Privacy Policy

At Tettra, we are all about transparency. In order to keep our commitment to transparency, you’ll find our Privacy Policy in full below. We ask you to read it thoroughly and contact us if you have any questions. But… let’s be honest… This type of stuff is usually pretty boring, so here are the highlights and important bits:

  1. Tettra provides on online platform to store documentation and knowledge resources in a wiki-like format. At a minimum, we require a valid email address to set up an account.
  2. As a small team we rely on several third party services to help us provide a better product and experience for you. We only share data with those 3rd parties in the ways that are described in this policy.
  3. You choose what data we have access to from your Slack account or other accounts you connect with Tettra.
  4. You can revoke Tettra’s access to your Slack account at any time by going to yourteam.slack.com/apps/manage, choosing the “Tettra” app from your list of integrations and then pressing the Remove App button.
  5. We take your privacy and the security of your data very seriously and are dedicated to fully complying with the GDPR.
  6. Just like all things in life, this Privacy Policy may change from time to time. We’ll notify you in advance and provide you with alternative options if something doesn’t jive quite right with you.

Tettra Privacy Policy

Updated: May 14, 2018

This privacy policy is here to help you understand what information we collect at Tettra, how we use it, and what choices you have. When we talk about Tettra in this policy, we are talking about Tettra, Inc., the company, the Tettra website at tettra.co, and the web application available at https://app.tettra.co. Tettra is available for use via a web or mobile browser.

This policy describes how Tettra treats your information, not how other organizations or Slack Technologies, Inc. treat your information. If you are using Tettra in a workplace or on a device or account issued to you by your employer or another organization, that company or organization likely has its own policies regarding storage, access, modification, deletion, and retention of communications and content which may apply to your use of Tettra. Content that would otherwise be considered private to you or to a limited group of people may, in some cases, be accessible by your team owner or administrator. Please check with your employer, team owner or administrator about the policies it has in place regarding your communications and related content on Tettra. More on this below.

1. Information We Collect and Receive

We collect different kinds of information. Some of it is personally identifiable and some is non-identifying or aggregated. Here are the types of information we collect or receive:

  • Personal Identifying Information. Tettra collects your email address and full name when you sign up for an account. If you sign up using a Slack account, we request this information from Slack, in addition to your Slack id, and your Slack Workspace name and id.
  • Team Content. This is information you and your team members submit to Tettra for hosting, processing, and display purposes. This includes full page text, images and attached files, comments on pages, and the content of suggestions. We also generate metadata on the Content you submit like creation time, update time, and the user info for the person submitting the content.
  • Billing information. If you purchase a premium version of Tettra, our third party payment processors will collect and store your billing address and credit card information. We use Stripe.
  • Log data. When you use Tettra, our servers automatically record information, including information that your browser sends whenever you visit a website. This log data may include your IP address, the address of the web page you visited before coming to Tettra, your browser type and settings, the date and time of your request, information about your browser configuration and plug-ins, language preferences, and cookie data. Log data does not contain message content and is not routinely deleted.
  • Device information. In addition to log data, we may also collect information about the device you’re using Tettra on, including what type of device it is, what operating system you’re using, device settings, unique device identifiers, and crash data. Whether we collect some or all of this information often depends on what type of device you’re using and its settings.
  • Tettra usage information. This is information about which features you interact with within Tettra. We don’t log the actual content of the messages, files and comments, just the fact that an event happened using those features on Tettra.
  • Third Party Data. Tettra may receive data about organizations, industries, Website visitors, marketing campaigns and other matters related to our business from third parties that we use to make our own information better or more useful. For example, we may use a service to determine your job title based on your email address so we can suggest Tettra use cases that match your industry and role.

Cookie policy

Tettra uses cookies, or similar technologies like single-pixel gifs and web beacons, to record log data. We use both session-based and persistent cookies.

Cookies are small text files sent by us to your computer and from your computer to us, each time you visit our website. They are unique to your Tettra account or your browser. Session-based cookies last only while your browser is open and are automatically deleted when you close your browser. Persistent cookies last until you or your browser deletes them or until they expire.

Some cookies are associated with your Tettra account and personal information in order to remember that you are logged in and which team you are logged into. Other cookies are not tied to your Tettra account but are unique and allow us to do site analytics and customization, among other similar things. If you access Tettra through your browser, you can manage your cookie settings there but if you disable all cookies you may not be able to use Tettra.

Tettra sets and accesses our own cookies on our company-owned domains. In addition, we use 3rd parties like Google Analytics, Intercom and Amplitude for website analytics.

We use 3rd party cookies from Facebook to make advertising messages more relevant. You can learn more about Facebook Custom Audience and find instructions on how to opt out here.

We do not currently recognize or respond to browser-initiated Do Not Track signals as there is no consistent industry standard for compliance.

2. European Union’s General Data Protection Regulation

This section of our Privacy Policy applies to all residents of any member states of the European Union (“EU Resident”), including the United Kingdom.

Any Personal Identifying Information you provide to us to create a Tettra account (“Account Information”) shall be used only for the purposes of providing you with the services described in Tettra’s Terms of Service, found at https://tettra.co/tos/, in accordance with the European Union’s General Data Protection Regulation (“GDPR”).  Tettra will delete all Account Information of a EU Resident, within 90 days after the (i) receipt of your written request to delete your Account Information, or (ii) termination of your account in accordance with Tettra’s Terms of Service.

In accordance with the GDPR, Tettra will (i) use the information we collect about you only for the purposes described herein this policy (ii) store all information we collect about you in secure hosting facilities, (iii) notify you of any data breach or incident within 72 hours of becoming aware of the situation, (iv) respond to any of your inquiries about Tettra’s collection, use, maintenance, and deletion of your information within 30 days, and (v) will not retain data longer than is necessary to fulfill the purposes for which it was collected or as required by applicable laws or regulations.

Pursuant to the GDPR, you have the right and request from Tettra (i) access to the information we collected about you, (ii) correct any inaccuracies to the information we collect about you, (iii) erase any and all information we collect about you, (iv) restrict how we use the information we collect about you, (v) transfer the information we collect about you to another third party, (vi) object to our use of any information we collect about you for any purposes, (vii) not be subject to automated decision-making.  Please direct any of the aforesaid request to Tettra’s Data Protection Officer, as set forth below. Tettra will, within 30 days, respond to your request.

Tettra will store any Personal Identifying Information we collect about you on secured and encrypted servers located in the United States.  From time to time, certain upgrades, maintenance, and integration of new technology will require that we transfer any Personal Identifying Information we collect about you onto different, but similarly secured and encrypted servers, which will also be located within the United States.

Tettra is dedicated to protecting the information we collect about you and fulfilling all obligations to you in compliance with the GDPR.  If you are dissatisfied with Tettra’s response to your requests, the GDPR provides you with the right to lodge a complaint against Tettra with a supervisory authority of the European Union.

3. How we use your information

We use your information for the following:

  • To provide, maintain and improve Tettra’s Service, Websites and business. This includes use of information to support delivery of the Service, prevent or address service errors, security or technical issues, analyze and monitor usage, trends and other activities or at an Authorized User’s request.
  • Understanding and improving our products. To make the product better we have to understand how users are using it. We look at usage data from all customers in many different ways to improve our products, including research. This policy is not intended to place any limits on what we do with usage data that is aggregated or de-identified so it is no longer tied to a Tettra user.
  • Investigating and preventing bad stuff from happening. We work hard to keep Tettra secure and to prevent abuse and fraud.
  • Communicating with you
    • Solving your problems and responding to your requests. If you contact us with a problem or question, we will use your information to respond to that request and address your problems or concerns.
    • In-product communications. We may use the information you provide to contact you through in-product messaging tools. For example, if, after, a few weeks of using Tettra we notice that you haven’t posted your company’s vacation policy, we may send you a message that suggests you add that piece of knowledge. This is just one example of how we use information about your usage of the product to make suggestions to you.
    • Email messages. We may send you service and administrative emails, such as when we notice that you are nearing a the end of your free trial or go over your user limit. We may also contact you to inform you about changes in our services, our service offerings and important service related notices, such as changes to this policy or security and fraud notices. These messages are considered part of the service and you may not opt-out of them. In addition, we sometimes send emails to Tettra users about new product features or other news about Tettra. You can opt-out of these at any time.

4. Security

Tettra takes security of data very seriously. Tettra works hard to protect information you provide from loss, misuse, and unauthorized access or disclosure. To learn more about current practices and policies regarding security, please see our Security Overview. Given the nature of communications and information processing technology, Tettra cannot guarantee that information, during transmission through the Internet or while stored on our systems or otherwise in our care, will be absolutely safe from intrusion by others.

Data Breach or Incident Notification Policy

Tettra will, within 72 hours, notify you in writing upon verification of a security breach of the Tettra service that affects your data. Notification will describe the breach, the status of our investigation, and what steps, if any, you are advised to take.

5. Third-party Services

As a small team, we rely on a number of third-party software services to help us provide better service to our customers. This section describes providers we integrate with, what data is stored by these providers, and how that data is used. This list is not meant to be exhaustive and is included here for illustrative purposes. As the Tettra product improves and technologies change we may integrate with different or additional providers. If you have questions or would like more details about how your data is stored and shared, please contact us.

  • Heroku – Heroku provides application hosting services for Tettra.
  • Intercom – We use Intercom to provide support and communicate with users about their account via in-app chat and email. We send Intercom your full name, email address and account information.
  • Amplitude – We use Amplitude to store and analyze product usage data. When you interact with the Tettra app we send data on what features you’re using along with your user id and other metadata to Amplitude. We don’t send the content of the interaction. For example, if you comment on a page, we’ll record the fact that you commented, your user id and the id of the page you commented on, but not the text of the comment itself.
  • Stripe – We use Stripe to process payments. Your billing information, including your credit card, email, payment history, and plan information is stored on Stripe.
  • Algolia – Algolia provides the full text search capability in Tettra and stores the search index for pages, comments, and suggestions.
  • Amazon Web Services – AWS Relational Database Service (RDS) hosts Tettra’s database backend. Customer data stored on RDS is fully encrypted. We also use Amazon Simple Storage Service (S3) to host customer images and files.
  • Clearbit – When you create a new team account, we use Clearbit’s API to enrich the profile data associated with your email address. This may include your company information, job title, and links to your social profiles. We use this data to better understand the types of users interested in our product. You can see, edit, and delete what personal information Clearbit stores about you on their website: https://claim.clearbit.com/claim.

6. Changes to This Policy

This privacy policy may change from time to time. We will post the changes to this page and will notify you.

By continuing to access or use the services provided by Tettra after those changes become effective, you agree to be bound by the revised Privacy Policy.

If you are a EU Resident, changes to our Privacy Policy will take effect upon your express consent.

7. Contacting Tettra

Please feel free to contact Tettra if you have any questions about this Privacy Policy or Tettra’s practices, or if you are seeking to exercise any of your statutory rights. You may contact us at team@tettra.co or at our mailing address below:

Tettra Inc
271 Cambridge Street
Cambridge, MA 02141
USA

Data Protection Officer

You may contact our Data Protection Officer by the following:

VIA postal address:

Shauni Deshmukh
Tettra, Inc.
271 Cambridge Street
Cambridge, MA 02141
USA

By e-mail: dpo@tettra.co