Security

Current as of June 18, 2026. We may update this page; the date reflects the latest version.

This page describes how the system is built. It is an honest account of mechanisms, not a formal compliance attestation.

How it's built

Origin-locked. Your assistant only answers on the domains you configure — another site can't embed it and borrow your church's voice.
Fully hosted on the edge. It runs on Cloudflare's global network. There are no servers for you to deploy or patch, and no API keys for you to manage or rotate.
No tracking. Ordinary questions store no IP, user-agent, or referrer — only an anonymous, random session identifier.
Grounding gate. For grounded tenants, every answer is checked against the church's own content before it is sent; unsupported answers are held and the person is handed to a human.
Crisis gate. Acute-distress messages route to 988 and your care contacts before any AI runs — hard-wired in code, not a prompt.
Answer-first. The assistant never gates an answer behind an email; identity is collected only when a visitor chooses to share it.

What we don't claim

We do not claim formal certifications such as SOC 2, ISO 27001, or HIPAA, and we make no specific encryption or uptime guarantees here. To report a vulnerability, email askchurch@visiongenesisai.com.

Privacy Terms Security Cookies Do Not Sell or Share Status