Privacy Policy

We collect information you provide directly when you create an account, book a consultation, or contact us. This includes your name, email address, phone number, and payment information. We also collect information about how you use our services, such as log data, device information, and usage patterns, to improve our platform. During consultations, session transcripts and summaries may be stored to provide you with records of your care. This data is encrypted at rest and in transit.

We use your information to: • Provide, operate, and improve our services • Match you with suitable mental health professionals • Process payments through our Wallet system • Send you booking confirmations and session reminders • Respond to your support requests • Comply with legal obligations We do not sell your personal data to third parties. We do not use your session content for advertising purposes.

We share your information only in these limited circumstances: • With the doctor you book a consultation with (name, reason for visit) • With payment processors strictly to handle transactions • With infrastructure providers (e.g., cloud hosting) who are contractually bound to protect your data • When required by law or to protect rights and safety All third-party service providers are GDPR-compliant and process data solely on our instructions.

We retain your account data for as long as your account is active. Session transcripts are stored for 5 years by default to support continuity of care; you may request earlier deletion. When you delete your account, we anonymize or delete your personal data within 30 days, except where retention is required by law.

We implement industry-standard security measures including: • End-to-end encryption for all session communications • AES-256 encryption for stored data • Regular third-party security audits • Role-based access controls for staff No method of transmission over the internet is 100% secure; we cannot guarantee absolute security, but we continuously work to protect your data.

Under GDPR and applicable privacy laws, you have the right to: • Access the personal data we hold about you • Correct inaccurate data • Request deletion of your data • Restrict or object to certain processing • Export your data in a portable format • Withdraw consent at any time To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

We use strictly necessary cookies to keep you logged in and remember your preferences. We also use analytics cookies (opt-in only) to understand how our platform is used so we can improve it. You can manage cookie preferences in your browser settings or through our cookie banner at any time.

AIMenta is not intended for users under 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal information, please contact us immediately and we will delete it.

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a prominent notice on our platform at least 30 days before the change takes effect. Your continued use of AIMenta after any change constitutes acceptance of the updated policy.

For privacy-related questions or to exercise your rights, contact: AIMenta GmbH Rosenthaler Str. 40, 10178 Berlin, Germany [email protected]