Data Deletion Instructions

1. Overview

Tenlo AI Inc. (“Tenlo”, “we”, “our”) respects your right to control your data. This page explains how to disconnect third-party accounts and request deletion of data Tenlo stores about you, your business, your connected accounts, or content processed through the Services.

For the full data-handling policy, see the Tenlo Privacy Policy. For contractual terms, see the Tenlo Terms of Service.

Deletion requests can be sent to privacy@tenloai.com.

2. What Tenlo may store

When you connect a third-party account or use the Services, Tenlo stores only the information needed to provide, secure, support, and administer the Services. Depending on the product you use, this may include:

• Connected-account identifiers, such as Google Business Profile location IDs, Facebook Page IDs, mailbox addresses, CRM account IDs, or scheduling-account IDs.
• Encrypted access and refresh tokens used to access authorized third-party accounts.
• Google Business Profile listing data, reviews, review replies, and location metadata.
• Meta/Facebook Page review data.
• Gmail or Microsoft 365 outbound message metadata, send status, bounce data, unsubscribe data, and reply data related to outreach sent through Tenlo.
• CRM contacts, companies, deals, lead records, and activity records imported or synced from HubSpot, Pipedrive, or similar systems.
• Prospect lists and review-request recipient lists uploaded by a Customer.
• Chat transcripts, lead qualification answers, support chatbot conversations, booking records, and lead scores.
• Customer-provided knowledge base content, brand voice examples, prompts, settings, workflows, and automation rules.
• AI-generated drafts, summaries, classifications, recommendations, and approved sends.
• Usage logs, security logs, billing records, support messages, suppression records, and audit records.

Tenlo does not intentionally store your personal social-network profile, friend list, personal photos, private social messages, Google Drive files, Google Photos, Google Calendar, or Google Contacts unless a future product expressly requests that access and the Privacy Policy is updated.

3. Ways to delete or disconnect data

You have three main options. Use whichever is easiest.

Option 1 — Disconnect from within Tenlo

Sign in at app.tenloai.com and open the product dashboard that uses the connected account. Click Disconnect or Remove next to the relevant connection.

Common locations:

• Google Business Profile — Reputation AI dashboard, Connections section.
• Facebook Page — Reputation AI dashboard, Connections section.
• Gmail or Microsoft 365 mailbox — Sales Outreach dashboard, Email Account or Sending Account card.
• HubSpot or Pipedrive — Sales Outreach or Sales Assistant dashboard, CRM Integration card.
• Calendly or other scheduling tool — Sales Assistant dashboard, Widget Configuration or Scheduling card.

Disconnecting stops Tenlo from fetching new data from that account. It also revokes or clears the access token in Tenlo’s systems. Some third-party platforms may also require you to remove Tenlo from the platform’s own connected-app settings.

Disconnecting does not always delete content Tenlo already fetched before disconnect. To delete already-fetched content, use Option 3.

Option 2 — Remove Tenlo from the third-party platform

You can revoke Tenlo’s access directly from the platform that issued access:

• Google — Go to myaccount.google.com/permissions, find Tenlo, and remove access.
• Microsoft — Go to your Microsoft account privacy or apps-and-services settings and remove Tenlo.
• Facebook — Go to Settings and Privacy, then Apps and Websites, find Tenlo AI, and remove access.
• HubSpot or Pipedrive — Open the CRM’s connected-apps or integrations settings and remove Tenlo.
• Calendly or another scheduling tool — Open that platform’s integrations or connected-apps settings and remove Tenlo.

After revocation, Tenlo can no longer fetch new data from that account. To delete content already fetched by Tenlo, use Option 3.

Option 3 — Email Tenlo to delete already-fetched data

To request deletion of data Tenlo already stores, email privacy@tenloai.com from the email address associated with your Tenlo account.

Please include:

• Your name.
• Your business name.
• The email address associated with your Tenlo account.
• The product or connection involved, such as Google Business Profile, Gmail, Microsoft 365, Facebook Page, HubSpot, Pipedrive, or Sales Assistant.
• The connected account name or ID, such as a Google Business Profile location name, Facebook Page name, mailbox address, or CRM account name.
• Whether you want to delete only one connected account’s data or close and delete the entire Tenlo account.

We will confirm receipt within 5 business days. We aim to complete deletion from production systems within 30 days after verifying the request, unless a longer period is required or permitted by law.

We may need to verify your identity and authority before deleting business account data.

4. What gets deleted

The data deleted depends on the request and the product involved.

Where deletion from production systems is completed, encrypted backups may retain deleted data for up to 30 additional days before being overwritten.

5. Deletion timing by data type

6. Google user data deletion

Google user data has a shorter deletion timeline than Tenlo’s general account-retention period.

If you revoke Tenlo’s Google OAuth access, disconnect Google Business Profile, disconnect Gmail, or finally cancel the relevant Tenlo subscription, Tenlo deletes Google user data from production systems within 30 days unless law requires retention.

Google user data may remain in encrypted backups for up to 30 additional days before being overwritten.

You can revoke Google access at any time at myaccount.google.com/permissions.

7. Data that may be retained

Tenlo may retain limited information where required or permitted by law, contract, security needs, abuse prevention, accounting, or compliance obligations.

Examples include:

• Billing, tax, invoice, and payment records.
• Security logs, abuse logs, and audit logs.
• Legal hold records or records needed for a dispute.
• Minimal deletion-request audit records, such as timestamp, requester email, connected-account identifier, request method, and completion status.
• Per-Customer unsubscribe and suppression records needed to honor opt-out requests.
• Global complaint and abuse records for hard bounces, repeated spam complaints, known abuse signals, and sender-reputation protection.
• Aggregated or de-identified analytics that no longer identify an individual.

Tenlo may retain a minimal audit record of a deletion request for up to 12 months, unless a longer period is required or permitted by law. This audit record does not contain review text, message body content, CRM notes, or chat transcripts.

Unsubscribe and suppression records may be retained as long as needed to honor CASL, anti-spam, sender-reputation, and abuse-prevention obligations, as described in Section 13 of the Tenlo Privacy Policy.

8. Account cancellation vs. data deletion

Cancelling a subscription stops future billing and ends access at the end of the billing period, but it is not always the same as an immediate deletion request.

After cancellation or final suspension, Tenlo may retain Customer Data for up to 90 days to allow reactivation, export, billing reconciliation, support, and account closure. After that period, Customer Data is deleted from production systems unless law requires retention.

Google user data is deleted from production systems within 30 days after OAuth revocation or final cancellation of the relevant subscription, whichever comes first.

If you want earlier deletion, email privacy@tenloai.com and request deletion.

9. Recipient and end-customer requests

If you received a message from a Tenlo Customer, the Customer is usually the sender and the organization responsible for your contact information and consent relationship.

You may:

• Use the unsubscribe link in the message.
• Reply with an unsubscribe request if the message supports replies.
• Contact the sender directly.
• Email privacy@tenloai.com if you cannot identify the sender or need help routing the request.

Tenlo processes unsubscribe requests without delay and in any event within 10 business days where CASL applies. Tenlo may retain suppression records to ensure you are not re-contacted by the same Customer through the Services.

If you request deletion of personal information held by a Tenlo Customer, Tenlo may need to forward or route the request to that Customer unless Tenlo independently controls the relevant information.

10. Verification and authorized requests

To protect Customer accounts and personal information, Tenlo may ask for information needed to verify:

• Your identity.
• Your relationship to the Customer account.
• Your authority to request deletion for a business account.
• The specific connected account or data set involved.

If Tenlo cannot verify the request, we may ask for more information or decline to delete the data until verification is complete.

11. Response timeline

Tenlo aims to:

• Confirm receipt of deletion requests within 5 business days.
• Complete verified deletion requests from production systems within 30 days, unless law permits or requires more time.
• Notify you if we need more information, cannot verify your authority, cannot delete specific records, or must retain specific records for legal or operational reasons.

Backups may retain deleted data for up to 30 additional days before being overwritten.

12. Contact

Tenlo AI Inc.
PO BOX 10004, Uxbridge RPO Elgin Park, ON, L9P 0B1
Canada

• privacy@tenloai.com (deletion and privacy requests)
• support@tenloai.com (security incidents)
• hello@tenloai.com (legal inquiries and general)