Tensormesh, Inc. (“Tensormesh,” “we,” “us,” or “our”) is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard information about you when you visit our website at tensorsmesh.com, use our AI compute platform, access our APIs, or engage with any of our services (collectively, the “Services”). Please read this policy carefully. If you disagree with its terms, please discontinue use of our Services.

Tensormesh is headquartered at 340 Pine Street, Suite 800, San Francisco, CA 94104, United States. We operate as a data controller for personal information collected through our website and Services, and as a data processor for customer data you submit to our platform for processing in connection with your AI workloads.

1. Information We Collect

1.1 Information You Provide Directly

When you create an account, request a product demonstration, contact us through our website, or use our Services, you may provide us with personal information including your full name, business email address, company name and size, job title and role, telephone number, billing address, and payment information (credit card numbers are processed by our payment processor and not stored on our systems). You may also provide information when completing onboarding questionnaires, submitting support tickets, participating in user research sessions, or communicating with our sales and customer success teams.

1.2 Information Collected Automatically

When you visit our website or use our Services, we automatically collect certain technical and usage information. This includes your IP address and approximate geographic location derived from it, browser type and version, operating system, device identifiers, referring URLs, pages viewed and time spent on each page, clickstream data, API request logs including endpoints called, request timestamps, response codes, and error messages, platform usage metrics including compute jobs submitted, GPU hours consumed, model types and sizes, and resource utilization patterns, and authentication logs recording login events, session durations, and access patterns.

We collect this information through server logs, cookies and similar tracking technologies, our platform instrumentation, and third-party analytics tools. See our Cookie Policy for detailed information about our use of cookies.

1.3 Information from Third Parties

We may receive information about you from third parties, including business contact databases and lead generation services that provide professional contact information, our technology partners and resellers who refer customers to our platform, identity verification services used to confirm your identity during account creation for enterprise accounts, credit reporting agencies used to assess creditworthiness for extended payment terms, and publicly available sources including LinkedIn and company websites when our sales team researches prospective customers.

1.4 Customer Data Processed on Platform

When you use the Tensormesh platform to run AI training jobs, inference workloads, or other compute tasks, you may submit datasets, model weights, code, configurations, and other data to our systems for processing. This “Customer Data” is processed on your behalf under our Data Processing Agreement (DPA), which is incorporated by reference into our Terms of Service. We process Customer Data solely to provide the Services you have contracted for and in accordance with your instructions. We do not access, use, or analyze Customer Data except as necessary to operate the platform, troubleshoot technical issues you report, or as required by law.

2. How We Use Your Information

2.1 Providing and Improving the Services

We use the information we collect to create and manage your account, authenticate your identity when you log in, process payments and manage billing, provision GPU compute resources and other platform capabilities you request, deliver technical support and customer success assistance, monitor platform performance and diagnose technical issues, detect and prevent fraud, abuse, and security incidents, develop new features and improve existing functionality based on usage patterns, and personalize your experience with recommendations and relevant content.

2.2 Communications

We use your contact information to send transactional communications including account confirmation emails, billing receipts, usage alerts, and security notifications, service announcements about planned maintenance, new feature releases, or changes to our Terms or Privacy Policy, marketing communications about Tensormesh products, research publications, industry events, and company news (you may opt out of marketing emails at any time using the unsubscribe link in each email or by contacting us at privacy@tensorsmesh.com), and responses to inquiries you submit through our website contact form or support channels.

2.3 Analytics and Research

We analyze aggregated, de-identified usage data to understand how customers use our platform, identify the most popular features and workflows, optimize resource allocation and pricing models, produce benchmarks and performance reports, and conduct research on AI infrastructure efficiency that may be published in blog posts or technical papers. This analysis does not involve identifying or profiling individual users.

2.4 Legal and Compliance Purposes

We use personal information as necessary to comply with applicable laws and regulations, respond to lawful requests from government authorities including subpoenas, court orders, and national security or law enforcement requests, enforce our Terms of Service and other agreements, protect the rights, property, and safety of Tensormesh, our customers, and the public, and resolve disputes and defend legal claims.

3. Legal Bases for Processing (EEA and UK Users)

If you are located in the European Economic Area (EEA) or the United Kingdom, we process your personal information on the following legal bases under the General Data Protection Regulation (GDPR) or UK GDPR: Contract performance — processing necessary to fulfill our contractual obligations to you, including providing the Services you have subscribed to. Legitimate interests — processing necessary for our legitimate business interests, including fraud prevention, platform security, customer analytics, and direct marketing to existing customers, where those interests are not overridden by your rights. Legal obligation — processing required by applicable law. Consent — where we have requested and obtained your specific consent, such as for certain optional marketing communications or analytics cookies. You may withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

4. Disclosure of Your Information

4.1 Service Providers

We share personal information with third-party companies that help us operate and improve our Services, including cloud infrastructure providers (our platform is hosted on AWS and GCP data centers, which process data pursuant to their own data protection commitments), payment processors (Stripe, Inc. processes credit card transactions; we do not store full payment card data), analytics services (we use tools including Google Analytics and Mixpanel for website and product analytics), customer relationship management software (Salesforce, HubSpot) used by our sales and customer success teams, email service providers (SendGrid) for transactional and marketing emails, and identity verification services for enterprise account onboarding. All service providers are contractually required to use personal information only for the purposes of providing services to us and to implement appropriate security measures.

4.2 Business Transfers

If Tensormesh undergoes a merger, acquisition, recapitalization, reorganization, sale of all or substantially all of its assets, or bankruptcy proceeding, your personal information may be transferred to the acquiring entity as part of that transaction. We will notify you by email and prominent notice on our website if such a transfer occurs and your information becomes subject to a different privacy policy.

4.3 Legal Requirements

We may disclose personal information if we believe in good faith that such disclosure is necessary to comply with a legal obligation or court order, protect the vital interests of a person, protect the rights and property of Tensormesh, or investigate, prevent, or take action regarding illegal activities, suspected fraud, or violations of our Terms of Service.

4.4 Aggregated and De-identified Data

We may share aggregated or de-identified information about our user base, platform usage patterns, and AI workload characteristics publicly or with third parties for research, marketing, and business analysis purposes. This information does not identify individual users or customers.

5. Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required by law. Specifically: account information is retained for the duration of your account and for seven years thereafter for tax and legal compliance purposes; billing records and payment information are retained for seven years; API logs and platform usage records are retained for twelve months; marketing communication preferences and opt-out records are retained indefinitely to honor your choices; website analytics data is retained in aggregated form indefinitely and in identifiable form for twenty-four months.

Customer Data processed on our platform is retained for the duration of your active subscription and deleted or returned to you within thirty days of account termination, subject to any legal hold requirements or your instructions to extend the retention period.

6. Data Security

We implement comprehensive technical and organizational security measures to protect personal information against unauthorized access, alteration, disclosure, or destruction. Our security practices include encryption of data in transit using TLS 1.2 or higher and encryption of data at rest using AES-256, network segmentation and access controls that limit access to production systems to authorized personnel, multi-factor authentication required for all employee and administrator access to systems containing personal data, regular security penetration testing and vulnerability scanning by independent security firms, SOC 2 Type II audit compliance covering security, availability, and confidentiality trust service principles, a formal incident response program with defined procedures for detecting, containing, and reporting data security incidents, and employee security training and background checks for employees with access to personal data.

No security system is impenetrable. Despite our best efforts, we cannot guarantee that personal information will never be accessed, disclosed, altered, or destroyed through a breach. If a security incident affecting your personal information occurs, we will notify you in accordance with applicable law.

7. International Data Transfers

Tensormesh is based in the United States, and your personal information may be transferred to and processed in the United States and other countries where our service providers operate. If you are located in the EEA or UK, transfers of your personal information to countries outside those regions that do not provide an equivalent level of data protection are made pursuant to Standard Contractual Clauses approved by the European Commission, our participation in the EU-US Data Privacy Framework (DPF) where applicable, or other legally recognized transfer mechanisms. You may request a copy of the relevant safeguards by contacting us at privacy@tensorsmesh.com.

8. Your Privacy Rights

8.1 Rights for All Users

Regardless of your location, you have the right to opt out of marketing emails by clicking the “unsubscribe” link in any marketing email or contacting us at privacy@tensorsmesh.com, request that we correct inaccurate personal information about you, close your account and request deletion of your account information (subject to legal retention requirements), and receive a copy of the personal information we hold about you.

8.2 Rights for EEA and UK Residents (GDPR / UK GDPR)

If you are located in the EEA or UK, you have the right to access the personal information we process about you, correct inaccurate or incomplete personal information, request erasure of your personal information where it is no longer necessary for the purposes for which it was collected, restrict processing of your personal information in certain circumstances, object to processing based on our legitimate interests, receive your personal information in a structured, machine-readable format and transmit it to another data controller (data portability), lodge a complaint with your national data protection supervisory authority, and not be subject to decisions based solely on automated processing that produce legal or similarly significant effects.

8.3 Rights for California Residents (CCPA / CPRA)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), including the right to know what personal information we collect, use, disclose, and sell; the right to delete personal information we have collected from you; the right to correct inaccurate personal information; the right to opt out of the sale or sharing of personal information (we do not sell personal information); the right to limit use of sensitive personal information; and the right to non-discrimination for exercising CCPA rights. To exercise these rights, submit a verifiable consumer request at privacy@tensorsmesh.com or call our privacy hotline at 1-800-TMESH-PVT.

9. Children’s Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected personal information from a child under 18, please contact us immediately at privacy@tensorsmesh.com and we will take steps to delete the information promptly.

10. Third-Party Websites and Services

Our website and platform may contain links to third-party websites, integration partners, and external services. This Privacy Policy applies only to information collected by Tensormesh. Third-party websites have their own privacy policies, and we encourage you to review them before submitting any personal information. We are not responsible for the privacy practices or content of any third-party sites.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by email (sent to the address associated with your account) and by posting a prominent notice on our website at least thirty days before the change takes effect. The updated policy will include the effective date at the top of the document. Your continued use of the Services after the effective date of an updated policy constitutes your acceptance of the changes. If you do not agree with the updated policy, you must discontinue use of the Services.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Privacy Team:

Tensormesh, Inc.
Attn: Privacy Team
340 Pine Street, Suite 800
San Francisco, CA 94104
United States

Email: privacy@tensorsmesh.com
Phone: 1-800-TMESH-PVT
We aim to respond to all privacy inquiries within thirty days of receipt.

For EEA and UK users, our EU Representative for GDPR purposes can be reached at eu-privacy@tensorsmesh.com. You also have the right to lodge a complaint with your local data protection supervisory authority if you are not satisfied with our response to your inquiry.