PRIVACY POLICY

TCP Command Center ("the Service") is an internal business dashboard operated by Todd Tolson and The Church Playbook ("we," "us," "our"). This Privacy Policy explains what information we collect, how we use it, and the third-party services we rely on to operate the Service.

The Service displays revenue, subscription, and advertising performance data for The Church Playbook. We collect and process:

• Payment and subscription data retrieved from Stripe (charge amounts, subscription status, customer counts, refunds, and failed payment events).
• Advertising performance data retrieved from the Meta Marketing API (ad spend, impressions, clicks, purchases, ROAS, and campaign-level metrics).
• Basic server logs (IP address, browser type, timestamps) for security and diagnostic purposes.

The Service does not collect personally identifiable information from end users of The Church Playbook's customers beyond what Stripe and Meta provide for aggregated reporting.

We use the information we collect to:

• Display live business performance metrics on the dashboard.
• Monitor advertising effectiveness and return on ad spend.
• Detect failed payments, refunds, and cancellations.
• Maintain the security and reliability of the Service.

The Service uses essential cookies and browser local storage to maintain authenticated sessions and remember user preferences. We do not use third-party advertising or cross-site tracking cookies on this dashboard.

The Service integrates with the following third-party providers. Their use of data is governed by their own privacy policies:

• Meta Platforms, Inc. — Meta Marketing API for advertising performance data. Meta Privacy Policy.
• Stripe, Inc. — payment processing and subscription billing. Stripe Privacy Policy.
• Supabase — backend database and authentication infrastructure. Supabase Privacy Policy.

Aggregated performance data is retained for as long as it is useful for business reporting. Server logs are typically retained for 30 days. We do not sell personal information.

The Service is hosted on secure infrastructure and uses HTTPS for all data in transit. API credentials for Stripe and Meta are stored as encrypted secrets and are never exposed to the browser.

If you believe your personal information appears in the Service or you want to request access, correction, or deletion, contact us using the information below. Where applicable laws grant rights such as GDPR or CCPA access and deletion requests, we will honor them within a reasonable timeframe.

The Service is not directed to children under 13 and we do not knowingly collect personal information from children.

We may update this Privacy Policy from time to time. The "Effective" date at the top of this page indicates when it was last revised.

Questions or requests regarding this Privacy Policy can be directed to:

Todd Tolson
The Church Playbook
Email: todd@thechurchplaybook.com
Web: thechurchplaybook.com