Security & Trust
Built to handle your customers' data properly.
Your leads and conversations are sensitive. Here is exactly how Tend protects them, in plain language, with nothing overstated.
Your data is isolated
Tend is multi-tenant by design. Every record is scoped to your agency and checked on every request, so one agency can never see another's leads, listings or conversations.
Encrypted in transit and at rest
All traffic runs over HTTPS. Data is stored in an encrypted database, and your credentials, like your WhatsApp tokens, sit in a managed secrets store, encrypted and never exposed in our application.
Access control and roles
Logins are role based. Owners, admins and agents each see only what their role allows, and an agent login can be scoped to just their own conversations and listings.
WhatsApp done by the rules
Tend follows Meta's WhatsApp Business policies. We capture opt-in, honour opt-out keywords in English and Arabic, and respect the 24 hour customer-care window. You connect through your own number on Meta's official Cloud API.
Your data, your rights
Export your leads and conversations whenever you want, and request deletion of a contact's data. We keep personal data only as long as it is needed to run the service for you.
Reliable by design
Tend runs on AWS with automated database backups and point-in-time recovery. Inbound messages are de-duplicated, so a customer is never handled twice.
Data residency
Tend currently runs on AWS in the EU (Ireland) region, a GDPR-grade jurisdiction recognised for cross-border data transfer. Moving to the AWS UAE region is on our roadmap. We are happy to walk through the data-handling details for your agency during a demo.
Have a security or compliance question? Email hello@tend.ae or raise it during your demo.