Privacy Policy

Who we are

TenorMD provides multi-source provider-feedback software. For customer organizations, the organization is the data controller and TenorMD is a processor acting on its instructions.

What we collect

• Account data — admin names, email addresses, hashed passwords.
• Program data — provider names/titles, questionnaires, review periods, and invitation contacts (email/phone).
• Responses — band selections and free-text comments, stored without any link to the reviewer or invitation that produced them.
• Operational data — logs and minimal request metadata.

How anonymity is protected

A submitted response is never associated with the invitation used to access the survey. Reports and exports show only aggregates and unattributed comments, and only after a configurable minimum number of responses. See how anonymity works.

Subprocessors

We use a small set of vendors to run the Service (hosting, email/SMS delivery, payments, error monitoring). Each is bound by a data-processing agreement and the current list is available on request. We do not sell personal data.

Retention & your rights

Data is retained for as long as an organization uses the Service. Organizations may request export or deletion of their data. Contact [email protected] for any privacy request.