Privacy Policy

Last updated: March 21, 2026

1. Who We Are

Tendful operates the website tendful.com and the Tendful platform, a preventive workplace wellbeing service.

For any privacy-related questions, contact us at hellohello@tendful.com#64;tendfulhello@tendful.com#46;com.

2. What We Collect and Why

Account data

When you create an account, we collect your email address, name, and a password (stored as a secure hash). We use this to authenticate you and provide the service.

Wellbeing data

You may submit daily mood check-ins, comments, and reactions. This data is used to show you your personal trends and to provide aggregated team insights. AI-generated insights and pattern analysis are derived from this data to help you understand your wellbeing over time.

Third-party integration data

You may choose to connect third-party health, wellness, and productivity services. When you authorize an integration, we receive data based on the permissions you grant (such as sleep, activity, or productivity metrics). This data is used solely to show you personal correlations and insights. Integration data is visible only to you and is never shared with your team, employer, or any third party.

You can disconnect any integration at any time from your profile settings. The specific integrations available may change over time.

Technical data

We use a single session cookie that is strictly necessary for the service to function. We do not use analytics cookies, tracking cookies, or third-party cookies. Server logs (IP address, request path, timestamp) are retained for 30 days for security purposes and then automatically deleted.

3. Data Sharing and Storage

We do not sell, rent, or share your personal data with third parties. We do not use your data for advertising or profiling.

Within a team workspace, the following is visible to other team members: your name, mood check-in, and any comments you choose to post. Integration data and personal analytics remain private to you.

Your data is stored on servers located in the European Union. All connections are encrypted with HTTPS. Passwords are hashed using bcrypt. Access to servers is restricted to the Tendful administrator via SSH only.

4. Your Rights

Under the General Data Protection Regulation (GDPR), you have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your account and all associated data
• Export your data in a portable format
• Withdraw consent for any integration at any time

To exercise any of these rights, contact us at hellohello@tendful.com#64;tendfulhello@tendful.com#46;com. We will respond within 30 days.

5. Data Retention

Your data is retained for as long as your account is active. Server logs are automatically deleted after 30 days. If you request account deletion, all your personal data will be permanently removed.

6. Changes and Contact

We may update this policy from time to time. The date at the top of this page indicates when it was last revised. If we make significant changes, we will notify you through the platform.

Questions? Contact us at hellohello@tendful.com#64;tendfulhello@tendful.com#46;com.

Terms of Service →