Privacy Policy

Privacy Policy

 

inmind .ai Tech Solutions Ltd.

Registered address: Beirut-Lebanon, Doha-Qatar, Dubai-United Arab Emirates, Greenville- USA, Larnaca-Cyprus.

 

This Privacy Policy explains how we process Personal Data as a Controller under the DIFC Data Protection Law 2020 (DIFC Law No. 5 of 2020) and its Regulations (together, the “DIFC DP Law”) , the General Data Protection Regulation (GDPR), and applicable U.S. data protection laws (Collectively referred to as the “Regulations”). It applies to individuals who visit our websites, use our products/services, interact with us, or whose data we obtain during our business.

 

 

1) Personal Data we collect

 

  • Identity & contact: Full Name, Phone Number, Company Name, Email Address, Country Name, Objective and Message.
  • Technical: IP address, device identifiers, browser type, pages viewed, and similar telemetry (via cookies/SDKs—see “Cookies & similar tech”).

If we did not obtain your data directly from you, we may have received it from: your employer, public sources, professional networks, event partners, or service providers. In those cases we provide this notice as required by law.

 

 

2) Why we process your data (purposes) & legal bases

 

The personal data collected through the “Contact Us” form is used solely to respond to inquiries and engage with visitors regarding inmind.ai’s services. This enables our team to provide relevant information, schedule meetings, and follow up on potential business opportunities. The data is not and will not be shared with third parties for marketing purposes and is retained only as long as necessary to manage the inquiry.

 

 

3) Special Categories of Personal Data

 

We avoid processing Special Category data (e.g., health, biometrics, beliefs). If it is necessary (e.g., disability accommodations for an event), we will rely on a valid condition (such as explicit consent or substantial public interest under applicable safeguards).

 

 

4) Are you required to provide data?

 

Some data is necessary to enter into or perform a contract (e.g., account, billing). If you do not provide it, we may be unable to deliver the relevant service. Other data is optional (we’ll tell you when it’s optional). We also indicate when replies are obligatory or voluntary and the consequences of not replying.

 

 

5) How long we keep data

 

We retain Personal Data only as long as necessary for the purposes above, including to meet legal, accounting, or reporting obligations. Where precise periods cannot be set, we apply criteria such as: contractual limitation periods, regulatory requirements, and the sensitivity of the data. We securely delete or anonymize data when no longer needed or when the data subject requests its right to be forgotten.

 

 

6) Cookies & similar technologies

 

We use cookies/SDKs to run the site, remember preferences, measure performance, and (if you consent) tailor marketing. You can manage cookies via our consent tool and your browser settings; essential cookies cannot be disabled because the site needs them to function.

 

 

7) Sharing your data (recipients)

 

  • Service providers/Processors (e.g., hosting, email, payments, analytics, customer support) bound by contracts that meet Regulations requirements (including confidentiality and security).
  • Professional advisers (legal, audit), insurers, banks, and group entities (intra-group transfers under appropriate safeguards).
  • Authorities where required by law or valid request; we assess validity and proportionality and seek to minimize what is disclosed.

 

 

8) International transfers

 

We may transfer Personal Data outside the DIFC, Europe and the United States only where permitted, including to jurisdictions recognised by the Commissioner as adequate, or using appropriate safeguards such as standard contractual clauses, Binding Corporate Rules, or other mechanisms; in limited cases, a specific derogation may apply. Information on adequacy and transfer tools is published by the DIFC Commissioner of Data Protection.

 

 

9) Your rights

 

Under the Regulations (as defined in the preamble above section) you have the right to:

  • Request a copy of your data.
  • Rectify inaccurate data.
  • Request data deletion.
  • Object to processing (including direct marketing) and to demand we stop, unless we demonstrate compelling grounds.
  • Restrict processing in certain cases.
  • Data portability for certain data you provided to us.
  • Withdraw consent at any time where processing is based on consent.
  • Not be subject to solely automated decisions in the circumstances set out in.

TO EXERCISE ANY OF THOSE RIGHTS YOU ARE KINDLY REQUESTED TO CONTACT OUR DPO OFFICER VIA EMAIL CORRESPONDENCE.

 

 

10) Marketing choices

 

We may provide marketing material from time to time. You can opt out of marketing at any time by writing a request to delete personal data (PII) directed to the DPO via email.

 

 

11) Security

 

We implement appropriate technical and organizational measures to protect Personal Data against unauthorized or unlawful processing, and against accidental loss, destruction, or damage (e.g., access controls, encryption in transit, vendor due diligence, staff training, incident response).

 

 

12) Personal Data breaches

 

If a breach compromises confidentiality, security, or privacy, we will notify the relevant Commissioner of Data Protection as per the Regulations (as defined in the preamble above section) as soon as practicable in the circumstances and, where the breach is likely to result in high risk to you, we will also notify you without undue delay, with information required by law.

 

 

13) How to complain

 

If you have concerns, please contact the DPO. You also have the right to lodge a complaint with the relevant Commissioner of Data Protection as per the Regulations (as defined in the preamble above section). The Commissioner’s site includes complaint guidance and forms.

 

 

14) Changes to this Policy

 

We may update this Policy from time to time. Material changes will be highlighted on this page and, where appropriate, notified to the website visitors via disclaimer. The “Effective date” at the top shows when it was last updated.

 

 

15) Additional transparency information

 

  • Recipients/categories and transfer safeguards are described in §§8–9.
  • Storage periods/criteria are described in §5.
  • Whether replies are obligatory/voluntary and consequences of not providing data are described in §4.
  • Existence of automated decision-making and your related rights are in §9.
  • If we ever restrict rights (e.g., where erasure/objection cannot be implemented due to technical design or legal retention), we will state this clearly and prominently at the point of collection or first communication, with an explanation of impact.

 

 

Definitions (plain language)

 

  • “Personal Data” means any information relating to an identified or identifiable natural person.
  • “Processing” means any operation on Personal Data (collection, storage, use, disclosure, etc.).
  • “Special Category Personal Data” includes data revealing racial/ethnic origin, beliefs, health, sex life, biometrics used for identification, etc.

 

 

Contact

 

Questions or requests?

Email contact@inmind.ai. You may also write to: DPO via dpo@inmind.ai.

 

 

Let’s get started

Need expertise and innovation on your project? We can help.