1. Overview
Accord provides software for churches, ministries, fellowships, movements, gospel artists, event organizers, nonprofits, and other faith-led or community organizations. Our platform helps organizations manage people records, services, events, public registration, attendance, communications, feedback, media, payments, discovery profiles, member portals, and mobile app experiences.
This Privacy Policy explains how Accord collects, uses, discloses, stores, and protects personal information across Accord public websites and marketing pages, organization application and onboarding forms, church/admin web dashboards, member portal web experiences, Accord mobile applications, public registration, attendance, event, service, and feedback forms, and communications, notification, payment, and support workflows.
2. Accord's Role and Organization Responsibilities
Accord uses a shared privacy responsibility model.
For platform accounts, billing, product operations, security, analytics, support, and Accord-managed discovery features, Accord may act as an independent data controller/business.
For member, attendee, follower, volunteer, ministry, department, group, attendance, and communication records managed by a church or organization, that organization is generally the primary controller/business, and Accord acts as a service provider/processor that stores and processes data according to the organization's instructions.
Organizations using Accord are responsible for giving their members, visitors, volunteers, staff, and attendees any notices or consents required by law or their internal policies.
3. Personal Information We Collect
We may collect account and identity information, including name, email address, phone number, password credentials, account status, login records, selected organization, role, permissions, church membership ID, portal access status, and password reset or verification codes.
Depending on what a user or organization provides, member and profile information may include first and last name, email, phone number, profile photo, address, date of birth, gender, marital status, number of children, wedding date, occupation, profession, employment details, business information, skills, interests, emergency contact details, baptism status, salvation date, denomination background, preferred language, department, group, ministry, volunteer, and membership information, custom registration fields, and answers.
Some of this information may reveal religious affiliation, worship attendance, ministry participation, family relationships, or other sensitive personal information.
When an organization applies for or uses Accord, we may collect organization name, type, slug, public profile details, location, website, social links, contact information, primary admin details, onboarding status, claim status, and operational settings.
We may collect service attendance, event registrations, RSVP status, check-in records, attendance timestamps, public attendance UUIDs, QR scan activity, attendee names, guest count, guest details, special requests, accessibility or dietary notes, and related participation history.
Where enabled, check-ins may include location-related data such as location coordinates, address, distance from a church location, or a location verification result.
We may process messages sent through Accord, communication templates, recipient criteria, delivery channel preferences, email/SMS/push delivery status, notification history, opens, clicks, bounces, unsubscribe events, and communication analytics.
Organizations may create customizable feedback forms for services or events. Feedback responses may include ratings, yes/no answers, text responses, selected options, respondent name, respondent email, attendance ID, event attendee ID, and form snapshots.
For paid events, donations, or other payment-enabled features, we may process payment amount, currency, payment status, payment method type, payer name or email, transaction identifiers, receipt information, promo code usage, and provider payment references. Accord does not intend to store full payment card numbers. Payment card details are processed by payment providers such as Stripe, Paystack, or other configured processors.
Users and organizations may upload or link images, videos, audio, documents, profile photos, service media, event media, sermon content, thumbnails, metadata, file size, provider information, and related entity associations.
We may collect IP address, device ID, device platform, device model, app version, browser type, operating system, login timestamps, refresh sessions, authentication tokens, push notification tokens, crash logs, diagnostics, page or feature usage, audit logs, and security events. The mobile app may use Firebase services for messaging, analytics, crash reporting, or related app infrastructure where enabled.
Accord may maintain public or aggregated organization profiles, including organization metadata, public services or events, livestreams, public media, follower counts, public tracking origin, claim status, and external source information such as YouTube, RSS, websites, Eventbrite, Ticketmaster, or manual sources.
4. How We Collect Information
We collect information when you create an account or sign in, register for an event or service, submit a public registration or feedback form, join, follow, or interact with an organization, update your profile or sharing preferences, check in for attendance, upload files or media, make a payment, contact support, request a demo, or use our website, web app, portal, or mobile app.
We may also receive information when an organization imports or manually enters member data, when an admin sends communications or manages records, and from customer organizations, payment processors, email/SMS providers, push notification services, analytics providers, hosting providers, and public sources used for organization discovery.
5. How We Use Personal Information
We use personal information to provide and operate Accord, create and secure accounts, authenticate users and manage sessions, support password reset and OTP verification, manage organization onboarding and admin access, maintain member, follower, attendee, volunteer, department, and group records, enable public registration, event registration, attendance, service check-in, and feedback, and allow profile sharing between users and organizations based on consent settings.
We also use personal information to send transactional, administrative, pastoral, event, service, and announcement communications, deliver email, SMS, in-app, and push notifications, process payments, issue receipts, reconcile transactions, provide support, improve product performance, detect and prevent fraud, maintain audit logs and compliance records, generate aggregated or de-identified analytics, comply with legal obligations, and enforce agreements.
6. Sensitive Information and Faith-Related Data
Because Accord serves churches and faith-led organizations, personal information processed through Accord may reveal religious affiliation, worship attendance, giving or payment activity, ministry participation, baptism status, salvation date, denomination background, prayer or pastoral context, or similar sensitive information.
We process this information only as needed to provide the platform, at the direction of the relevant organization, with user-provided consent where applicable, or as otherwise permitted by law.
Organizations should avoid collecting sensitive information unless it is necessary for their ministry, operational, pastoral, legal, or safety purposes.
8. Communications Preferences
Users may receive transactional, administrative, event, service, announcement, follow-up, pastoral, or community messages through email, SMS, push notification, or in-app channels.
Some communications are necessary to provide the service, such as account verification, password reset, security notices, registration confirmations, payment receipts, and important account or organization updates.
Where required, users may opt out of non-essential marketing or promotional communications. Organizations are responsible for honoring communication laws and consent requirements when they send messages through Accord.
9. Payments
When payments are enabled, payment information is processed by third-party payment providers. Accord may receive limited payment metadata, such as payment status, amount, currency, transaction ID, payer email, receipt data, and provider reference.
Payment providers process payment information under their own privacy policies and security obligations. Users should review the applicable provider's privacy notice when making payments.
11. Analytics, Crash Reporting, and Product Improvement
Where enabled, Accord may use analytics and crash reporting tools to understand app usage, diagnose crashes, monitor performance, and improve reliability.
We do not sell personal information or share personal information for cross-context behavioral advertising. If Accord later uses advertising or remarketing technologies, this policy should be updated before those technologies are deployed.
13. Organization Admin Access
Organization admins and authorized leaders may access personal information in their organization's workspace based on roles and permissions. This may include member profiles, attendance, event registrations, communications, feedback, family relationships, groups, departments, service participation, and custom registration answers.
Organizations are responsible for assigning permissions appropriately and using personal information lawfully.
14. Super Admin and Platform Operations Access
Accord platform administrators may access account, organization, diagnostic, support, audit, impersonation, and operational data when necessary to operate, secure, troubleshoot, support, or improve the platform.
Access should be limited to authorized personnel with a business need.
15. Data Retention
We retain personal information for as long as necessary to provide Accord, maintain accounts, support organizations, comply with legal obligations, resolve disputes, enforce agreements, maintain audit logs, prevent fraud, and meet legitimate operational needs.
Organizations may retain member and ministry records according to their own retention policies. If an organization deletes or exports data, Accord may still retain backups, logs, payment records, security records, or legal compliance records for a limited period.
Users may request deletion of certain account or profile information, subject to legal, security, contractual, and organization recordkeeping requirements.
16. Data Security
We use administrative, technical, and organizational safeguards designed to protect personal information. These may include authentication, role-based access controls, secure token storage, password hashing, transport encryption, audit logging, validation, monitoring, and access restrictions.
No system can be guaranteed to be completely secure. Users and organizations should use strong passwords, protect account credentials, restrict admin access, and notify us promptly of suspected unauthorized access.
17. International Data Transfers
Accord may process and store personal information in countries other than where the user or organization is located. These countries may have data protection laws different from those in your jurisdiction.
Where required, Accord will use appropriate safeguards for international transfers, such as contractual protections, processor agreements, standard contractual clauses, or other legally recognized mechanisms.
18. Your Privacy Rights
Depending on your location, you may have rights to access personal information, correct inaccurate information, delete certain information, export or receive a copy of information, restrict or object to certain processing, withdraw consent where processing is based on consent, opt out of certain communications, appeal or complain about a privacy decision, and lodge a complaint with a data protection authority.
For member or organization-managed records, we may direct your request to the relevant organization or work with that organization to respond.
To make a request, contact us at privacy@accordsuite.com.
19. California Privacy Notice
If you are a California resident, California law may provide additional rights regarding personal information, including the right to know, delete, correct, and opt out of certain sharing.
Accord does not sell personal information and does not share personal information for cross-context behavioral advertising.
Categories of personal information we may collect include identifiers, account information, contact information, commercial information, internet or device activity, geolocation-related information where enabled, professional information, sensitive personal information, audio/visual/media content, and inferences or analytics derived from use of the platform. We use and disclose these categories for the purposes described in this policy.
20. Nigeria Privacy Notice
If the Nigeria Data Protection Act or related NDPC guidance applies, you may have rights regarding access, correction, deletion, portability, objection, restriction, withdrawal of consent, and complaint to the Nigeria Data Protection Commission.
Where Accord acts as a processor for an organization, the organization may be the appropriate first contact for member or ministry records.
21. GDPR/UK GDPR Notice
If GDPR or UK GDPR applies, the lawful bases for processing may include contract, legitimate interests, consent, legal obligation, vital interests, or substantial public interest where applicable and legally permitted.
Where Accord processes special category data, such as religious affiliation or faith-related participation, processing may rely on explicit consent, user-provided disclosure, organization instructions, legitimate religious/community purposes where legally applicable, or another available legal basis.
You may contact privacy@accordsuite.com to exercise your rights.
22. Children's Privacy
Accord is not intended for children under 13 to create their own accounts.
Organizations, parents, guardians, or authorized adults may provide child or family information for legitimate organization purposes, such as family records, event registration, children's ministry, attendance, safety, or pastoral care.
Organizations are responsible for obtaining any parental or guardian consent required by law before entering or using children's information in Accord.
23. Public Content and Discovery Features
Some organization information, public services, public events, media, livestreams, discovery profiles, and aggregated organization data may be publicly visible.
Users and organizations should not submit personal information to public fields unless they intend for that information to be public.
24. Third-Party Links and Services
Accord may link to or integrate with third-party services such as YouTube, Vimeo, Twitch, Eventbrite, Ticketmaster, Stripe, Paystack, email providers, SMS providers, Firebase, hosting providers, and analytics or support tools.
These third parties may process information under their own privacy policies. Accord is not responsible for the privacy practices of third-party services.
25. Changes to This Policy
We may update this Privacy Policy from time to time. If changes are material, we will provide notice through the platform, email, website, or other reasonable means.
The Last Updated date shows when this policy was most recently revised.
26. Contact Us
For privacy questions or requests, contact Accord Ltd.
Email: privacy@accordsuite.com
Address: 13, Primewater Gardens 2, Lekki 1, Lagos, Nigeria
Data Protection Contact: privacy@accordsuite.com