Braining Up
Privacy Policy
Welcome to Braining. We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our brain training application.
Important: This privacy policy applies to all users of Braining, including those in the European Union (GDPR), California (CCPA), and other jurisdictions with specific privacy laws.
Information We Collect
We collect several types of information to provide personalized brain training experiences:
Account Information
- Name, email address, and password
- Profile information (age, cognitive goals)
- Subscription and payment information
- Communication preferences
Cognitive Performance Data
- Training session results, scores, and accuracy metrics
- Reaction times and response patterns
- Cognitive assessment results and progress tracking
- Difficulty level preferences and algorithm adaptations
- Performance trends and cognitive health indicators
Usage Analytics
- Training frequency, session duration, and feature usage
- Device information (type, operating system, app version)
- Performance metrics and error logs
- Navigation patterns and user behavior
Technical Data
- Browser type and device identifiers
- App performance and crash reports
- Network connection information
Legal Basis for Processing (GDPR)
We process your data based on the following legal grounds:
- Contract: To provide brain training services and fulfill our obligations
- Legitimate Interest: To improve our algorithms, develop new features, and ensure app security
- Consent: For marketing communications, research participation, and optional features
- Legal Obligation: To comply with applicable laws and regulations
How We Use Your Information
We use the collected information to:
- Provide and maintain our brain training services
- Personalize your training experience and adapt difficulty levels
- Track your cognitive progress and performance over time
- Improve our algorithms and develop new training exercises
- Analyze usage patterns to enhance user experience
- Communicate with you about updates, new features, and research opportunities
- Ensure app security and prevent fraud
- Comply with legal obligations and respond to requests
Data Sharing and Third Parties
We may share your information with the following third parties:
Service Providers
- Cloud Storage: AWS, Google Cloud (for data storage and processing)
- Analytics: Google Analytics, Firebase (for usage analysis)
- Payment Processing: RevenueCat (for subscription payments)
Research Partners
With your explicit consent, we may share anonymized cognitive data with research institutions for scientific studies on brain training effectiveness. You can opt-out of research participation at any time.
Legal Requirements
We may disclose your information if required by law, court order, or government request, or to protect our rights, property, or safety.
Data Security
We implement comprehensive security measures to protect your information:
- End-to-end encryption for data transmission
- Secure data storage with industry-standard encryption
- Regular security audits and vulnerability assessments
- Access controls and authentication measures
- Employee training on data protection
Data Retention
We retain your data for the following periods:
- Account data: Until account deletion or 3 years of inactivity
- Cognitive performance data: 7 years (for long-term progress tracking)
- Usage analytics: 2 years (anonymized after 6 months)
- Payment information: As required by financial regulations
- Research data: As specified in research consent forms
Your Rights
You have the following rights regarding your personal data:
General Rights
- Access: Request a copy of your personal data
- Correction: Update inaccurate or incomplete information
- Deletion: Request deletion of your data (with exceptions for legal requirements)
- Portability: Export your data in a machine-readable format
- Objection: Object to processing based on legitimate interests
Cognitive Data Rights
- Algorithm Transparency: Understand how personalization works
- Progress Export: Download your training history and performance data
- Research Opt-out: Withdraw consent for research participation
- Data Correction: Correct inaccurate cognitive performance data
Account Deletion
You can request deletion of your account and all associated data at any time by:
- Email: Send a deletion request to braining.company@gmail.com
- Subject Line: "Account Deletion Request"
- Include: Your email address and reason for deletion (optional)
We will process your deletion request within 30 days and send you a confirmation email. Please note that some data may be retained for legal or regulatory purposes as outlined in our data retention policy.
Marketing Rights
- Opt-out of marketing communications
- Control email preferences
- Unsubscribe from promotional emails
International Data Transfers
Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place through:
- Standard Contractual Clauses (SCCs) for EU data transfers
- Adequacy decisions where applicable
- Other appropriate safeguards as required by law
Cookies and Tracking Technologies
We use cookies and similar technologies to:
- Remember your preferences and login status
- Analyze app usage and performance
- Provide personalized content and recommendations
- Improve our services and user experience
You can control cookie settings through your browser preferences or device settings.
Children's Privacy
Our service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.
For users aged over 16, we collect limited information and require parental consent for certain features. Parents can review, modify, or delete their child's information at any time.
Data Breach Notification
In the event of a data breach that affects your personal information, we will:
- Notify you within 72 hours (as required by GDPR)
- Provide details about the breach and affected data
- Outline steps taken to address the breach
- Offer guidance on protecting your information
Changes to This Policy
We may update this privacy policy from time to time. We will notify you of any material changes by:
- Posting the new policy on this page
- Updating the "Last updated" date
- Sending email notifications for significant changes
Contact Information
If you have any questions about this privacy policy or our data practices, please contact us:
- Email: braining.company@gmail.com
- Account Deletion: braining.company@gmail.com (Subject: "Account Deletion Request")
- Data Rights Requests: braining.company@gmail.com
For EU residents, you also have the right to lodge a complaint with your local data protection authority.