Back to Home
Security & Compliance

Privacy Policy

How we protect, structure, and respect the privacy of academic portfolios and researcher profiles.

Last updated: May 25, 2026GDPR & CCPA Aligned

1. Our Academic Commitment

At Tenure, we are committed to providing professors, researchers, and graduate students with a secure platform to showcase their research, teaching portfolios, and professional achievements. We design our platform to collect the minimum necessary data to host and optimize your portfolio website.

We believe in research transparency and researcher autonomy, meaning you remain the sole owner of all CVs, syllabi, publications, and profiles you upload.

2. Information We Collect

Account Credentials

Your registration email, encrypted password, university affiliation, and unique username used to map your public URL directory.

Academic Portfolio Content

Uploaded publication PDFs, course syllabi, presentation slides, profile photos, CV document files, and business card preferences.

Billing & Payment

All subscription and payment data is collected, handled, and processed securely by Stripe. We do not store raw credit card details on our servers.

Metadata & DOI Inputs

Information queried from public sources (such as Crossref or ORCID) when resolving Digital Object Identifiers (DOIs) for publication importing.

3. Data Security & Storage

Your personal information and uploaded files are protected by Row-Level Security (RLS) policies implemented on Supabase. Uploads (CVs, syllabi, publications) are hosted in isolated cloud storage environments matching user-specific directories.

All data transmission uses HTTPS/TLS encryption. We regularly audit and test code paths for security issues to defend against CSRF, SSRF, XSS, and authorization bypass.

4. GDPR, Data Access & Deletion (Your Rights)

We comply fully with GDPR guidelines. You have complete control over your academic data, including:

  • The Right to Access & Portability: You can view all profile and publication metadata compiled on your personal dashboard.
  • The Right to Rectification: You can edit any bio, news post, book, or affiliation fields instantly.
  • The Right to Erasure (GDPR Account Deletion): You can completely delete your account at any time in your Account Settings. This wipes all record rows, profiles, and associated file uploads permanently from our database.

If you have any questions about this Privacy Policy, your academic portfolio data, or want to submit feedback, please email support@tenure-app.com.