Privacy Policy

Tendrill provides software for financial advisors. Our direct customers are advisory firms and the professionals who work at them ("advisors"). In the course of providing the service, we also process information about an advisor's clients and prospects on the advisor's behalf.

For client and prospect data, the advisory firm is the controller of that data and Tendrill acts as a service provider (processor) under the firm's instructions. If you are a client of an advisor who uses Tendrill, please contact your advisor with questions about how your information is used. Where a signed agreement (such as a Pilot Agreement and Data Processing Agreement) exists between Tendrill and an advisory firm, that agreement governs our handling of that firm's client data and controls over this Policy to the extent of any conflict.

We collect the following categories of information:

• Account information you provide when you sign up: name, work email, phone number, firm name, and authentication details.
• Client and prospect information that advisors connect or upload to provide the service: identity details (name, email, phone, date of birth), financial account and balance data, holdings, positions, cost basis, transactions, and documents an advisor uploads (such as statements and tax documents). Some of this is "sensitive" information, including financial account details. We use it only to provide the service.
• Connected-account data retrieved through Plaid and custodial integrations that an advisor or prospect authorizes. Portfolio connections are read-only by default; we do not move money without a separately authorized action.
• Usage and device information collected automatically when you use the service: log data, IP address, browser and device type, and product-interaction events.

• To provide, operate, and secure the service.
• To generate the analysis, alerts, summaries, and answers advisors ask for.
• To authenticate users, verify identity, and prevent fraud and abuse.
• To monitor performance, debug issues, and improve the product.
• To communicate with advisors about the service, including support and service notices.

We do not sell your information, we do not share it for cross-context behavioral advertising, and we do not use your data, or your clients' data, to train our own models.

Tendrill uses large language models from leading AI providers to analyze financial information. We apply the following controls:

• Zero data retention. Tendrill operates under a zero-data-retention configuration with its AI model providers. The inputs and outputs of a request are not retained on the model provider's side after the response is returned.
• No training on your data. Our AI providers are contractually prohibited from using your data to train their models. With Anthropic (our primary model provider), this is a commitment in their commercial terms, not a setting we toggle.
• Minimal data. We send an AI model only the data needed to answer the request in front of it.

To let advisors and prospects connect financial accounts, we use Plaid Inc. ("Plaid"). When you connect an account, you may interact with Plaid directly and provide your credentials to Plaid rather than to Tendrill. Plaid's handling of that information is governed by Plaid's End User Privacy Policy, available at plaid.com/legal. By using our account-connection features, you also agree to Plaid's policy. We use the resulting account data only to provide the service as described here.

We share information only as needed to run the service and as described here. We do not sell personal information.

• Subprocessors. We use vetted third-party services for hosting, financial data, AI inference, communication, and analytics. The current list, with each vendor's purpose, location, and compliance posture, is published at tendrill.ai/security. We bind each subprocessor to data-protection obligations no less protective than those we commit to here.
• At your direction. When an advisor connects an integration or shares output, information moves as the advisor instructs.
• Legal and safety. We may disclose information if required by law, to respond to lawful requests, or to protect the rights, safety, and security of our users and the service.
• Business transfers. If Tendrill is involved in a merger, acquisition, or sale of assets, information may transfer as part of that transaction, subject to this Policy.

Your data is stored and processed in the United States. We encrypt data in transit (TLS 1.2+) and at rest, restrict access to those who need it, and review our security program regularly. More detail on our safeguards and subprocessors is on our Security page.

No system is perfectly secure, and we cannot guarantee absolute security. If we become aware of a security incident affecting customer data, we will notify affected customers without undue delay and consistent with our agreements and applicable law.

We keep account and customer data for as long as an advisor's account is active and as needed to provide the service. On termination or on request, we will return or delete customer data within a reasonable period, except where retention is required by law. Advisors can request deletion at david@tendrill.ai. (This retention applies to data in the Tendrill application; data sent to our AI providers is handled under the zero-data-retention configuration described above.)

We use cookies and similar technologies for authentication, to keep the product working, and to understand usage through product analytics (for example, PostHog). You can control cookies through your browser settings; disabling some cookies may affect how the service works.

Depending on where you live (for example, California and other U.S. states with comprehensive privacy laws), you may have some or all of the following rights regarding personal information we hold about you:

• Know and access the categories and specific pieces of personal information we have collected, the sources, the purposes, and the categories of recipients.
• Delete personal information we have collected, subject to legal exceptions.
• Correct inaccurate personal information.
• Opt out of the sale or sharing of personal information. We do not sell or share personal information, and have not in the preceding 12 months, so there is nothing to opt out of.
• Limit the use of sensitive personal information. We use sensitive information, such as financial account details, only to provide the service and for purposes that do not require an opt-out.
• Non-discrimination for exercising any of these rights.

To exercise these rights, email david@tendrill.ai. We will verify your request and respond within the time required by law (generally 45 days, with an extension where permitted). An authorized agent may submit a request on your behalf with proof of authorization. If you are a client of an advisor who uses Tendrill, the advisor is the controller of your data; direct your request to your advisor and we will assist them in responding.

Tendrill uses AI to surface analysis, flags, and suggestions for advisors. These are decision-support outputs: a human advisor reviews them and decides what to do. Tendrill does not use automated processing to make legal or similarly significant decisions about an advisor's clients without human involvement.

Tendrill is a business tool for financial professionals and is not directed to children. We do not knowingly collect personal information directly from anyone under 18.

Tendrill is intended for use by financial professionals in the United States, and our infrastructure operates in the United States. We do not market the service to individuals in the European Economic Area or the United Kingdom.

We may update this Policy as our practices or the service change. When we do, we will revise the "Last updated" date above and, for material changes, take additional steps as appropriate.

Questions, requests, or due-diligence inquiries go to david@tendrill.ai. Tendrill, LLC, a Delaware limited liability company.