Privacy Policy

Effective date: May 6, 2026 · Last updated: June 4, 2026

1. Who We Are

Tendrid is an independent software developer operating at tendrid.us. Questions about this policy can be directed to tenerjenkins@gmail.com.

2. What We Collect

The information we collect depends on which product you use:

• Account information: If you create an account (e.g. for Musical Symmetry Pro), we collect your email address and a hashed password. We do not store payment card numbers — payments are processed by Stripe.
• Usage data: We may collect anonymized usage events (e.g. which features are used, session length) to improve our products. This data is not linked to your identity.
• Uploaded files: Files you upload for analysis (MIDI, MusicXML) are processed in-session and are not permanently stored on our servers.
• Cookies and local storage: Our sites use browser local storage to save preferences (e.g. selected theme, last-used settings). We do not set tracking cookies ourselves. Third-party ad networks (see below) may set their own cookies.

3. Tools and Pages With No Data Collection

The following tools run entirely in your browser and send no data to our servers:

• Yissian Translator (yissian.tendrid.us) — text input is never transmitted; all translation happens locally using a JavaScript engine.
• WikiBrain — self-hosted only; no data leaves your network.
• Brain-Tree-OS — self-hosted only; your vault stays on your machine.

4. Smart-Home Device Integration

Tendrid integrates with Google's Smart Device Management (SDM) API to provide self-hosted home automation features (camera viewing, motion detection, doorbell event handling) using Nest devices owned by the user.

Scopes accessed

When you authorize this integration via Google's OAuth consent screen, Tendrid requests access to the following Google SDM scopes:

• https://www.googleapis.com/auth/sdm.service — read device metadata, request live camera streams and snapshots, receive doorbell press and motion events for devices in your own Google account.

What we do with the data

• Live video streams are pulled from Google's SDM API directly to your self-hosted server on your home network. Streams are processed in real time by local software (object detection, motion analysis) and are not transmitted to Tendrid's servers or to any third party.
• Camera snapshots and doorbell event images are stored locally on the user's own server hardware for a user-configured retention period (typically 7–14 days), then deleted automatically.
• Device metadata (camera names, capabilities, online status) is cached locally to render the user interface and is refreshed on demand.

Where data is stored

All Nest-derived data — video, images, metadata, event logs — is stored only on the user's own server hardware. Nothing is uploaded to Tendrid's servers or to any cloud service other than the original Google SDM endpoint that delivered it.

Sharing

We do not share Nest-derived data with third parties. The OAuth grant authorizes the user's own self-hosted Tendrid instance only.

Revocation

You can revoke this integration at any time:

1. Visit https://myaccount.google.com/permissions
2. Find "Tendrid" (or the OAuth app name shown during the consent flow)
3. Click "Remove Access"

Revocation immediately invalidates the refresh token; all camera streams stop within ~1 hour as the cached access token expires. Locally stored snapshots and recordings remain on your hardware until you delete them manually or their retention period elapses.

5. Third-Party Services

• Google AdSense: Some pages display ads served by Google. Google may use cookies to serve ads based on your prior visits to this or other websites. You can opt out via Google's ad settings.
• Stripe: Subscription payments for paid tiers are processed by Stripe, Inc. Stripe's privacy policy governs data you provide during checkout. We receive only a customer token — never your full card number.
• Resend: Transactional emails (account confirmation, password reset) are sent via Resend. Your email address is shared with Resend solely for delivery purposes.
• Cloudflare: Our sites are served through Cloudflare's CDN. Cloudflare may log request metadata (IP address, browser, timestamp) for security and performance purposes per their privacy policy.

6. How We Use Your Data

• To provide and maintain our services
• To send transactional emails you request (account confirmation, receipts)
• To process subscription payments via Stripe
• To understand how products are used and improve them
• To comply with legal obligations

We do not sell your personal data. We do not share it with third parties except as described above.

7. Data Retention

Account data is retained for as long as your account is active. You may request deletion at any time by emailing tenerjenkins@gmail.com. Anonymized usage data may be retained indefinitely. Uploaded files processed for analysis are deleted within 24 hours of the session ending.

8. Your Rights

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Request deletion of your data
• Object to or restrict processing of your data
• Data portability (receive your data in a machine-readable format)

To exercise any of these rights, contact us at tenerjenkins@gmail.com. We will respond within 30 days.

9. Children's Privacy

Our services are not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this policy from time to time. The "last updated" date at the top of this page will reflect any changes. Continued use of our services after changes constitutes acceptance of the revised policy.

11. Contact

For privacy-related questions or requests: tenerjenkins@gmail.com