Effective Date: 5/12/2026
Table of Contents
- Introduction
- 1. Information We Collect
- 2. How We Use Your Information
- 3. Legal Bases for Processing Your Data
- 4. How Orders and Payments Are Handled
- 5. Cookies and Tracking Technologies
- 6. Cookie Consent and Preferences
- 7. California Privacy (CCPA/CPRA)
- 8. Your Privacy Rights
- 9. Who We Share Your Information With
- 10. International Data Transfers
- 11. EU/UK Representation
- 12. Children’s Privacy
- 13. How We Protect Your Data
- 14. Data Retention
- 15. Data Breach Procedures
- 16. Terms of Use
- 17. Contact Us
Introduction
Voice of Elijah, Inc., a nonprofit, tax-exempt Christian organization (“we,” “us,” or “our”), is the data controller (responsible party) for your personal information. We are committed to protecting your privacy. This Privacy Policy explains what personal information we collect, how we use it, who we share it with, and how we keep it safe. By using our website or services, you agree to this policy.
We may update this policy from time to time. If we make significant changes, we will notify you with a notice on our website along with a revised “last updated” Privacy Policy date.
1. Information We Collect
We only collect the information we need to fulfill your requests, deliver services, and improve your experience.
You may provide us with:
- Your name and email address (e.g., when signing up for emails or contacting us)
- Your shipping address (when requesting items or placing orders)
- Your telephone number (when placing orders)
- Contribution information (amount and frequency for recurring contributions)
We do not collect or store your payment information. That is handled securely by trusted third-party providers.
Sensitive Data
We do not intentionally collect or process special categories of personal data, such as health information, racial or ethnic origin, political opinions, or biometric data. Any information inferred from interaction with religious content is not used for profiling or marketing purposes.
2. How We Use Your Information
We use your personal information to:
- Process contributions and fulfill your orders
- Communicate with you about your requests, subscriptions, or contributions
- Send requested emails and updates
- Improve our website and user experience
- Maintain legal and financial records as required by law
We do not sell your personal data.
We do not engage in automated decision-making or profiling.
Unsubscribing From Our Emails
You can unsubscribe from our email communications at any time by clicking the “Unsubscribe” link at the bottom of any email we send you, or by contacting us directly at [email protected].
3. Legal Bases for Processing Your Data
We collect and use personal data only when we have a lawful reason to do so, including:
- Consent (e.g., when you sign up for emails or interact with non-essential embedded media such as playing an embedded Vimeo video)
- Contract (to fulfill your orders or deliver services you request)
- Legal obligation (to meet tax, financial, or regulatory requirements)
- Legitimate interest (to improve services or prevent fraud, where your rights do not override our purpose)
4. How Orders and Payments Are Handled
We use third-party platforms to handle transactions:
- Ecwid collects your shipping information, which we use to fulfill orders (e.g., Bibles or printed materials)
- Stripe processes all payments securely. We do not see or store your credit card details. Stripe is PCI DSS Level 1 certified.
- Stamps.com provides shipping label and postage services. We share your name, shipping address, email address (for delivery notifications), and order details as necessary to create shipping labels and deliver your order.
5. Cookies and Tracking Technologies
We use cookies and similar technologies only to support strictly necessary website functionality and features you choose to use.
We do not use cookies for behavioral advertising, retargeting, or cross-site tracking.
Types of cookies we use:
- Strictly Necessary cookies—Required for core website functionality (e.g., shopping carts, secure sessions, payment processing)
- Functional/External Media—Used by Vimeo to provide video playback and player functionality
- Marketing & Analytics—Used to measure website usage, visitor interactions, traffic sources, advertising effectiveness, conversions, and campaign performance through Google Analytics and Google Ads conversion tracking
Third-party services that may set cookies or receive data:
| Service | Purpose | Category |
|---|---|---|
| Ecwid | Storefront and checkout functionality | Strictly Necessary |
| Stripe | Secure payment handling and fraud detection | Strictly Necessary |
| Cloudflare | Security, bot protection, and CDN services | Strictly Necessary |
| Vimeo | Embedded video playback and player functionality | Functional/External Media |
| Google Analytics | Used to measure advertising effectiveness and performance on select landing pages | Marketing & Analytics |
| Google Ads (Conversion Tracking) | Used to measure advertising effectiveness and performance on select landing pages | Marketing & Analytics |
We do not track individuals and only analyze aggregated usage to improve website performance.
6. Cookie Consent and Preferences
We only use strictly necessary cookies required for core functionality, such as shopping cart operations (via Ecwid), secure payment processing (via Stripe), and session management.
Embedded Vimeo Videos
Our website includes embedded videos hosted by Vimeo, Inc. We use a click-to-play format, meaning videos are not loaded automatically when you visit a page. No connection to Vimeo is established until you click to play a video. Once you activate a video, your browser connects to Vimeo’s servers and Vimeo may collect personal data such as your IP address, device and browser information, and interaction data.
We configure Vimeo embeds to limit tracking features where possible; however, Vimeo processes data according to its own Privacy Policy. Vimeo acts as an independent data controller for information it collects through its player.
How to manage cookies and embedded content:
- Avoid interacting with embedded Vimeo videos if you do not wish to share data with Vimeo.
- Adjust your browser settings to block or delete cookies.
- Use tools such as Global Privacy Control (GPC).
For more information, please visit our Cookie Policy.
Google Analytics and Google Ads Tracking
We use Google Analytics to understand how visitors interact with our website, including pages visited, traffic sources, browser type, device information, approximate location, and user interactions. Certain landing pages accessed through our advertising campaigns may also include Google Ads conversion tracking to measure advertising effectiveness, conversions, and campaign performance.
These tracking technologies:
- Are activated only after you provide consent where required by applicable law
- Measure website usage, visitor interactions, traffic sources, advertising effectiveness, and campaign performance
- May collect information such as your IP address, browser type, device information, referring URL, pages visited, and actions taken on the website or landing page
- May use cookies and similar technologies for analytics, attribution, conversion measurement, and remarketing purposes where enabled
Data collected through Google Analytics and Google Ads is subject to Google’s Privacy Policy. If you accept these cookies, Google may use this data in accordance with its own privacy practices. You can opt out of personalized advertising by visiting Google’s Ads Settings or the NAI opt-out page.
7. California Privacy (CCPA/CPRA)
We do not sell or share your personal information.
When a page containing an embedded Vimeo video is loaded or played, Vimeo may collect information such as IP address, device identifiers, and interaction data. This may be considered a “sharing” of personal information under California law. You may limit this by not interacting with embedded videos.
Notice at Collection
This Privacy Policy serves as our notice at collection by describing the categories of personal information collected, the purposes for collection, and retention practices.
8. Your Privacy Rights
Depending on where you live, you may have the right to:
- Access the personal data we hold about you
- Correct inaccurate or incomplete data
- Request deletion of your personal data
- Receive a copy of your data (data portability)
- Object to certain processing activities
- Withdraw consent where processing is based on consent
To exercise these rights, contact us at: [email protected]
We typically respond within 30 days and may take reasonable steps to verify your identity.
California Residents—Authorized Agents
You may designate an authorized agent to submit a request on your behalf. We may require written authorization and identity verification.
Right to Contact Authorities
If you are located in a region with privacy laws (e.g., EU, UK, Brazil, Canada, Australia), you may contact your local data protection authority if you believe your privacy rights have been violated.
9. Who We Share Your Information With
We only share personal data with service providers who help us operate our website or fulfill services. These providers are contractually required to protect your data and use it only as instructed.
| Purpose | Provider | Privacy Policy |
|---|---|---|
| Website analytics | Google Analytics | support.google.com/analytics |
| Advertising measurement | Google Ads | policies.google.com/technologies/ads |
| Email and forms | Brevo | brevo.com/legal/privacypolicy |
| Shopping cart | Ecwid | ecwid.com/privacy-policy |
| Payment processing | Stripe | stripe.com/privacy |
| Embedded video playback | Vimeo | vimeo.com/privacy |
| Shipping labels and postage | Stamps.com | stamps.com/privacy-policy |
| Security and performance | Cloudflare | cloudflare.com/privacypolicy |
10. International Data Transfers
If you are located outside the United States, your personal data may be transferred to and processed in the U.S. or other countries with different privacy laws.
We use appropriate safeguards for international transfers, including:
- Standard Contractual Clauses (SCCs)
- Limiting processing to what is necessary for service delivery
11. EU/UK Representation
We are a U.S.-based organization that does not actively target or market to EU/UK residents. However, our website is accessible globally, and we comply with GDPR and UK data protection laws for all users regardless of location. As a small nonprofit without an establishment in the EU or UK, we are not required to appoint a local representative under GDPR Article 27 or UK GDPR Article 27.
12. Children’s Privacy
We do not knowingly collect personal data from children under 13 (or the minimum legal age in your jurisdiction). If we become aware that a child has submitted personal information without appropriate consent, we will delete it promptly.
13. How We Protect Your Data
We use industry-standard safeguards, including:
- SSL encryption
- PCI DSS-compliant payment processing (via Stripe)
- Restricted internal access controls
- Secure system monitoring
We do not store credit card information on our servers.
14. Data Retention
We retain personal data only as long as necessary to:
- Fulfill requests or services
- Meet legal or financial obligations
- Maintain support and administrative records
If you request deletion, we will remove your data within 30 days unless legally required to retain it longer. Encrypted backups are retained for up to 30 days.
15. Data Breach Procedures
If a data breach affects your personal information, we will notify affected individuals and relevant authorities as required by law and take prompt corrective action.
16. Terms of Use
This Privacy Policy forms part of our Terms of Service. By using our website or services, you agree to both.
17. Contact Us
If you have questions or concerns about how we handle your personal data, or if you wish to exercise your rights, please contact us:
(972) 635-2021
(888) 835-2520 (Toll-Free)
Voice of Elijah, Inc.
P.O. Box 2257
Rockwall, TX 75087-2257
If you are located in a region with privacy laws (e.g., EU, UK, Brazil, Canada, Australia), you may also contact your local data protection authority.