BetterUs

Workplace

Back home
Trust + Privacy

Wellbeing data, handled with care.

Mood scores, recognitions, anonymous feedback — workplace wellbeing is some of the most sensitive data your team will ever produce. Here's exactly how we handle it.

Last updated: 1 May 2026Privacy PolicyTerms of ServiceSecurity detailsLive statusRequest DPA
What we collect

Just enough to make the ritual work.

We collect

Daily check-in signals

Mood, energy, stress, belonging, confidence — five sliders, 1–5 each. Optional gratitude note.

We collect

Recognitions

Sender, recipient, message, optional pillar tag. Stored as written by you.

We collect

Sparks + streaks

Counters derived from your activity. No third-party tracking, no advertising IDs.

We collect

Optional profile bits

Display name, role, email (only used for auth + nudges). You can change or clear any of these.

We collect

Anonymous feedback

Stored with NO member ID. Even our database can't tell you who sent what.

We collect

Workspace metadata

Workspace name, industry, join code, billing status. Standard SaaS stuff.

Who sees what

The single most important thing on this page.

You (the packmate)

Sees

  • All your own check-ins, mood history
  • Your sparks, streaks, badges, goals
  • All recognitions you've sent or received
  • The pack-wide leaderboard

Doesn't see

  • Other packmates' individual mood scores
  • Other packmates' anonymous feedback

Pack lead (admin)

Sees

  • Aggregated trust scores per pillar
  • Pack-wide engagement counts
  • Recognition wall (public sender + recipient)
  • Early-warning flags (e.g. inactive members)

Doesn't see

  • Individual mood scores
  • Anonymous feedback senders
  • Individual gratitude notes

Us (BetterUs)

Sees

  • Aggregate, de-identified system metrics
  • Customer support tickets (only if you write to us)

Doesn't see

  • Anonymous feedback senders
  • Individual member moods unless explicitly opted into a debug session
  • Anything we'd ever sell or share
Where + how

EU-hosted. Encrypted. Never trained on.

Data lives in the EU

Frankfurt region. GDPR-compliant. Backups encrypted at rest. We don't replicate to non-EU regions.

Encrypted in transit + at rest

TLS 1.3 in transit. AES-256 at rest. Database access restricted to two senior engineers, audited monthly.

No AI training, ever

Your data is never used to train any model — ours, OpenAI's, anyone's. We don't have the right to it, and we never will.

No selling, no sharing

We don't sell, license, share, or rent your data to anyone. No data brokers. No advertising partners. Full stop.

Your rights

It's your data. We just look after it.

Export anytime

One click in your profile downloads everything — check-ins, recognitions, sparks history. CSV or JSON.

Delete anytime

Permanent delete request: 24-hour SLA. Backups purged within 30 days. We email a confirmation when done.

Port anywhere

GDPR Article 20 — your data, in a machine-readable format, ready to take with you. Always.

The hard line

Anonymous feedback stays anonymous.

Our database doesn't store the sender's ID alongside the message. We can't identify who said what — even with a court order, we wouldn't have it. That's the architecture, by design.

Questions

Talk to a real human.

Privacy, security, GDPR, DPA requests, audit reports — write to us.

privacy@thebetterusproject.com