Tether - Privacy Policy
Effective Date: December 5, 2025
Last Updated: January 16, 2026
Version: 1.1
1. Introduction
This Privacy Policy describes how Tether ("Service"), operated by Mixed Beans Studio Inc. ("we," "us," or "our"), collects, uses, and shares your information.
Tether is operated by Mixed Beans Studio Inc., a corporation organized under the laws of British Columbia, Canada, with its registered address at 329 Howe St, Unit #830, Vancouver, BC V6C 3N2, Canada. For purposes of data protection law, Mixed Beans Studio Inc. is the "data controller" of your personal data when you use the Service.
We are committed to protecting your privacy and handling your data transparently. Please read this policy carefully to understand our practices.
2. Information We Collect
2.1 Information You Provide
Account Information:
- Email address
- Password (securely hashed using industry-standard algorithms; we never store your password in plain text and cannot view or retrieve it)
- Name
- Referral source (how you found us)
Payment Information:
- Payment method details (processed and stored by Stripe; we store only card type, last four digits, and expiration date for display purposes)
- Billing address
- Transaction history
Connected Destinations:
- LINE: user ID and access tokens
- Telegram: username and chat ID
- Email: forwarding email addresses
- Slack: workspace and webhook configuration
- Discord: server and webhook configuration
- Webhook: custom endpoint URLs
Two-Factor Authentication (if enabled):
- Authentication secrets (encrypted)
- Recovery codes (encrypted)
Verification Documents (if required for certain countries):
- Government-issued ID
- Proof of address
- Business registration documents
Verification documents may be shared with our telecommunications providers (Telnyx, Bird, Infobip, and others) as required to activate phone numbers in regulated countries.
2.2 Information Collected Automatically
Service Usage Data:
- Phone numbers purchased
- Message metadata (sender number, recipient number, timestamp)
- Delivery status and timestamps
- Feature usage patterns
Message Content (Temporary):
- SMS message content is temporarily stored on our servers solely for the purpose of forwarding to your destinations
- Message content is deleted after successful delivery to all configured destinations
- See Section 4 for full details on message handling
Technical Data:
- IP address
- Browser type and version
- Device information
- Operating system
- Server logs (access times, request data)
Cookies:
- Session cookies only (required for login and authentication)
- We do not use analytics cookies (see Section 10)
2.3 Information from Third Parties
Telecommunications Providers (Telnyx, Bird, Infobip, and others):
- Incoming SMS metadata
- Phone number status
- Porting information
Payment Processor (Stripe):
- Payment confirmation
- Subscription status
3. How We Use Your Information
We use your information to:
3.1 Provide the Service
- Create and manage your account
- Process phone number purchases
- Forward SMS messages to your destinations
- Process payments and manage subscriptions
3.2 Communicate With You
- Send service notifications (usage alerts, payment confirmations)
- Respond to support requests
- Send important updates about the Service
3.3 Improve the Service
- Analyze usage patterns to improve features
- Debug issues and ensure reliability
- Develop new features
3.4 Protect the Service
- Detect and prevent fraud
- Enforce our Terms of Service
- Comply with legal obligations
3.5 Legal Bases for Processing (GDPR)
For users in the European Economic Area, we process data based on the following legal bases:
| Purpose | Legal Basis |
|---|---|
| Providing the Service | Contract performance |
| Processing payments | Contract performance |
| Sending service notifications | Legitimate interests |
| Marketing communications | Consent |
| Security and fraud prevention | Legitimate interests |
| Legal compliance | Legal obligation |
4. Message Content Handling
4.1 Our Commitment
We do not:
- Read, analyze, or mine the content of your messages
- Use message content for advertising or profiling
- Share message content with third parties (except for delivery)
- Store message content after successful delivery
4.2 Message Flow
- Message arrives from sender via our telecommunications provider
- Our system routes the message to your destination(s)
- Message is delivered to LINE/Telegram/Email/Slack/Discord
- On success: Message content is deleted from our systems
- On failure: Message content is retained temporarily for retry attempts, then deleted after successful delivery or after retry attempts are exhausted
4.3 Temporary Processing
Message content may be temporarily held in memory or queue during:
- Processing and routing
- Retry attempts for failed deliveries
- Brief system buffering
This temporary data is automatically purged and not retained.
4.4 Message Metadata
We retain message metadata (sender, recipient, timestamp, delivery status) for:
- Troubleshooting delivery issues
- Usage tracking and billing
- Service quality monitoring
Because we do not retain message content after successful delivery, we are generally unable to provide message content in response to legal or law enforcement requests. We may, however, provide message metadata where required by law.
5. Data Retention
| Data Type | Retention Period |
|---|---|
| Account information | Duration of account, plus a reasonable period after deletion |
| Payment records | As required by law for tax and accounting purposes |
| Message metadata | As needed for service operation, troubleshooting, and billing |
| Message content | Not retained after successful delivery |
| Verification documents | Duration of account, plus any period required by regulations |
| Support communications | As needed to provide ongoing support |
We retain data only as long as necessary to provide our services and fulfill the purposes described in this policy, unless a longer retention period is required by law.
6. How We Share Your Information
6.1 Service Providers
We share data with third parties who help us operate the Service:
| Provider | Purpose | Data Shared |
|---|---|---|
| Telnyx, Bird, Infobip, and others | Telecommunications | Phone numbers, SMS routing |
| Stripe | Payment processing | Payment details, billing info |
| LINE | Message delivery | User ID, message content |
| Telegram | Message delivery | Chat ID, message content |
| Slack | Message delivery | Webhook URL, message content |
| Discord | Message delivery | Webhook URL, message content |
| Email providers | Message delivery | Email address, message content |
| Hosting providers | Infrastructure | Data as needed to operate the Service |
These providers process personal data either on our behalf as service providers (processors) or as independent controllers for their own services. Your use of services such as our telecommunications providers (Telnyx, Bird, Infobip, and others), Stripe, LINE, Telegram, Slack, and Discord is also governed by their own terms and privacy policies.
6.2 Legal Requirements
We may disclose information if required by:
- Law, regulation, or legal process
- Lawful government request
- To protect our rights, property, or safety
- To investigate potential violations of our Terms
6.3 Business Transfers
If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.
6.4 With Your Consent
We may share information with other parties when you give us explicit consent.
6.5 What We Don't Do
We do NOT:
- Sell your personal information
- Share data with advertisers
- Use your data for targeted advertising
- Share message content with anyone except delivery destinations
7. International Data Transfers
7.1 Where Data is Processed
Your data may be processed in:
- United States
- Canada
- Other locations where our service providers operate
7.2 Transfer Safeguards
When your data is transferred to or processed in a country other than your own, we take steps to ensure it remains protected. Our service providers maintain appropriate data protection measures and contractual commitments to safeguard your information.
8. Your Rights and Choices
8.1 All Users
You have the right to:
- Access: Request a copy of your personal data
- Correction: Update or correct inaccurate data
- Deletion: Request deletion of your data
- Export: Receive your data in a portable format
- Opt-out: Unsubscribe from marketing emails
8.2 European Users (GDPR)
If you are in the European Economic Area, you also have:
- Right to Object: Object to processing based on legitimate interests
- Right to Restrict: Request restriction of processing
- Right to Withdraw Consent: Withdraw consent at any time
- Right to Lodge Complaint: File a complaint with your supervisory authority. A list of EU data protection authorities is available at ec.europa.eu
8.3 California Users (CCPA)
If you are a California resident, you have certain rights under California privacy laws (including the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA)), such as:
- Right to Know: What personal information we collect
- Right to Delete: Request deletion of your personal information
- Right to Opt-Out: Opt-out of sale of personal information (we don't sell data)
- Right to Non-Discrimination: Equal service regardless of exercising rights
- Authorized Agent: You may designate an authorized agent to make requests on your behalf
8.4 How to Exercise Your Rights
To exercise any of these rights, contact us at:
- Email: [email protected]
- Account Settings: Some options available directly in your dashboard
We will respond within 30 days (or sooner as required by law).
9. Data Security
9.1 Technical Measures
We protect your data with:
- Encryption in transit (TLS/HTTPS)
- Encryption at rest for sensitive data
- Secure password hashing (bcrypt)
- Regular security audits
- Access controls and authentication
9.2 Organizational Measures
- Limited employee access to personal data
- Security training for staff
- Incident response procedures
- Regular backup and recovery testing
9.3 Your Responsibilities
You are responsible for:
- Keeping your password secure
- Not sharing your account credentials
- Reporting suspicious activity immediately
9.4 Breach Notification
If we experience a data breach affecting your personal information, we will:
- Notify you within 72 hours (or as required by law)
- Describe what happened and what data was affected
- Explain steps we're taking to address the breach
- Provide guidance on protecting yourself
10. Cookies and Tracking
10.1 Essential Cookies
We use only essential cookies required for the Service to function:
- Session management
- Authentication
- Security tokens
10.2 Analytics
We use Fathom Analytics, a privacy-focused analytics service that does not use cookies or track you across sites. Fathom collects anonymous usage data to help us understand how the Service is used, without collecting any personally identifiable information.
No cookie consent banner is required for our analytics because no cookies are used.
11. Children's Privacy
Tether is not intended for users under 18 years of age. We do not knowingly collect personal information from anyone under 18. If we learn we have collected such information, we will delete it promptly.
If you are a parent or guardian and believe your child has provided personal information to us, please contact us so we can investigate and delete the information if appropriate.
12. Third-Party Links
Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.
13. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes by:
- Email to your registered address
- Notice on our website
- In-app notification
The "Last Updated" date at the top indicates when the policy was last revised.
14. Privacy Contact
For privacy-related inquiries, including questions about this policy or your rights, you can contact us at:
Email: [email protected]
15. Data Processing Agreement
Business customers requiring a Data Processing Agreement (DPA) for GDPR compliance may request one by contacting [email protected].
16. Contact Us
For questions or concerns about this Privacy Policy or our data practices:
Email: [email protected]
Website: https://tethermobile.com
Address: Mixed Beans Studio Inc., 329 Howe St, Unit #830, Vancouver, BC V6C 3N2, Canada
By using Tether, you acknowledge that you have read and understood this Privacy Policy.