Privacy Policy

Last Updated: November 2025

Who We Are

Hyssop Anointing (“we,” “us,” “our”) operates the website:

https://hyssopanointing.com

Our mission is to share the Gospel, provide ministry resources, and support our online community.

For privacy or data-related questions, contact us at:

📧 [email protected]

What Personal Data We Collect and Why We Collect It

1. Information You Provide Through Contact Forms

When you submit a message through our contact forms (built using Blocksy + Gutenberg), we collect:

  • Name
  • Email address
  • Phone number (if provided)
  • Message contents

We collect this information so we can respond to inquiries, prayer requests, or ministry-related communication.

Retention:
We keep form submissions for up to 12 months for ministry records and follow-up. They are not used for marketing.

2. Cookies and Tracking Technologies

We use limited cookies for:

  • Site functionality (WordPress core cookies)
  • Google Analytics (anonymous statistics)
  • Cloudflare Optimization & Security Cookies

Google Analytics

We use Google Analytics to understand how visitors use the site.
Google Analytics may process:

  • IP address (anonymized)
  • Browser type
  • Device information
  • Pages visited and time on site

You may opt out with Google’s privacy tools:
https://policies.google.com/privacy

Cloudflare Analytics

Cloudflare automatically collects:

  • IP region (not full IP)
  • Security-related data
  • Performance metrics

This helps us keep the site secure and fast.

3. Embedded Content

Our sermons, videos, or livestreams may include embedded content from:

  • YouTube
  • Vimeo
  • Social media (optional in future)

Embedded content behaves the same way as if you visited those services directly.
These services may collect data, use cookies, or track usage according to their own privacy policies.

4. Technical & Server Data

Our hosting provider (Vultr) and security systems collect technical data such as:

  • IP address
  • Browser information
  • Security logs
  • Firewall logs
  • Error logs

This data helps protect the site from attacks, prevent spam, and maintain uptime.

Who We Share Your Data With

We do not sell or share personal data with advertisers.

We share data only with essential third-party providers:

Cloudflare

Security, SSL, caching, and performance.

Privacy Policy:
https://www.cloudflare.com/privacypolicy/

Vultr

Website hosting and server-level security logging.

Privacy Policy:
https://www.vultr.com/legal/privacy/

Google Analytics

Anonymous usage statistics.

Privacy Policy:
https://policies.google.com/privacy

Proton Mail

Manages our email communications.

Privacy Policy:
https://proton.me/legal/privacy

How Long We Retain Your Data

  • Contact form entries: up to 12 months
  • Analytics data: 14 to 26 months (Google default)
  • Security/firewall logs: 30–90 days depending on provider
  • No comments are stored (comments are disabled sitewide)

Your Rights Over Your Data

You may request:

  • A copy of any personal data we hold
  • Correction of inaccurate information
  • Deletion of your personal data

To request this, email us at:
📧 [email protected]

We will respond within 30 days.

Where Your Data Is Sent

Your data may be processed or stored in:

  • United States (Vultr server)
  • Global Cloudflare network (security + caching)
  • Google Analytics global infrastructure
  • Proton Mail (Switzerland-based secure email)

All vendors we use follow strong privacy and security standards.

How We Protect Your Data

We use industry-standard protections including:

  • SSL/HTTPS encryption
  • Cloudflare Web Application Firewall
  • Solid Security (WordPress security hardening)
  • Brute-force protection
  • Automated malware scanning
  • Strong password policies
  • Two-Factor Authentication for administrators
  • Regular plugin & core updates

Data Breach Procedures

If a data breach occurs, we will:

  1. Assess the scope and impact
  2. Secure the website and server
  3. Notify affected users via email (if applicable)
  4. Notify regulatory agencies if required by law

Third Party Data

We do not receive external user data from advertisers, brokers, or outside companies.

Automated Decision-Making

We do not use automated decision-making, profiling, or AI-based decisions that affect user rights.

Industry Regulatory Compliance

We are a ministry organization and not part of a regulated industry requiring special disclosures. However, we follow best practices for security and privacy.

Contact Information

For privacy-related questions, corrections, or data requests:

📧 [email protected]
🌐 https://hyssopanointing.com