Last updated: March 20, 2026
TeamWeaver, Inc. ("TeamWeaver," "we," "us," or "our") operates the TeamWeaver platform, a business-to-business (B2B) team collaboration analytics service. This Privacy Policy describes how we collect, use, disclose, and protect information when you use our platform, website, and related services (collectively, the "Service").
TeamWeaver is designed as a mirror, not a scorecard. We measure team-level collaboration patterns grounded in peer-reviewed research. We do not monitor individuals, score productivity, or compare team members against each other.
We collect different categories of information depending on how you interact with the Service.
When you create an account, we collect your name, email address, and authentication credentials (password hash or OAuth tokens). If you sign in via Google or Microsoft, we receive your profile information as authorized during the OAuth flow.
Organization administrators provide organizational structure information including team names, member names, roles, and reporting relationships. This may be entered manually, uploaded via CSV, or synchronized from an HRIS provider (BambooHR, Rippling, Gusto, or Workday).
When your organization connects third-party services, we access the following data:
Communication data is processed to extract behavioral signals and is not stored permanently in its raw form. See Section 2 for details on how this data is processed.
We collect information about how you use the Service, including pages visited, features used, analysis runs, and API calls. This data is used to maintain and improve the Service.
If your organization uses TeamWeaver's survey feature, we collect anonymous survey responses. Free-text responses are encrypted at rest using AES-256-GCM. Responses are de-identified and aggregated at the team level with k-anonymity protections — team breakdowns are suppressed when the number of responses falls below the minimum threshold.
TeamWeaver uses a five-stage pipeline to transform raw communication data into team-level insights:
Raw message content is not stored permanently. Message text is held in memory during pipeline processing to extract behavioral features (such as question frequency, trust language indicators, and cognitive diversity markers). Once signal extraction is complete, raw content is discarded. Only the resulting numerical signal values and aggregated metrics are retained.
All insights are produced at the team level. Individual names are never included in insights, recommendations, or briefings. Where individual patterns are referenced, they are anonymized (e.g., "one person on your team").
TeamWeaver uses artificial intelligence for signal extraction, classification, and insight generation. Our AI architecture operates across four tiers:
Your data is never used to train AI models.
All AI processing is inference only. We use OpenAI and Azure OpenAI APIs with data processing agreements that contractually prohibit the use of customer data for model training. Your communication data, behavioral signals, and organizational information are never used to train, fine-tune, or improve any AI models.
AI processing is subject to per-organization budget controls. Organizations can set daily and monthly spending limits, and all AI usage is tracked and auditable.
We retain different types of data for different periods:
| Data Type | Retention Period |
|---|---|
| Account information | Until account deletion |
| Organization structure | Until organization deletion |
| Raw message content | Not stored — processed in memory, then discarded |
| Behavioral signals and analysis results | Per plan: 30 days (Free), 12 months (Pro), unlimited (Enterprise) |
| OAuth tokens | Until integration disconnected or token revoked |
| AI usage records | 90 days |
| Survey responses (encrypted) | Until survey archived or organization deleted |
| Audit logs | 12 months |
When data is deleted, it is permanently removed from our active systems. Encrypted backups are purged within 30 days of deletion.
We implement industry-standard security measures to protect your data:
Depending on your jurisdiction, you may have the following rights regarding your personal data:
You can request a copy of all personal data we hold about you. The Service provides a self-service data export feature available in Settings > Privacy. This export includes your profile information, organization memberships, and chat conversation history.
You can delete your account at any time through Settings > Privacy. Account deletion permanently removes your user profile, revokes all active sessions, and deletes your chat conversation history. Organizational data (team structures, analysis results) is retained under the organization administrator's control.
The data export feature provides your data in a structured, machine-readable JSON format that you can take to another service.
You can update your profile information at any time through the Service. Contact your organization administrator to correct organizational data.
Organization administrators can disconnect integrations at any time, immediately stopping data collection from that source. Individual team members who have concerns about data processing should contact their organization administrator.
TeamWeaver is a business-to-business service. Your organization's administrator controls data collection and processing on behalf of the organization. For questions about how your organization uses TeamWeaver, please contact your organization administrator. For requests that your administrator cannot fulfill, contact us directly at privacy@teamweaver.ai.
We use the following third-party services to operate the platform:
| Service | Purpose | Data Shared |
|---|---|---|
| Azure OpenAI / OpenAI | AI classification and insight generation | Message content (for classification), signal data (for insight generation). Not used for model training. |
| Microsoft Azure | Cloud infrastructure and hosting | All Service data (encrypted at rest) |
| Stripe | Payment processing | Billing information. TeamWeaver does not store credit card numbers. |
| Sentry | Error monitoring | Error reports with sanitized metadata. No message content or PII. |
We require all third-party service providers to maintain appropriate security measures and to process data only as instructed by us.
The Service is hosted in the United States on Microsoft Azure infrastructure. If you access the Service from outside the United States, your data will be transferred to and processed in the United States.
For users in the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on Standard Contractual Clauses approved by the European Commission as the legal mechanism for data transfers. Our third-party service providers maintain appropriate transfer mechanisms for international data flows.
The Service is designed for business use and is not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under 16, we will take steps to delete that information promptly.
We may update this Privacy Policy from time to time. When we make material changes, we will notify affected users by email and update the "Last updated" date at the top of this page. We encourage you to review this policy periodically.
Continued use of the Service after changes to this policy constitutes acceptance of the updated terms.
If you have questions about this Privacy Policy or our data practices, please contact us:
We will respond to privacy-related inquiries within 30 days.
FAQ · How It Works · Sign In