← Back to calenta.ai

Privacy Policy

Last updated: May 2026

Who we are

Calenta is a fundraising intelligence tool operated by Resin LLC (“Calenta,” “we,” “us”). We provide AI-powered fundraising analysis to nonprofit organizations. This policy explains how we handle data on calenta.ai and as part of our pilot service.

What we collect

Marketing site (calenta.ai). When you submit the early-access form, we collect your email address. We do not use cookies for tracking, advertising, or analytics on the public marketing site.

Pilot service. When your organization onboards as a pilot, we connect to your Salesforce instance via OAuth with the permissions your administrator grants. We read donor, gift, opportunity, activity, and configuration data from your CRM as needed to produce the intelligence reports, priority queues, and chat answers you’ve asked for. All access is scoped to your specific tenant; users sign in with their own Salesforce credentials and Calenta inherits their CRM permissions.

How we use your data

  • Email submissions: to respond to your inquiry and follow up about pilot access.
  • CRM data: to generate the analyses and outputs you have explicitly engaged the service to produce. Your data is not used to train any AI model. Your data is never shared with other Calenta tenants.
  • Tool invocation logs: we log which Calenta tools each authenticated user invokes (along with parameters and outputs) for product analytics during the pilot phase. Logs are retained for 30 days, then deleted.

Third parties we use

Calenta runs on infrastructure provided by these vendors. Each has their own privacy policy and processes data on our behalf:

  • Cloudflare — Workers, KV storage, R2 object storage, and DNS
  • Anthropic — Claude AI model API for analysis and chat. Anthropic’s commercial API does not train on customer inputs or outputs.
  • Vercel — hosting for the calenta.ai marketing site
  • Resend — transactional email delivery (the form auto-reply and notification emails)
  • Google Workspace — calenta.ai email receipt

Data retention

  • Form submission emails: retained until you ask for them to be deleted, or until the inquiry is concluded.
  • Pilot CRM data: queries are made live; we do not warehouse your CRM data outside Salesforce. Generated reports and priority queues are stored in your tenant’s isolated R2 bucket.
  • Tool invocation logs: 30-day automatic deletion.
  • Chat conversation history (when applicable): 30-day automatic deletion.

Your rights

You may request access to, correction of, or deletion of any data we hold about you by emailing joe@calenta.ai. Pilot organizations may request data deletion at any time by the same path; we will purge generated reports, queues, and logs within 30 days of the request.

Security

All connections use HTTPS/TLS 1.3. Data at rest in Cloudflare KV and R2 is encrypted. OAuth tokens are stored encrypted and never exposed to client-side code. Each tenant’s data is isolated in dedicated Cloudflare Workers and R2 prefixes.

Changes to this policy

We may update this policy as the product and service evolve. Material changes will be communicated to active pilot organizations via email. The “last updated” date at the top of this page reflects the most recent revision.

Contact

Questions or requests: joe@calenta.ai