Skip to main content
pulse
Talk to founder
Legal

The paperwork, in plain language.

Every contract, policy, and disclosure that governs how Pulse handles your team’s data. Written in language a human can read; the formal contract text lives under each link.

Terms of service

The contract between you and Pulse. Acceptable use, billing terms, IP ownership, termination.

Privacy policy

What we collect, how we use it, who we share with (we don't sell data), how long we keep it, your rights under GDPR/CCPA.

Data processing agreement

GDPR Article 28 contract for customers in the EU/UK or those processing EU data. Sub-processor list, retention, deletion, security commitments.

Sub-processor list

Every third-party service Pulse uses to process customer data: Supabase (Postgres), Vercel (hosting), Anthropic + OpenAI (LLM), Resend (email). Versioned in git so changes leave a paper trail.

Security posture

The security controls in audit order: audit log, encryption at rest + in transit, ACL mirroring, capability scopes, per-agent read-scope enforcement, BYOK, SSO/SCIM, disaster recovery target.

No-surveillance pledge

Pulse is not built to surveil employees. Concrete commitments: no productivity scores or rankings for individuals, no screen or keystroke monitoring, no per-person sentiment (team-level only, with a five-sender floor). Work context on a person's page is visible to every member equally, including the person. Managers see a metrics-free work-state briefing, scoped to what they can already access.