Skip to content

Privacy

Privacy Statement

A practical summary of the data EvenTier processes to run internal operations workflows, billing, support, security, and optional self-hosted telemetry.

Last updated · June 15, 2026 · subject to signed agreement terms

01

Scope

This privacy statement explains how EvenTier handles information processed through the managed SaaS product, public website, support interactions, billing flows, and optional self-hosted telemetry.

Customer organizations control the request content, user records, attachments, comments, approvals, knowledge articles, audit records, and integration data they place in their workspace.

02

Information We Process

EvenTier processes account information such as names, email addresses, roles, organization membership, authentication settings, MFA status, and profile preferences.

Workspace data may include request titles, descriptions, comments, attachments, tags, form responses, approvals, time entries, knowledge content, audit events, notification settings, and integration metadata.

Billing and commercial records may include plan, subscription, seat counts, Stripe customer identifiers, invoices, trial dates, contract values, and support records.

03

How We Use Information

We use information to provide the product, authenticate users, route internal work, deliver notifications, support integrations, secure the service, provide support, operate billing, and improve reliability.

AI features may use request or knowledge content to generate summaries, suggested replies, and search results when enabled by the workspace. Self-hosted customers can use their own provider or disable AI.

04

Security and Retention

EvenTier uses role-based access control, tenant scoping, secure cookies, MFA options, audit logging, encrypted stored secrets, upload restrictions, and operational monitoring to protect workspace data.

Retention depends on the plan and workspace configuration. SaaS audit retention is plan-based; self-hosted deployments control their own retention. Organizations can export or erase user data where supported by product workflows.

05

Subprocessors and Integrations

EvenTier may connect to configured services such as Stripe, SMTP providers, inbound email handlers, Slack, Microsoft Teams, S3-compatible storage, AI providers, and webhook destinations.

Customer administrators decide which integrations to enable and are responsible for configuring those systems appropriately.

06

Product Usage Analytics

On the cloud edition, EvenTier collects first-party product usage analytics from signed-in users by default: which pages and features are used, by which account, and when. Identifiers in recorded paths are normalized away, and events never include request content, comments, attachments, or free text. This data is stored on EvenTier's own infrastructure, is never shared with or sold to third parties, and is used solely to operate and improve the product.

Workspace administrators can turn usage analytics off at any time in Admin settings; collection stops immediately. Self-hosted deployments never collect product usage analytics. This is separate from the optional website analytics cookie, which applies only to the public website and always requires opt-in consent.

07

Self-Hosted Telemetry

Self-hosted deployments can optionally enable anonymized license telemetry. Telemetry may include license key id, fingerprint, organization slug, plan code, expiry, agent count, monthly request count, product version, and grace-period state.

Telemetry does not include request bodies, comments, attachments, or per-user content, and customer administrators can disable it.

08

Your Rights

Where applicable law grants them (including under the GDPR and CCPA), data subjects can request access to, correction of, or erasure of their personal data. EvenTier supports these through documented product workflows: a GDPR Article 15 data subject access export and an Article 17 erasure with a proof record. In most cases the workspace administrator is the controller and the first point of contact; EvenTier acts on their instructions.

To exercise a right or raise a concern you cannot resolve with your workspace administrator, contact us using the details below.

09

Contact

For privacy or data-protection questions, including data subject and DSAR requests, email hello@eventier.io. For security-specific reports, security@eventier.io. This public statement is provided for product transparency and should be paired with the signed customer agreement for contractual terms.

Need contractual detail or a signed addendum?

This summary is the public reference. Customers on annual agreements get the signed customer agreement, DPA, security addendum, and order form through their account team.