Data Protection and Privacy

Your data and privacy is critically important to us. The General Data Protection Regulation has prompted us to review our policies to ensure we are handling and storing our users’ data properly to maintain the high-level of trust our users expect from us.

The following is a collection of resources related to common questions we receive from customers relating to data collection, handling and privacy.

What data does 15Five collect?

Things about you

15Five only collects information that is necessary to keep your account secure and deliver a positive user experience. The information we collect from you and your employer is listed below.

  • Email address
  • Password (unless your organization is using SSO e.g. Okta, OneLogin, Google SSO)
  • First and last name
  • Job Title
  • Location (manually entered field on profile form)
  • Timezone
  • Your image or avatar
  • Employee ID

Things that define your “best self” in 15Five

The 15Five software helps organizations bring out the best in people at work. To do this, we collect the following data to help you align and track your career goals.

  • Career goals
  • Strengths
  • Aspirational Job title and description
  • Wins and challenges

Feedback your organizations asks for in 15Five

15Five is a web-based software that conducts feedback and communication between you and your employer. Feedback is delivered through a weekly check-in Q&A and/or Best-Self Reviews, a quarterly or semi-annual performance review.

Interactions you have with your colleagues

Things that help us deliver a polished product and keep your data secure

  • IP Address
  • Operating system
  • Browser or mobile app version
  • A unique identifier for your phone (if you use our mobile apps)
  • How you use our 15Five application when logged in

How does 15Five use the data it collects?

15Five collects and stores feedback from you on behalf your employer. Your employer directs 15Five on what to collect, when, and who can access this data.

15Five forwards some of your information to various services who support our product (e.g. we send your name and email address to an external service to provide technical support via real-time chat and email). We also may use anonymized and aggregated user data for market and product research as well as academic research purposes*.

How does 15Five protect my data?

An overview of 15Five’s security measures, such as how we handle data, security monitoring, credit card safety and encryption, can be found here.

Is 15Five GDPR compliant?

Yes, 15Five has spent significant time and effort into data handling, and data privacy in preparation for GDPR. Specifically, we have:

  • Invested in our security infrastructure and practices
  • Audited our data inventories
  • Audited the third-parties we do business with to ensure they have the same security standards
  • Ensured we are able to handle international data transfers by certifying under US-EU Privacy Shield
  • Updated our Privacy Policy
  • Built and tested new data portability, amendment, and data removal tools.

15Five currently has a standard pre-signed data processing addendum to provide to our European customers and customers who process data of European data subjects. If you’d like a copy a copy to review and counter-sign please contact

How do I correct, amend or remove my personal data from 15Five?

15Five services are provided to business and organizational entities, and we only store and process data on the behalf of these organizations. For this reason, requests for amendments, corrections, or erasure of your personal data must go through the business or organization who has added you to 15Five.

Amendment or correction

If you find your personal data within 15Five to be inaccurate, we’re glad to help fix any inaccuracies.

To do this please first contact an account administrator to see if they can correct or amend the incorrect data. If they do not have the ability to do this in our application, please have them contact 15Five Support ( on your behalf and we will update the applicable data.


To remove your personal information from 15Five, contact your account administrator to deactivate your user account. Next the administrator will need to contact 15Five Support ( to have your personal data removed.

What’s deleted

  • Email address
  • Password (unless your organization is using SSO e.g. Okta, OneLogin, Google SSO)
  • First and last name
  • Job Title
  • Location
  • Timezone
  • Your image or avatar
  • Employee ID
  • Career goals
  • Strengths
  • Aspirational Job title and description
  • Wins and challenges

What’s not deleted

  • 15Five Check-ins
  • Reviews
  • High Fives
  • 1-on-1 agendas
  • @mentions – these will be replaced by @deactivateduser
  • Comments
  • Likes

Note: There may be instances where law, regulation, legal action and/or contract prevent immediate removal of your data. 15Five will remove your data at the earliest time legally and technically possible.

* This does not apply universally to all users, as some contracts have been written to prevent this. If you are worried about this, please discuss the terms of your organization’s contract with your account administrator. It is unlikely we will be able to discuss the terms of our contract with your organization with anyone but your account administrator.

Try 15Five today

Get Started