IMIN Global, Inc. Privacy Policy

Effective Date: May 1, 2025
Last Updated: October 23, 2025

1. INTRODUCTION

IMIN Global, Inc. ("IMIN," "we," "us," or "our") respects your privacy. This Privacy Policy describes how we collect, use, disclose, and protect your information when you use our mobile and web applications ("App"), websites, and related services. By using IMIN, you confirm that you are at least 18 years of age.

IMIN is a wellness and stress management application. It is not intended to diagnose, treat, cure, or prevent any disease or medical condition. The App should not be used as a substitute for professional medical advice. Always consult qualified healthcare professionals for medical concerns.

2. CONTACT INFORMATION

• Company Name: IMIN Global, Inc.

• Email: info@getimin.app

• Mailing Address: 1221 College Park Dr Suite 116, Dover, DE 19904, USA

• Privacy Policy URL: https://www.getimin.app/privacy-policy

3. INFORMATION WE COLLECT

We collect the following categories of personal information:

Account Registration: Full name, email address, password, biological sex, and date of birth

Face Scan Biometric Data: We collect biometric data through facial scanning via your smartphone camera using real-time processing technology (remote photoplethysmography/rPPG) only after obtaining your explicit consent. You will be prompted to approve camera access and biometric scanning before these features are activated.

What Face Scan Biometric Data We Collect: Through facial scanning, we derive the following biometric measurements from subtle color changes in facial skin that occur with blood flow:

• Cardiovascular metrics (including heart rate, heart rate variability, and pulse-related measurements)

• Respiratory metrics (including breathing patterns and rates)

• Blood flow and oxygenation indicators

• Stress-related assessments and wellness scores calculated from the above metrics

How Face Scan Data is Processed:

• Raw facial video is processed locally on your device in real-time

• Only the calculated biometric measurements listed above are transmitted to our secure servers

• These biometric measurements are encrypted and stored on AWS servers in the United States

What We DO NOT Collect or Store:

• Facial images or videos are saved, stored, or transmitted

• Facial recognition data or facial geometry

• Identifying facial features or characteristics

• Raw camera feed is immediately discarded after real-time processing

All references to "biometric data" in this Privacy Policy refer specifically to the face scan-derived measurements described above.

Device and Technical Info: OS version, app usage analytics, crash reports, and diagnostic data

User Inputs: Answers to contextual questions during scan setup (e.g., food, alcohol, exercise timing, mood, intention)

Behavioral Data: Session interactions, exercise completion, and progress tracking data used for personalization

4. HOW WE USE YOUR DATA

We use your data to:

• Provide core app functionality including biometric scans, personalized stress-regulation exercises, and progress tracking

• Improve accuracy and performance of our wellness algorithms and AI models

• Personalize your experience and nervous system regulation interventions

• Track individual and aggregate wellness trends and intervention effectiveness

• Conduct internal product research and development

• Generate anonymized, aggregated insights for research, product improvement, and commercial purposes

• Provide customer support and respond to your inquiries

• Send account-related communications (e.g., updates, security alerts)

• Our AI models are trained exclusively on anonymized, de-identified data that cannot be linked to any individual user. These trained models (which contain no personal data) may continue to exist after account deletion to maintain service quality for all users. See Section 12 for detailed information about AI model retention.

Our personalization features use automated systems and AI models to recommend exercises and interventions based on your biometric readings and responses. These systems do not make health or medical diagnoses or treatment decisions.

5. DATA SHARING AND DISCLOSURE

We do not sell your personal data to third parties.

We may share your information only in the following circumstances:

• Service Providers: With trusted third-party service providers who assist us in operating our app (e.g., Amazon Web Services for secure cloud storage, analytics providers for app performance)

• Legal Requirements: When required by law, legal process, or governmental request Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to users)

• Aggregated Data: We may share anonymized, aggregated data that cannot identify you with research institutions or partners

• Your Consent: With your explicit consent for any other purpose

6. THIRD-PARTY SERVICES

• We use the following third-party services:

• Amazon Web Services (AWS) for secure data storage and processing

• Analytics tools for app performance monitoring

• Email service providers for account-related communications

These providers are contractually obligated to protect your information and use it only for providing services to us.

7. Data Security

We implement industry-standard security measures including:

• Encryption of data in transit and at rest

• Secure authentication protocols

• Regular security assessments

• Limited access controls for personnel

While we take reasonable steps to protect your information, no method of electronic transmission or storage is 100% secure. By using IMIN, you acknowledge and accept this inherent risk.

8. YOUR RIGHTS AND CHOICES

You have the right to:

• Access your personal data by contacting us at info@getimin.app

• Correct inaccurate information in your account settings

• Delete your account and erase your personal data through the app settings

• Control biometric data collection by granting or revoking camera permissions in your device settings (note: biometric scanning is required for core app functionality)

Account Deletion: You can permanently delete your account and erase your personal data directly in the app by going to Settings > Account > Delete Account. You can also request deletion by emailing info@getimin.app. This action cannot be undone. Deletion will be processed within 30 days, though some information may be retained only as required by law.

To exercise any of these rights or for assistance, contact us at info@getimin.app. We will respond within 30 days and may request verification of your identity for security purposes.

9. AGE RESTRICTIONS

You must be at least 18 years old to use IMIN. Users are prevented from registering if their date of birth does not meet this requirement. We do not knowingly collect personal information from anyone under 18 years of age. If we discover that we have inadvertently collected information from someone under 18, we will promptly delete that information.

10. INTERNATIONAL DATA TRANSFERS

We are based in the United States and process data in accordance with U.S. law. If you are located outside the U.S., your data will be transferred to and processed in the United States. We implement appropriate safeguards for international data transfers in compliance with applicable laws.

11. JURISDICTION-SPECIFIC RIGHTS

European Union/EEA/UK (GDPR):

• Right to access, rectify, erase, restrict processing, data portability, and object to processing

• Right to withdraw consent at any time

• Right to lodge a complaint with supervisory authorities -

• Legal bases: consent, contract performance, legitimate interests, legal obligations

California (CCPA/CPRA):

• Right to know what personal information we collect, use, and disclose

• Right to delete personal information

• Right to opt-out of sale (we do not sell personal data)

Right to non-discrimination Illinois (BIPA):

• We obtain your consent before collecting biometric data

• Age verification ensures users meet the 18+ requirement before biometric data collection

• We provide retention and destruction schedules for biometric data

• Biometric data is stored using reasonable security measures

Washington (My Health My Data Act):

• Enhanced protections for consumer health data

• Right to withdraw consent for health data processing

To exercise jurisdiction-specific rights, contact info@getimin.app.

12. DATA RETENTION

We retain personal data only as long as necessary to:

• Provide our services and maintain your account

• Comply with legal obligations

• Resolve disputes and enforce agreements

• Support legitimate business purposes including research and product improvement

Face Scan Biometric Data Retention:

• Raw facial video/images: Never stored - processed in real-time on your device and immediately discarded

• Biometric measurements derived from face scans (as outlined in Section 3): Retained indefinitely while your account exists to provide historical tracking and personalized experiences

• Historical wellness trends and progress data: Retained for the duration of your account

• After account deletion: All biometric measurements are permanently deleted within 30 days

• Anonymized/aggregated biometric data: May be retained indefinitely for research and product improvement (cannot be linked back to you)

AI Models and Machine Learning:

• AI models trained on anonymized data from your account may continue to exist after account deletion for ongoing service improvement

• These models contain no personal data or identifiable information and cannot be linked back to you or any individual user

• We delete personal data within 30 days after account deletion, but retain the anonymized learning patterns that help improve our service for all users

Other Data Retention:

• Account information (name, email, password): Retained indefinitely while your account is active

• User inputs and behavioral data: Retained indefinitely while your account is active

• Device and technical information: Retained indefinitely while your account is active

• After account deletion: All personal data is deleted within 30 days, except as required by law

Account Deletion: When you delete your account (see Section 8), all your personal data including biometric measurements will be permanently removed from our systems within 30 days.

Legal Retention: We may retain certain information longer than 30 days after account deletion only if required by law, regulation, legal proceedings, or governmental request.

13. CHANGES TO THIS POLICY

We may update this Privacy Policy periodically. We will notify you of material changes via email or in-app notification at least 30 days before the changes take effect. Your continued use of IMIN after changes become effective constitutes acceptance of the revised policy.

14. ACCESSIBILITY

This Privacy Policy is available at https://www.getimin.app/privacy-policy. For alternative formats or accessibility assistance, contact info@getimin.app.