and associated data by:

•       Logging into your account and selecting "Delete Account"

•       Emailing Bill@VerticalLife.org with your request

 

Note: We may retain certain data for legal compliance or fraud prevention.

 

5.3 SMS Opt-Out

You can stop SMS reminders anytime by:

•       Disabling SMS in your account settings

•       Replying "STOP" to any SMS message

•       Contacting support at Bill@VerticalLife.org or (678)833-4310

 

5.4 California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

•       Know what personal information is collected

•       Know whether personal information is sold or disclosed

•       Delete personal information (with exceptions)

•       Opt-out of the sale of personal information

 

Note: HeartCheck does not sell personal information, so the sale opt-out does not apply.

 

5.5 European Privacy Rights (GDPR)

If you are in the European Union, you have the right to:

•       Access your data

•       Correct inaccurate data

•       Delete your data (right to be forgotten)

•       Restrict processing

•       Data portability

•       Object to processing

 

6. Cookies and Tracking Technologies

6.1 Cookies We Use

•       Session Cookies: Required for login and account functionality

•       Preference Cookies: Remember your settings (theme, language, SMS preferences)

•       Analytics Cookies: Help us understand how you use HeartCheck (no personal data tracked)

 

6.2 Cookies We Do NOT Use

•       Advertising Cookies: We do not use cookies for targeted advertising

•       Third-Party Tracking: We do not allow third parties to track you

 

6.3 Cookie Management

You can control cookies through your browser settings. Disabling cookies may affect app functionality.

 

7. Children's Privacy

HeartCheck is not intended for children under 18 years old. We do not knowingly collect personal information from children under 18. If we become aware that a child under 18 has provided us with personal information, we will delete such information immediately.

 

8. Third-Party Links

HeartCheck may contain links to third-party websites. We are not responsible for their privacy practices. Please review their privacy policies before providing personal information.

 

 9. Data Retention

9.1 How Long We Keep Your Data

Data Type

Retention Period

Account information

Until account deletion

Reflection entries

Until account deletion

SMS preferences

Until account deletion

Support messages

2 years

Analytics data

12 months (anonymized)

Server logs

30 days

9.2 Backup Data

We maintain backups for disaster recovery. Backup data is retained for up to 90 days.

10. International Data Transfers

HeartCheck operates primarily in the United States. If you are accessing HeartCheck from outside the US, your data may be transferred to, stored in, and processed in the United States. By using HeartCheck, you consent to this transfer.

 

11. Updates to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of material changes by:

•       Updating the "Last Updated" date

•       Posting the revised policy on our website

•       Sending you an email notification (if required by law)

 

Your continued use of HeartCheck after changes become effective constitutes your acceptance of the updated Privacy Policy.

12. Contact Us

If you have questions about this Privacy Policy, our privacy practices, or want to exercise your privacy rights, please contact:

 

HeartCheck Privacy Team

•       Email: Bill@VerticalLife.org

•       Phone: (678)833-4310

•       Mailing Address: VerticalLife, [Your Physical Address]

•       Website: https://www.verticallife.org

 

13. Compliance

HeartCheck complies with applicable privacy laws and regulations, including:

 

•       TCPA (Telephone Consumer Protection Act)

•       GDPR (General Data Protection Regulation)

•       CCPA (California Consumer Privacy Act)

•       COPPA (Children's Online Privacy Protection Act)

•       State Privacy Laws (Virginia VCDPA, Colorado CPA, etc.)

 

14. Additional Information

14.1 SMS Policy

For specific information about our SMS messaging program, please see our SMS Policy.

 

14.2 Terms of Service

Please also review our Terms of Service for information about our website and app usage.

 

 HeartCheck is a nonprofit spiritual reflection application operated by VerticalLife, a 501(c)(3) nonprofit organization.

 

Last Updated: July 2026