Privacy Policy

We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device ("Personal Information").

A. Information You Directly Provide to Us

This information is collected when you: engage us for a consulting project, register for an acount on an App, or communicate with us.

Identification and Contact Data: Name, email address, phone number, mailing address, company name, and job title.

Financial Data: Billing address, payment card details, and transaction information (processed securely via third-party payment providers).

Project and Consulting Data: Information you provide to us under a Statement of Work (SOW), which may include proprietary business data, research goals, and in certain projects, sensitive personal data (see Section 1.C).

B. Information We Automatically Collect (Usage and Technical Data)

When you access our Services, our servers automatically record information, which may include Personal Information:

Usage Data: Details about how you use our Services (e.g., features accessed, time spent, interaction it AI prompts/outputs).

Device Data: IP address, device type, operating system, browser type, unique device identifiers, and mobile network information.

Tracking Technologies: We use cookies, web beacons, and similar technologies to collect information about your activity over time and across third-party websites for purposes like analytics and targeted marketing.

C. Sensitive & Specialized Data

Due to our unique services, we may collect or process the following data, which may be considered "Private Information", under the New York SHIELD Act:

Behavioral/Psychometric Data: Any input data into our AI or MHTS Apps, including text, voice, or sensor data that relates to emotional state, cognitive function, or psychological patterns.

Biometric Information: Data generated by electronic measurements of an individual's unique physical characteristics (e.g., voice prints, facial geometry), only if necessary for a specific, contracted service and with explicit consent.

Credentials: Username and password, in combination with an email address, necessary for accessing your account. 

We use the collected Personal Information for the following business and commercial purposes:

To Provide and Manage Services: To fulfill out contractual obligations under a signed SOW, provide access to Apps, process transactions, and manage your account.

Product Improvement and Research: To analyze usage trends, conduct internal research, and improve our proprietary AI models and psychological methodologies. When used for research and AI training, all reasonable steps are taken to anonymize and aggregate this data before internal analysis.

Security and Fraud Prevention: To protect the integrity and security of our Services, detect security incidents, and prevvent fraudulent activity, as required under the New York SHIELD Act.

Communication: To respond to inquiries, send administrative information, and notify you about changes to our Terms or Services.

Marketing and Advertising: To send you marketing communications about our products and services. You may opt-out at any time.

We do not sell your Personal Information for monetary consideration. We may disclose your Personal Information to the following categories of third parties for the business purposes described above:

Service Providers: Third parties who perform functions on our behalf, such as cloud hosting providers (e.g., AWS, Google Cloud), payment processors, email service providers, and analytics providers. These parties are contractually required to protect the data and are prohibited from using your Personal Information for any purpose other than providing the contracted services.

Client Disclosure (SOW): In the context of a specific consulting project, we may share Work Product and underlying Client Data with the Client as defined in the governing SOW.

Legal and Regulatory: To comply with any court order, law, or legal process, including responding to any government or regulatory request, and to comply with the data breach notification requirements of the New York SHIELD Act.

Business Transfers: In the event of a merger, sale of assets, financing, or acquisition of all or a portion of our business by another company.

PsyData Labs is obligated under the New York SHIELD Act to adopt and maintain reasonable safeguards to protect the security, confidentiality, and integrity of the Private Information of New York residents.

4.1 Security Measures

We maintain reasonable administrative, technical, and physical safeguards designed to protected Private Information. These measures include:

Technical: Encryption of data in transit and at rest, access controls, network intrusion detection/prevention systems, and regular testing of security effectiveness.

Administrative: Designating security personnel, conducting employee training, and contractually requiring service providers to implement adequate safeguards.

Physical: Access restrictions to systems storing data.

4.2 Data Retention

We retain Personal Information only for as long as necessary to fulfill the purposes of which it was collected, including for satisfying any legal, accounting, or reporting requirements.

4.3 Data Breach Notification

In the event of a security breach involving Private Information that compromises its security, confidentality, or integrity, we will comply with the SHIELD Act's notification requirement, including timely notification to affected New York residents and the New York State Attorney General.

As a New York resident, while the state does not have a comprehensive consumer privacy law granting all residents a universal suite of rights, you have the right to:

Request Information: You may have the right to request information about the Personal Information we hold about you.

Request Deletion: You have the right to request the deletion of your Personal Information subject to certain exceptions.

Withdraw Consent: Where we rely on your consent to process your Personal Information, you have the right to withdraw that consent at any time.

To exercise any of these rights, please submit a verifiable consumer request using the contact information in Section 7.

Our Services are not intended for use by individuals under the age of 18. We do not knowingly collect Personal Information from children under 18. 

If we learn that we have collected or received Personal Information from a child without parental consent, we will take steps to delete that information promptly.

If you have any questions or concerns about this Privacy Policy, your rights, or our data security practices, please contact us:

Email: contact@psydata.net