Senda
Senda
Senda
Privacy Policy

Your privacy matters

At Senda, we are committed to protecting your personal information and being transparent about how we collect, use, and safeguard your data.

Last updated: June 2026 · Effective for all Senda services at senda.co.tz

Quick Navigation

Information We Collect

Personal Data

  • Full name and email address when you create an account
  • Company name and job title if provided during onboarding
  • Billing information including payment method details processed securely through our payment provider
  • Phone number when provided for account verification or two-factor authentication
  • Profile preferences and account settings within the Senda platform

Usage Data

  • Log data such as IP address, browser type, operating system, and referring URLs
  • Pages visited, features used, and time spent on the platform
  • Device identifiers and connection information for security monitoring
  • Campaign creation, sending, and analytics interaction patterns
  • Search queries and navigation patterns within the Senda dashboard

Cookies & Tracking Technologies

  • Essential cookies required for authentication, session management, and security
  • Analytics cookies to understand how users interact with our platform and improve features
  • Preference cookies to remember your settings, language, and display preferences
  • We do not sell cookie data to third parties or use cookies for cross-site advertising

How We Use Your Information

  • Provide, maintain, and improve the Senda email marketing platform and its features
  • Process your email campaigns, manage contact lists, and generate analytics reports
  • Authenticate your identity and secure your account against unauthorized access
  • Send transactional emails such as password resets, billing receipts, and security alerts
  • Communicate product updates, feature announcements, and service notifications
  • Monitor platform performance, detect abuse, and prevent fraud or security breaches
  • Comply with legal obligations and enforce our Terms of Service
  • Aggregate and anonymize usage data for analytics that help us improve our product

Data Storage & Security

  • All data is encrypted in transit using TLS 1.2+ and at rest using AES-256 encryption
  • Our infrastructure is hosted on ISO 27001 and SOC 2 Type II certified data centers
  • We implement role-based access controls and the principle of least privilege for all internal systems
  • Regular penetration testing and vulnerability assessments are conducted by third-party security firms
  • Automated monitoring and alerting systems detect and respond to anomalous activity in real time
  • Data backups are encrypted and stored in geographically distributed locations for disaster recovery
  • All employees undergo security awareness training and background checks

Your Rights

Under the General Data Protection Regulation (GDPR) and other applicable data protection laws, you have the following rights regarding your personal data:

Right of Access

You can request a copy of all personal data we hold about you. We will provide this information within 30 days in a commonly used, machine-readable format.

Right to Rectification

If any personal data we hold is inaccurate or incomplete, you have the right to request corrections. You can update most information directly in your account settings.

Right to Erasure

You can request the deletion of your personal data. We will erase your data unless retention is required for legal compliance, contract fulfillment, or legitimate business purposes.

Right to Data Portability

You can request your data in a structured, commonly used, and machine-readable format (such as JSON or CSV) and have it transmitted to another service provider where technically feasible.

Right to Object

You have the right to object to the processing of your personal data for direct marketing purposes or processing based on legitimate interests.

Right to Restrict Processing

You may request that we limit the processing of your personal data while we verify the accuracy of data or resolve a dispute regarding processing.

Email Communications

  • We send transactional emails (account verification, password resets, billing notifications) that are essential to the service and cannot be opted out of
  • We may send product update emails, feature announcements, and tips about using Senda effectively — you can opt out of these at any time via the unsubscribe link
  • We do not share your email address with third parties for their marketing purposes
  • Email analytics data (opens, clicks, bounces) for campaigns you send is available only to you and is not shared with other Senda users
  • We comply with CAN-SPAM, GDPR, and other anti-spam regulations in all email communications

Third-Party Services

  • Payment Processing: We use Stripe to securely process payments. Stripe is PCI DSS compliant and handles your card details directly — we never store full card numbers on our servers
  • Cloud Infrastructure: Our platform runs on AWS, which provides robust physical and network security controls and is SOC 2 and ISO 27001 certified
  • Analytics: We use privacy-respecting analytics tools to understand platform usage and improve our product. All data is aggregated and anonymized
  • Email Delivery: We may use sub-processors to assist with email delivery infrastructure, all of whom are contractually bound to data protection standards
  • We do not sell, rent, or trade your personal data to any third party for their independent use
  • A current list of sub-processors is available upon request by contacting hello@senda.co.tz

Data Retention

  • Account data is retained for as long as your account is active and for a period of 90 days after account deletion to allow for recovery
  • Campaign analytics data is retained for 24 months, after which it is automatically aggregated and anonymized
  • Billing and financial records are retained for 7 years as required by tax and accounting regulations in Tanzania
  • Server logs and usage data are retained for 12 months for security and debugging purposes, then permanently deleted
  • You may request earlier deletion of your data by contacting us at hello@senda.co.tz, subject to legal retention requirements
  • Upon account deletion, all contact lists and subscriber data associated with your account are permanently removed within 90 days

Changes to This Policy

  • We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors
  • We will notify you of material changes by sending an email to the address associated with your account and by posting a prominent notice on our website
  • The "Last Updated" date at the top of this page will always reflect the most recent revision
  • Your continued use of Senda after any changes constitutes your acceptance of the updated Privacy Policy
  • We encourage you to review this page periodically to stay informed about how we protect your information

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, we encourage you to reach out. We are here to help.

Email

hello@senda.co.tz

We reply within 24 hours

Office

PAPU Tower, Arusha

10636 Moshi Rd, Arusha, Tanzania

Website

senda.co.tz

Visit our platform

Data Protection Officer

For data protection inquiries or to exercise your rights under GDPR, you may contact our Data Protection Officer at hello@senda.co.tz. We will respond to your request within 30 days.

Ready to send emails you can trust?

Start for free. No credit card required. Your data is protected from day one.

Talk to Us