top of page
PMI logo only (1).png

Privacy Policy

Effective Date: June 9, 2025
Last Updated: June 9, 2025

At ProMind Insight, your privacy is a top priority. This Privacy Policy describes how we collect, use, and protect personal data when providing our AI-powered Personality Recognition Program. Our practices are designed to comply with:

  • California Consumer Privacy Act (CCPA)

  • Health Insurance Portability and Accountability Act (HIPAA)

  • General Data Protection Regulation (GDPR)

 

1. Scope of This Policy

This Privacy Policy applies to all personal data processed by ProMind Insight through its services. By using our services, you agree to the terms outlined in this policy. If you do not agree, please refrain from using the services.

 

2. Information We Collect

We collect the following categories of personal data:

A. Personal Identifiable Information (PII)

  • Name, date of birth, contact details

  • User credentials (for authorized users)

B. Biometric and Genetic Information

  • Facial recognition data

  • Behavioral signals

  • Voice features

  • Genetic indicators (only with informed and explicit consent)

C. Inferred Data

  • AI-generated personality trait profiles

  • Behavioral patterns

D. Technical and Usage Data

  • IP address

  • Device type and operating system

  • Usage analytics

 

3. Legal Basis for Processing (GDPR)

We process your personal data based on one or more of the following legal grounds:

  • Consent: Explicit consent is obtained where required (e.g., biometric/genetic data).

  • Contract: Data is processed to fulfill a request or agreement with the authorized requester.

  • Legal Obligation: For compliance with legal and regulatory requirements.

  • Legitimate Interest: In providing, improving, and securing our services, provided your rights and freedoms are not overridden.

 

4. Use of Information

We use your information for the following purposes:

  • To provide personality recognition results to the authorized organization or individual

  • To improve the accuracy and reliability of our AI models

  • To comply with legal obligations

  • To ensure system security and integrity

 

5. Disclosure of Information

We do not sell or rent personal data.

We may disclose personal data under the following conditions:

  • With Authorized Requesters: Only the party who has lawful or contractual authority to receive the personality analysis.

  • Service Providers: Third-party vendors under data protection agreements, used solely to support our services.

  • Legal Authorities: If required by law, subpoena, or lawful government request.

 

6. Your Rights

Under CCPA (for California Residents):

You have the right to:

  • Know what personal data we collect, use, disclose, and retain

  • Request access to your data

  • Request deletion of your personal data

  • Opt-out of the sale or sharing of personal data (we do not sell data)

  • Not be discriminated against for exercising your privacy rights

To exercise these rights, contact us at: legal@ProMindInsight.com

 

Under GDPR (for EU/EEA Residents):

You have the right to:

  • Access your personal data

  • Rectify inaccuracies

  • Erase your data (“Right to be Forgotten”)

  • Restrict or object to processing

  • Data portability

  • Withdraw consent at any time

  • Lodge a complaint with a supervisory authority

To exercise these rights, email: legal@ProMindInsight.com

 

Under HIPAA (if applicable):

If our services are used in a healthcare setting and involve Protected Health Information (PHI), we comply with HIPAA requirements:

  • We use PHI only for authorized purposes

  • We protect PHI using administrative, physical, and technical safeguards

  • We enter into Business Associate Agreements (BAAs) with covered entities when required

 

7. Data Retention

We retain data only for as long as necessary:

  • To fulfill the purpose for which it was collected

  • As required by contract, law, or regulation

  • For legitimate business purposes (e.g., audit, dispute resolution)

After the retention period, data is securely deleted or anonymized.

 

8. Data Security

We apply industry-standard security practices, including:

  • End-to-end encryption

  • Multi-factor authentication

  • Role-based access controls

  • Regular audits and vulnerability assessments

 

9. International Data Transfers

If you are located outside the United States, your data may be transferred to and processed in the U.S. or other jurisdictions. Where required, we implement appropriate safeguards, such as:

  • Standard Contractual Clauses (SCCs) for data transfers under GDPR

  • Encryption and pseudonymization of sensitive data

 

10. Children’s Privacy

Our services are not intended for children under the age of 16 (or equivalent minimum age in your jurisdiction). We do not knowingly collect personal data from children without verified parental consent.

 

11. Changes to This Policy

We may update this Privacy Policy periodically. All changes will be posted here and, where appropriate, notified to you. Your continued use of the Service constitutes acceptance of the updated policy.

 

12. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

ProMind Insight Privacy Officer
Email: legal@ProMindInsight.com
Address: PO Box 242, Breinigsville, PA 18031

bottom of page