1. Overview
This Privacy Policy explains how Brain-Life collects, uses, stores, and protects your personal information and EEG brainwave data through its mobile application and services. It complies with the General Data Protection Regulation (GDPR) of the European Union and other applicable laws.
2. Information We Collect
We collect the following categories of data:
– Personal Identifiers: Name, email address, and contact details when you create an account.
– Device and App Usage Data: IP address, device type, operating system, and usage analytics.
– EEG and Neurophysiological Data: Brainwave signals and associated metadata from the Brain-Life headband.
3. Legal Basis for Processing
Your personal data is processed in accordance with the General Data Protection Regulation (GDPR). Depending on the purpose and type of data, we rely on one or more of the following legal bases:
– Your explicit consent
– Performance of a contract
– Legal obligations
– Our legitimate interests, such as app improvement and research.
4. Use of Information
We use your data to:
– Provide and personalize the App experience
– Improve neuro-performance insights and services
– Perform product development and research
– Communicate important updates
– Fulfill legal and regulatory obligations
5. Data Sharing and Disclosure
We do not sell your personal data. We may share anonymized, aggregated data with research partners. Identifiable data is shared only:
– With your consent
– As required by law
– With third-party service providers under strict confidentiality agreements
6. Data Retention
Electronic data will be stored on a password-protected computer as password-protected documents in encrypted form. Physical copies of signed information sheets and consent forms will be scanned and retained on a password-protected hard drive for 5 years; the originals will be securely disposed of. Data will be kept securely for 10 years, or for 10 years after publication: any published datasets will be made publicly available.
To ensure anonymity, each person will be provided with a unique individual code. You can request deletion at any time by contacting support@brainlife.ai
7. Your Rights
Under GDPR, you have the right to:
– Access your data
– Correct inaccurate data
– Request deletion or data portability
– Restrict or object to processing
– Withdraw consent at any time
To exercise your rights, contact: support@brainlife.ai
8. Automated Decision-Making
We do not use your personal or EEG data for automated decision-making or profiling that has legal or significant effects on you.
9. Children’s Privacy
We do not knowingly collect data from children under 16 without verified parental consent.
10. International Users
If you access the App from outside Viet Nam, your data may be processed in jurisdictions with data protection laws different from those in your country.
11. Data Security
We use encryption, access controls, and secure servers to protect your data from unauthorized access, loss, or misuse.
12. EU Representative and DPO
Brain-Life has appointed a representative in the European Union to act on our behalf for data protection matters.
EU Representative: 3rd Floor, 86-90 Paul Street, London, England, United Kingdom, EC2A 4NE
If you are located in the EU, you may contact our Data Protection Officer (DPO) or EU representative for any privacy-related matters at: admin@brainlife.ai
13. Policy Updates
We may revise this Privacy Policy periodically. You will be notified of significant changes through the App or email.
14. Contact Us
For questions or to exercise your rights, contact: support@brainlife.ai