Privacy Policy
Last updated: May 2026
This Privacy Policy describes how Thelpened processes information when you use our website and application. It is a placeholder for launch and should be reviewed by qualified legal counsel before production reliance.
Data we process
We store account information (name, email), workspace configuration, scan metadata, findings, audit logs, billing identifiers from Stripe, and content you submit for reports or GRC workflows.
AI features may send redacted prompts to configured model providers (e.g. OpenAI) when enabled.
How we use data
Data is used to operate the service, enforce authorization, improve reliability, and meet legal obligations. We do not sell personal data.
Aggregated or de-identified metrics may be used for product improvement.
Retention & security
We retain data while your account is active and as needed for backups, billing, or legal requirements. You may request deletion subject to operational constraints.
We apply industry-standard technical and organizational measures; no system is perfectly secure.
Your rights
Depending on jurisdiction, you may have rights to access, correct, or delete personal data. Contact your workspace owner or our support channel to submit requests.
These materials are provided for operational clarity and are not legal advice. Consult qualified counsel before relying on them for compliance purposes.