Privacy is part of the prayer.
For This One provides private, link-based prayer gatherings called Moments. We do not sell personal information. Prayer, written messages, voice recordings, and photos are optional. We use sensitive information only to provide, protect, and improve the service as described below—not to target advertising, determine eligibility, or build commercial profiles.
1. Scope and who we are
This Privacy Policy explains how For This One (“For This One,” “we,” “us,” or “our”) handles personal information when you visit forthisone.com, create or participate in a Moment, view a recipient gift, communicate with us, purchase an optional product, or otherwise use our services (collectively, the “Service”).
For privacy questions or requests, contact support@afooga.com. This Policy does not govern a third-party website or service that you choose to visit through a link from the Service.
2. People and roles in a Moment
- Organizer: creates the Moment, supplies recipient information, invites participants, moderates contributions, and controls delivery.
- Participant: receives an invitation, may identify themselves, records that they prayed, and may contribute text, voice, or a photo.
- Recipient: the person for whom the Moment was created. A recipient may not have supplied their information directly to us.
- Purchaser: an organizer who purchases an optional digital or physical artifact, if purchasing is available.
If you are a recipient and did not expect a Moment, you may hide it immediately through the recipient page or contact us for access, correction, or deletion.
3. Information we collect
Information supplied by organizers
- Name, email address, optional telephone number, authentication records, and organizer preferences.
- The recipient’s name, occasion, short invitation context, prayer deadline, time zone, privacy settings, and requested follow-up actions.
- Moderation choices, reports, support communications, and instructions for recipient delivery.
- If an optional physical product is ordered, shipping contact information supplied at checkout or directly to a fulfillment provider.
Information supplied by participants
- A selected display name, initials, anonymous status, and optional city.
- The fact and time that a prayer was completed and whether it arrived after the deadline.
- Optional written blessings, voice recordings, photos, and the permissions attached to those contributions.
- Optional reminder contact information and an optional private organizer-return pass.
Information collected automatically
- IP address, browser and device type, operating system, timestamps, requested pages, security events, and diagnostic information.
- First-party visitor and session identifiers stored in the browser; invitation opens, prayer completion, sharing actions, recipient reveal, and other product interactions.
- Coarse campaign information, such as referring domain and UTM parameters. We do not place recipient names, prayer context, blessings, private links, recordings, or photos in analytics events.
Information from others
An organizer or participant may provide information about another person. Payment processors, fulfillment providers, email or messaging providers, and fraud-prevention services may give us transaction, delivery, or status information. We do not receive full payment-card numbers.
4. Sensitive, religious, and health-related information
A prayer request or contribution may reveal religious or philosophical beliefs, health circumstances, disability, grief, family relationships, or other sensitive information. We ask organizers to provide only a brief, respectful context and never medical records, detailed diagnoses, precise addresses, government identifiers, financial information, or information the recipient has not agreed to share.
Where consent is the required legal basis, we rely on the explicit permission given by the person submitting a contribution and on the organizer’s confirmation that they have the recipient’s permission or other lawful authority to provide the recipient information. Consent can be withdrawn prospectively by deleting a contribution, hiding a Moment, or contacting us. Withdrawal does not affect processing already lawfully completed.
Additional disclosures required for consumer health information appear in our separate Consumer Health Data Privacy Policy.
5. How we use information
We use personal information to:
- Create, authenticate, operate, and deliver private Moments.
- Display the participant constellation and approved contributions according to the selected visibility settings.
- Send requested sign-in links, reminders, delivery notices, and service communications.
- Moderate content, investigate reports, prevent abuse, secure private links, and enforce our Terms.
- Create an optional preview, Prayer Film, keepsake, or physical product only from eligible, approved contributions and applicable permissions.
- Process payments, refunds, fulfillment, customer service, accounting, and tax obligations.
- Measure aggregate Service performance and improve usability, reliability, accessibility, and safety.
- Comply with law, respond to valid legal process, protect rights and safety, and establish or defend legal claims.
We do not use prayer content, health-related context, voices, photos, or recipient information for targeted advertising, automated eligibility decisions, or training a general-purpose artificial-intelligence model.
6. Legal bases for processing
Where law requires us to identify a legal basis, we rely on:
- Contract: to provide the Service or a purchased product requested by an organizer or participant.
- Consent: for optional contributions, reminders, film or recipient-display permissions, and sensitive information where explicit consent is required.
- Legitimate interests: to secure, administer, troubleshoot, and improve the Service, prevent fraud and abuse, and understand aggregate use, balanced against individual rights.
- Legal obligations: for tax, accounting, lawful requests, consumer protection, and compliance duties.
- Vital interests: only in rare circumstances where processing is necessary to protect someone from a serious and imminent threat and another lawful basis is unavailable.
7. When we disclose information
We disclose only what is reasonably necessary to the following recipients:
- People in the Moment: organizers, recipients, and participants receive information according to the Moment’s role, settings, approvals, and link permissions.
- Infrastructure and communications providers: hosting, database, private object storage, email, SMS, security, monitoring, and support services.
- Payment and fulfillment providers: Stripe or another processor, and—only if an organizer orders an artifact—printing, gifting, shipping, or media-production providers such as Prodigi, Lulu, or Goody.
- Professional advisers: auditors, insurers, lawyers, accountants, and consultants bound by confidentiality.
- Authorities and protected parties: when reasonably necessary to comply with law, respond to valid process, investigate abuse, or protect rights, safety, and security.
- Business transactions: in a merger, financing, reorganization, acquisition, or sale, subject to appropriate confidentiality and continued protection.
Service providers may process information only for contracted purposes and under applicable confidentiality and security duties. We do not sell personal information. We do not share personal information for cross-context behavioral advertising.
8. Private links and visibility
Moments are unlisted, not public directories. Organizer, participant, and recipient links have different permissions. Anyone who obtains an invitation or recipient link may be able to access information permitted to that link, so do not post private links publicly. Organizers may rotate an invitation link, cancel or delete a Moment, and moderate contributions. Recipients may hide a Moment and request deletion.
Voice recordings and photos are private by default and require approval before recipient display. Permission for a private Prayer Film is separate from public sharing. Public or promotional trailers must exclude recipient names, private context, participant identities, voices, photos, locations, and blessing content unless every affected person has given a separate, informed permission.
9. Cookies, local storage, and analytics
We use essential cookies for authentication, security, and referral integrity. We use browser local or session storage for anonymous first-party visitor and session identifiers, attribution, and optional return paths. Blocking storage may reduce functionality but does not prevent basic prayer participation.
If third-party marketing analytics are enabled, they are limited to the public homepage and do not load on creation, invitation, organizer, recipient, or contribution pages. We honor Global Privacy Control and browser Do Not Track signals for optional marketing analytics. We do not respond to those signals for strictly necessary security or service operation.
10. Retention
We keep information only for the purposes described above and apply the following standard schedule, unless law, a dispute, safety, fraud prevention, or a purchased service requires a different period:
Deletion from active systems may take up to 30 days after a verified request. We may retain the minimum information necessary to document a request or comply with law.
11. Security
We use administrative, technical, and organizational safeguards designed for the sensitivity of the information, including role-specific links, access controls, private media storage, encryption in transit, secret management, moderation controls, rate limits, and deletion tools. No system is perfectly secure. If you believe a private link or account has been compromised, rotate the link where available and contact us immediately.
12. Your choices and privacy rights
Depending on where you live, you may have rights to access, receive a copy of, correct, delete, restrict, or object to processing; withdraw consent; opt out of sale, sharing, targeted advertising, or certain profiling; and appeal a denied request. You may also complain to your local privacy regulator.
- Participants can edit their identity settings and delete their own text, voice, or photo from the completion page while the participation token remains available.
- Organizers can edit, cancel, rotate, moderate, or delete their Moments from the organizer account.
- Recipients can hide a Moment immediately and submit a takedown request.
- Anyone may email support@afooga.com with the subject “Privacy Request.” Describe your role and the Moment without emailing blessing text, medical details, recordings, or a full private link.
We may verify identity and authority before acting. An authorized agent may submit a request where permitted by law, but we may require proof of authorization. We will not discriminate against anyone for exercising a privacy right.
13. California disclosures
During the preceding 12 months, we may have collected the categories described in Section 3: identifiers; customer records and transaction information; internet or electronic activity; approximate location selected by the participant; audio, visual, and user-generated content; inferences limited to product operation; and sensitive information including account credentials, private communications, health-related context, and religious or philosophical beliefs.
We use and disclose those categories for the business purposes in Sections 5 and 7. We do not sell them, and we do not share them for cross-context behavioral advertising. We use sensitive personal information only as reasonably necessary to provide, secure, and administer the Service or as otherwise permitted by law. California residents may request access, correction, deletion, or limitation and may exercise applicable opt-out rights through the contact method above.
14. Children and Moments for minors
The Service is designed for adults and is not directed to children under 13. A person under 13 may not submit personal information, create an account, or contribute without a verified parent or legal guardian process provided by us. If we learn that we collected personal information directly from a child under 13 without required permission, we will delete it.
Organizers must be at least 18. A Moment concerning a minor may be created only by a parent or legal guardian, or with that person’s express permission. Do not use a minor’s full name, photo, voice, school, address, medical details, or precise location unless strictly necessary and specifically authorized. Contact us if you believe a child’s information was provided improperly.
15. International transfers
We and our providers may process information in the United States and other countries whose laws may differ from those where you live. Where required, we use recognized transfer safeguards, such as contractual protections, and apply this Policy regardless of processing location.
16. Changes to this Policy
We may update this Policy as the Service, providers, or laws change. We will post the revised version with a new effective date and provide additional notice when a change materially affects how we use sensitive information. We will seek new consent when required.
17. Contact
Email privacy, data-access, deletion, appeal, or child-safety requests to support@afooga.com. For a recipient takedown, use the control on the recipient page when available so the request can be associated with the correct Moment without sending sensitive content by email.
Last updated July 11, 2026. This Policy should be read together with the Terms of Service and Consumer Health Data Privacy Policy.