FatherXLdn

Privacy policy: Road to Selah

Last updated: 3 May 2026

This policy describes how Road to Selah (“the App”), published by FatherXLdn (“we”, “us”), collects, uses, and shares information when you use the App. If anything here is unclear, contact us at hello@fatherxldn.co.uk.

Who we are

The App is developed by FatherXLdn, an independent developer based in the United Kingdom. We are the data controller for personal data processed in connection with the App and our related services, unless a third party (such as Apple, Google, or subprocessors listed below) processes data solely under their own terms.

Summary

The App helps you read the Bible in chronological order and offers AI-generated teaching and Q&A for subscribed users. To do that we use: (1) data stored on your device, (2) subscription verification through RevenueCat and the platform store (Apple / Google), (3) a backend service that checks your subscription and forwards approved requests to Anthropic for AI responses, hosted for us on Railway, and (4) a public Bible text API to fetch passage text. If you use voice input, your device’s speech system may process audio as described under Voice below.

Information we process

The App does not access your photo library. A system description is required because a bundled third-party library references the photo library API.

On your device

The App may store information locally on your device using on-device storage, including:

  • Reading progress and display preferences (such as playback speed).
  • Cached Bible passage text to reduce repeated downloads (from the third-party Bible text service described below).
  • Cached AI explanations and your per-passage chat history with the assistant, so you can return to a passage without refetching every time.

Subscriptions and purchases

Purchases are handled by Apple App Store and/or Google Play. We do not receive your full payment card details. The stores and RevenueCat process purchase and subscription data under their own policies. RevenueCat gives us (and our backend) the data needed to know whether your purchase is active before enabling paid AI features. That includes a pseudonymous customer ID from RevenueCat, not your name or email address as such.

When you use our backend (AI features)

Your device requests a short-lived access token from our server after we confirm an active subscription through RevenueCat. For each AI request we process:

  • The pseudonymous RevenueCat customer ID tied to your subscription, so we can authorise the session, enforce rate limits, and match requests to an entitled account. We do not need your real name for this; it is the same kind of identifier the stores and RevenueCat already use to link your device to your purchase.
  • The Bible book and chapter you are reading, the passage text retrieved for that chapter, and for Q&A features the questions you ask and prior messages in that conversation.
  • Technical data typical of API requests, such as timestamps and IP address, in server or hosting logs maintained by our hosting provider (Railway).

Our backend sends the content of these requests to Anthropic to generate responses. Anthropic processes that content under their policies as a subprocessor. We do not use your questions to train public models; retention on the Anthropic side is governed by Anthropic’s documentation for API customers.

Bible passage text (third-party API)

The App fetches public-domain or licensed Bible text over the internet (for example from bible-api.com) so we can show chapters and provide context to the AI. Those providers may log requests in line with their own policies.

Voice input

If you use voice features, audio may be captured through your device microphone and processed by the operating system’s speech recognition (Apple / Google) or related services. That processing is subject to your platform provider’s privacy settings and policies. We do not operate separate voice servers for Road to Selah in the usual product flow; see the App’s permission prompts for details.

Legal bases (UK / EEA)

Where UK GDPR or the GDPR applies, we rely on:

  • Contract, to provide subscriptions and AI features you have chosen to use.
  • Legitimate interests, to secure the service, prevent abuse, and improve reliability (for example rate limiting and error logging), balanced against your rights.
  • Consent, where required for optional processing (such as certain analytics if we add them later and ask you). The App does not ship third-party advertising SDKs in the versions we publish to the stores.

Retention

Device-side cache and history remain until you remove the App or clear data in settings (if we expose that). Short-lived access tokens expire within minutes. Server logs, if any, are kept only as long as needed for security and operations, then deleted or aggregated in line with our hosting practices. If you need specific deletion on our servers, email us; some store-side records may remain with Apple or Google for billing history.

Sharing and subprocessors

We share data with service providers only as needed to run the App, including:

  • Apple and Google (app distribution, in-app purchases, platform services).
  • RevenueCat (subscription status and customer identifiers).
  • Anthropic (AI inference for explanations and answers).
  • Railway (hosting for our backend API: subscription checks, token issuance, and forwarding requests to Anthropic).
  • Public Bible text providers (request metadata and passage fetches).

International transfers

Providers may process data in the United States or other countries. Where required we use appropriate safeguards (such as Standard Contractual Clauses) or rely on adequacy decisions. Contact us for more detail.

Children

The App is not directed at children under 13 (or the digital consent age in your region). We do not knowingly collect personal information from children. If you believe we have, contact us so we can delete it.

Your rights

Depending on where you live, you may have the right to access, correct, delete, restrict, or object to certain processing, and to port data or lodge a complaint with a supervisory authority. To exercise rights against us, email hello@fatherxldn.co.uk. Rights against Apple or Google are exercised through their account tools.

Security

We use industry-standard measures for API traffic (such as HTTPS and short-lived access tokens). No method of transmission or storage is completely secure; use the App only on devices you trust.

Changes

We may update this policy when we add features or subprocessors. We will revise the “Last updated” date and, where required, notify you in the App or by email. Continued use after changes means you accept the updated policy unless applicable law requires otherwise.

All privacy policiesBack to home