‍

Privacy Policy

Introduction

Salv AI, Inc., doing business as Tenzo AI ("Tenzo AI," "we," "us," or "our"), is committed to protecting privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you use the Tenzo AI platform for interviews, screening, and identity verification ("Services"), and when you visit our websites.

This policy is designed to reflect how Tenzo AI typically operates in Employer hiring workflows, where the Employer is the controller and Tenzo AI acts as a processor or service provider.

1. Scope and Applicability

1.1 What this policy covers

This policy covers personal information processed in these contexts:

1. Candidate workflows on behalf of an Employer: Interviews, screening, and identity verification conducted through Tenzo AI as part of an Employer hiring process.
2. Website and communications: Visits to our websites (including www.tenzo.ai and www.salvai.ai) and communications with us (support, security inquiries, or general business communications).

1.2 What this policy does not cover

This policy does not cover:

1. The Employer's own privacy practices for hiring decisions, retention, and downstream use of your candidate record. The Employer's privacy policy and notices govern those practices.
2. Tenzo AI employee or contractor data, which is governed by separate internal policies.

2. Roles, Controller Information, and Contact

2.1 Candidate workflows (Employer is controller)

When Tenzo AI provides Services as part of an Employer's hiring workflow:

• The Employer is typically the data controller (or equivalent) for candidate personal information and hiring records.
• Tenzo AI processes personal information as a processor or service provider on behalf of the Employer, under a contract.

2.2 Website and communications (Tenzo AI may be controller)

For our websites and certain direct communications, Tenzo AI may act as a controller for that information.

2.3 Contact

Salv AI, Inc. (dba Tenzo AI)
425 California St, Suite 410
San Francisco, CA 94104
United States
Email: privacy@tenzo.ai

3. Information We Collect

The information we collect depends on how you interact with Tenzo AI.

3.1 Candidate workflows on behalf of an Employer

Depending on the Employer's configuration, we may collect or process:

1. Identifiers and contact information: Name, email, phone number, and other identifiers the Employer provides or you submit.
2. Interview content: Audio and or video recordings, transcripts, text responses, and documents you submit.
3. Identity verification information (if enabled): Images of identity documents, selfies or video selfies, and verification results.
4. Technical and usage data: Device type, browser type, operating system, IP address, timestamps, logs, and session metadata.
5. Automated outputs: Summaries, structured notes, rubrics, scoring outputs, and related evaluations generated by the platform based on the Employer's configuration.
6. Biometric data (where enabled): Biometric identifiers (such as voiceprint or scan of face geometry) and biometric information as defined by applicable law, including Illinois BIPA, when the Employer enables biometric-based features.

3.2 Website and communications

We may collect:

1. Contact details: When you contact us, including support inquiries.
2. Log and usage data: IP address, browser type, operating system, pages visited, referral URLs, and timestamps.
3. Cookies and similar technologies: As described in Section 3.3.

3.3 Cookies and similar technologies

We use cookies and similar technologies for core site functionality, security, and to understand basic usage of our websites. Where required, we provide cookie controls through a banner or settings. You can also manage cookies through your browser settings.

4. How We Use Information

4.1 Candidate workflows on behalf of an Employer

We use information to:

1. Provide, operate, and support the Employer's interview, screening, and identity verification workflows.
2. Generate transcripts, summaries, structured evaluations, and other outputs configured by the Employer.
3. Detect and prevent fraud, misuse, and security incidents.
4. Troubleshoot technical issues and improve reliability and performance.
5. Improve the platform, including in de-identified or aggregated form where feasible and appropriate.

4.2 Website and communications

We use information to:

1. Operate and secure our websites.
2. Respond to inquiries and provide support.
3. Maintain logs for security and performance monitoring.

5. How We Disclose Information

We do not sell personal information.

We disclose information only as needed to provide and protect the Services, including:

1. To the Employer: We provide interview results, outputs, and related information to the Employer that is running the workflow.
2. To service providers and subprocessors: We use vetted vendors to support hosting, security, analytics (where used), communications (such as SMS or email delivery), and identity verification (where enabled). These vendors are restricted to using information only to provide services to Tenzo AI, and only to the extent needed for those services.
3. For legal and safety reasons: We may disclose information if required by law or legal process, or to protect the rights, safety, and security of Tenzo AI, the Employer, candidates, or others.
4. Business transfers: If Tenzo AI is involved in a merger, acquisition, financing, reorganization, or sale of assets, information may be transferred as part of that transaction, subject to appropriate safeguards.

6. Data Minimization

We limit collection, use, disclosure, and retention to what is necessary to provide the Services, protect the platform, and comply with law.

7. Data Retention

7.1 Candidate workflows on behalf of an Employer

For candidate workflows, retention is primarily controlled by the Employer and our contract with the Employer. Tenzo AI retains candidate workflow data only as needed to provide the Services, maintain security and integrity, and comply with legal obligations, and consistent with Employer instructions.

7.2 Website and communications

Website logs and communications may be retained for a limited period for security, support, and operational needs.

7.3 Illinois BIPA Biometric Data Retention and Destruction Policy

This Section 7.3 applies where Tenzo AI is in possession of biometric identifiers or biometric information subject to the Illinois Biometric Information Privacy Act ("BIPA"), 740 ILCS 14.

Public written policy
Tenzo AI maintains this written policy, made available to the public, establishing a retention schedule and guidelines for permanently destroying biometric identifiers and biometric information.

No sale or profit
We do not sell, lease, trade, or otherwise profit from biometric identifiers or biometric information.

Retention schedule
We retain biometric identifiers and biometric information only as long as necessary to fulfill the specific purpose disclosed at the time of collection or obtainment. We will permanently destroy biometric identifiers and biometric information when the initial purpose for collecting or obtaining the data has been satisfied or within 3 years of the individual's last interaction with Tenzo AI, whichever occurs first.

For this section, "last interaction" means the last time you access or use a Tenzo AI interview, screening, or identity verification flow.

Destruction guidelines
When biometric identifiers or biometric information reach the end of the retention period above, we will permanently destroy them using commercially reasonable methods appropriate to the medium and system, which may include secure deletion from active production systems, cryptographic erasure where applicable, and deletion through our normal backup lifecycle. Absent a valid warrant or subpoena issued by a court of competent jurisdiction, we will comply with this retention schedule and these destruction guidelines.

Disclosure limits
We do not disclose, redisclose, or otherwise disseminate biometric identifiers or biometric information except as permitted by law, including with your consent, to complete a transaction you authorize, when required by law, or pursuant to a valid warrant or subpoena.

Security
We store, transmit, and protect biometric identifiers and biometric information using a reasonable standard of care within our industry and in a manner that is the same as or more protective than the way we protect other confidential and sensitive information.

Conflict rule
If retention periods elsewhere in this policy would be longer than the period permitted by this Section 7.3 for biometric identifiers or biometric information, this Section 7.3 controls for biometric data.

8. Security

We use administrative, technical, and physical safeguards designed to protect personal information. No system can be guaranteed 100 percent secure.

9. Your Privacy Rights and Requests

9.1 Candidate workflows (requests generally go to the Employer)

Because the Employer is typically the controller for candidate data in Employer workflows, requests to access, correct, delete, or otherwise exercise privacy rights regarding your candidate record should be submitted to the Employer.

If you submit a request directly to Tenzo AI regarding an Employer workflow, Tenzo AI will either:

1. Act on behalf of the Employer in accordance with the Employer's instructions, or
2. Inform you that the request cannot be acted upon because it was sent to a service provider and should be directed to the Employer.

9.2 Website and communications

For information Tenzo AI controls as a controller (for example, certain website logs or direct communications), you may contact us at privacy@tenzo.ai with your request.

10. International Data Transfers

Personal information may be processed in countries outside your place of residence. Where required, transfers are protected using lawful mechanisms (for example, Standard Contractual Clauses) under our agreements with Employers and vendors.

11. EU AI Act Transparency (for EEA users)

Where the EU AI Act applies:

1. Tenzo AI systems intended to interact directly with natural persons are designed so that you are informed that you are interacting with an AI system, unless obvious from context.
2. Tenzo AI provides outputs that may assist Employers in recruitment and evaluation workflows. Employers may have obligations as deployers of high-risk AI systems in employment and recruitment contexts, including informing individuals they are subject to the use of a high-risk AI system.
3. Certain affected persons may have a right to obtain from the Employer clear and meaningful explanations of the role of the AI system in decision-making and the main elements of decisions in applicable cases.

12. Children’s Privacy

The Services are not directed to children under 18, and we do not knowingly collect personal information from children under 18 in the context of our Services.

13. Changes to This Policy

Last updated: November 13, 2025

We may update this Privacy Policy from time to time. We will update the "Last updated" date when changes are posted. Material changes may be communicated through additional notices where appropriate.

14. Contact Us

If you have questions or concerns about this Privacy Policy, contact us:

Email: privacy@tenzo.ai
Salv AI, Inc. (dba Tenzo AI)
425 California St, Suite 410
San Francisco, CA 94104
United States

‍