Security & Privacy

FeedbackPulse protects employee feedback data with encryption, access controls, and anonymity protections.

For full details, see the Security Overview and Privacy Policy.

Data protection

Layer	Protection
In transit	All data transmitted over HTTPS with TLS 1.2+
At rest	Database and backups are encrypted
Access control	Role-based permissions (Admin, Manager, Employee) determine data visibility

FeedbackPulse does not sell, share, or use customer data for advertising. Employee feedback data is used only to provide the FeedbackPulse service.

Anonymity protections

Anonymous Survey responses cannot be traced back to individual Respondents — not even by Admins.
Team-level Analytics reports require a minimum of 5 responses per Team. Teams with fewer responses are not broken out separately.
Open-text responses in anonymous Surveys are never attributed to individuals.
Fully anonymous Peer Reviews cannot be retroactively de-anonymized.

Account security

Passwords must be at least 8 characters with complexity requirements.
Sessions time out automatically after a period of inactivity.
Only verified work email addresses are accepted for account creation.

Data retention

Account status	Data retention
Active	Data retained for the life of the account
Cancelled	Data retained in read-only mode for 90 days, then permanently deleted
Deactivated User	Historical data preserved. Login access removed.

FeedbackPulse is designed for GDPR compliance. For data processing agreements, data subject access requests, or data deletion requests, contact support.

System boundaries

FeedbackPulse stores feedback data (Reviews, Surveys, feedback items) and User account information (name, email, role). FeedbackPulse does not store payroll data, benefits information, or personally identifiable documents. Authentication is handled by FeedbackPulse directly — there is no third-party identity provider involved in the standard configuration.