Privacy

What we collect, what we don't, and why.

Last updated 2026-05-08. This is a first draft published in good faith. We'll refine it as the product and the regulatory landscape evolve. If anything is unclear, email privacy@tenura.systems.

What we collect

Three sources of data.

Beta-access form

When you submit the request form on this site, we collect the name and email you provide, the optional workload note, your IP address (for rate limiting and abuse detection via Cloudflare Turnstile), and a timestamp. We use this only to evaluate and respond to your access request.

Account and operational data

If you become a Tenura customer or design partner, we collect the data needed to operate the service: tenant identifiers, quota assignments, lease lifecycle events, audit-chain records, and contact information for the people authorized to administer your tenant. For managed cells, we also collect the metering events needed to compute capacity-seconds usage.

Site analytics

Pages on tenura.systems load Microsoft Clarity (session replay and heatmaps) and Google Analytics 4 (aggregate page views). Clarity is configured to mask form input and avoid capturing identifiable text. We use these tools to understand which pages help visitors and which don't.

How we use it

What we do with each.

Beta-form data is used to evaluate the request, send you an approval (or decline) email, and contact you if a question needs clarification.
Operational data is used to run the service: enforce quotas, mint capability tokens, generate invoices for managed cells, and produce audit records you can verify.
Analytics data is aggregated and used to improve the website and product narrative.

We do not sell or rent personal data. We do not share it with advertisers.

Subprocessors

Who else touches the data.

Cloudflare — Turnstile (anti-abuse on submission forms) and edge delivery.
Microsoft Clarity — site session analytics.
Google Analytics — aggregate site analytics.
Email provider — sending replies from beta@, info@, etc.
Cloud provider — hosting our managed cells when used. The specific provider depends on your cell.

Operational data for self-hosted Tenura installations lives on your infrastructure. We receive it only if you opt into telemetry or open a support ticket that includes it.

Your rights

Access, export, and deletion.

You can request a copy of any personal data we hold about you, ask us to correct inaccuracies, or ask us to delete it. Email privacy@tenura.systems with the address on file and we'll respond within 30 days.

Some data is retained for tax, audit, or legal-compliance reasons even after a deletion request — we'll tell you which categories and for how long.

If you're in the EU, UK, California, or any other jurisdiction with specific privacy rights, those rights apply on top of what's described here.

What we set in your browser.

We use cookies for: essential session management on signed-in pages, Cloudflare's anti-abuse signals, and the analytics tools listed above. We don't use cookies for cross-site advertising. Browser controls and "Do Not Track" signals are respected on a best-effort basis.

Updates

If this changes, we'll say so.

We'll update the date at the top when this page changes. For material changes, we'll also email customers and design partners with notice.

Questions? privacy@tenura.systems.