The short version
2028 stores your worker account, the contacts you capture, the follow-ups you log (calls, WhatsApp, SMS, notes, prayer), and the stage each contact sits in. Your team's leaders can see the contacts and activity of the workers under them. We don't sell any of it, we don't run ad networks, and we don't track you across other apps. Because the app holds personal data about people who never signed up themselves, Section 4 explains who is responsible for that data and how someone can ask to be removed.
1. Who we are
2028 is built and operated by Benlottejnr Apps, a sole-proprietor software studio. For privacy questions or to exercise your rights, write to 2028-privacy@benlottejnr.org.
Mailing address: Benlottejnr Apps · East Legon, Accra · Ghana. Servers and data storage are in the United States (see Section 7).
2. What we collect from you
2.1 Your worker account
- Name and username, how you appear to your team and your leaders.
- Email address, used to sign you in, recover your account, and send account-related messages.
- Phone number, optional; stored if you add it to your profile.
- Hashed password, we never store your password in plain text.
- Your place in the team, the organization and group you belong to, who your leader is, and whether you can view a team roll-up.
- Your preferences, reminder time, timezone, and whether follow-up reminders are on.
2.2 The contacts you add
When you capture or import a contact, 2028 stores what you enter for them. Most fields are optional; a bare phone number with nothing else is normal.
- Phone number(s), any label you give them (mobile, work), and whether a number is on WhatsApp.
- Name, if and when you add one.
- Optional details you choose to record: email, birthday, address, city, postcode.
- A note on where or how you met, to help you remember them.
- The stage they're in and, if you set one, the outreach event the contact was captured at.
- Timestamps: when the contact was captured on your device and when it synced.
2.3 The follow-ups you log
- Calls you place from the app and their outcome: answered, no answer, busy, dropped, blocked, or voicemail.
- WhatsApp and SMS follow-ups and whether the person responded.
- Notes you write on a contact, stage changes, and when you logged a prayer for someone.
- The time each activity happened. 2028 does not record the audio or content of your calls or messages, only that they happened and the outcome you tap.
2.4 Contacts imported from your phone
- If you choose to import, 2028 reads names and phone numbers from your device's address book so you can turn people you already know into 2028 contacts. Import is optional and only runs after you grant the contacts permission.
- If you turn on save-back, 2028 can write a contact you captured into your phone's address book. This is off unless you enable it.
- We only read the address book when you actively import. We do not silently or continuously sync your whole phone book.
2.5 Device and technical data
- Push notification token, issued by Apple or Google so we can send you follow-up reminders.
- App version, OS, timezone, used to send reminders at your local time and keep the app working correctly.
- IP address, seen by our backend for routine traffic logging and abuse prevention. It isn't tied to your account in any log we keep.
2.6 What we don't collect
- No analytics SDKs. We don't use Firebase Analytics, Google Analytics, Mixpanel, or any similar event-tracking service.
- No advertising SDKs and no ads.
- No crash-reporting SDKs (Crashlytics, Sentry, Bugsnag, or similar).
- No location tracking, no microphone, camera, photos, calendar, or health data.
- We never sell, rent, or trade personal data, yours or your contacts'.
3. How we use it
- Running your account and syncing your contacts and activity across your devices and your team.
- Opening the right app (phone, WhatsApp, SMS) when you tap a follow-up action.
- Sending the follow-up reminders you've turned on, at the time and timezone you set.
- Showing leaders the roll-up of workers beneath them in the team tree.
- Routine operations: account recovery, abuse prevention, and fixing bugs that affect a specific account.
4. Who is responsible for the contact data
This is the part that makes 2028 different from an ordinary app. The people you add as contacts usually did not sign up for 2028 themselves, so it matters who decides what is stored about them.
You and your organization decide who to add and what to record about them, so you are the ones responsible for that contact data (the "data controller"). Benlottejnr Apps provides the software and stores the data on your behalf (the "data processor").
Because of that, when you capture someone's details you should:
- Only add people you have a genuine reason to follow up, and be open with them that you're keeping their number to stay in touch.
- Respect anyone who asks you not to contact them, or who asks to be removed. You can delete a contact in the app at any time.
- Follow the privacy and data-protection laws that apply where you and the person are (for example UK GDPR or EU GDPR).
If you are someone a worker added as a contact and you want to know what is held about you, correct it, or have it deleted, you can email 2028-privacy@benlottejnr.org. We will pass your request to the worker or organization responsible and help them action it, and we can remove the data from our systems.
5. Where the app keeps data on your device
- 2028 keeps a local copy of your contacts and activity on your device so it works with no signal. Numbers you type autosave as drafts locally and sync when you're back online.
- Your sign-in token is stored in the operating system's secure keystore (Keychain on iOS, Keystore on Android), not in plain files.
- Signing out or deleting the app removes the local copy from that device.
6. Third parties that process data
These are the only outside services that touch your data on our behalf. Each is named with what it receives.
- Google LLC (Firebase Cloud Messaging), delivers push notifications. Receives the device push token and the reminder we send. Policy.
- Amazon Web Services, Inc., our backend server and database run on AWS in the United States. Your account, contacts, and activity are stored there. Policy.
- Apple Inc. / Google LLC (app platforms), provide the mobile platforms 2028 runs on and route push notifications on their devices. Apple · Google.
We only list services that actually process personal data. Infrastructure like static website hosting, DNS, and web fonts never sees your account, your contacts, or your activity, so it isn't listed here.
7. Where your data lives
Our servers and database are hosted in the United States. If you use 2028 from outside the US, your data is transferred to and stored in the US. Where your local law requires it (UK GDPR, EU GDPR), we rely on standard contractual clauses and the data-protection commitments of our US-based vendors.
8. How long we keep it
- Your account, contacts, and activity: kept while your account is active and you keep them.
- Deleted contacts: when you delete a contact it is removed from view immediately and purged from our systems shortly after.
- Server logs: a rolling window used for debugging and abuse prevention, then discarded.
- Account deletion: actioned within 30 days of request. See Delete account.
9. Your rights
You can ask us to:
- Access a copy of the data tied to your account.
- Correct anything that's wrong.
- Delete your account and the data attached to it.
- Port your data to you in a portable format.
- Object to or restrict some uses, and turn off reminders at any time in Settings.
To exercise any of these, email 2028-privacy@benlottejnr.org from the address on your account, or use the delete-account page. We aim to respond within 7 days and complete the action within 30 days. People who were added as contacts have a route too, see Section 4.
10. Children
2028 is a tool for outreach workers and is intended for users 16 years and older. We don't knowingly let under-16s create an account. When you add contacts, you should not record details about a child without the consent of their parent or guardian. If you believe we hold data about a child that shouldn't be there, email 2028-privacy@benlottejnr.org and we'll remove it.
11. Security
- All traffic between the app and our servers is encrypted with TLS 1.2 or higher.
- Passwords are stored as bcrypt hashes, never plain text.
- Sign-in tokens are scoped per device and can be revoked.
- The backend runs in a hardened Linux container; only the API is publicly reachable.
No system is perfectly secure. If we ever discover a breach that affects your data, we'll notify you within 72 hours where the law requires it.
12. This website
This site (2028.benlottejnr.org) is a static marketing site. It sets no tracking cookies, runs no analytics, and carries no ad pixels. The only third-party request it makes is to Google Fonts for the typeface.
13. Changes to this policy
If we change what we collect or how we use it, we'll update the "Effective" date above, note it in the app, and email you for material changes.
14. Contact
Privacy: 2028-privacy@benlottejnr.org
Support: 2028-support@benlottejnr.org
Postal: Benlottejnr Apps · East Legon, Accra · Ghana
Effective: July 13, 2026 · Last updated: July 13, 2026