Privacy Policy

Last updated: May 2025

1. Who We Are

MindTrellis provides AI-powered chatbot and hair analysis software for hair transplant clinics. We act as a data processor on behalf of clinics (data controllers) when handling patient data.

Contact: privacy@mindtrellis.com

2. What Data We Collect

Contact information: Name, phone number, email address (only when voluntarily provided)
Hair analysis photos: Images you upload for AI analysis
Conversation data: Messages exchanged with the AI assistant
Usage data: Anonymized interaction logs for service improvement

We do not collect medical diagnoses, health records, or payment information.

3. How We Use Your Data

To provide AI-powered hair consultation responses
To analyze uploaded photos and estimate hair transplant requirements
To connect you with the clinic you contacted
To send you a confirmation email if you provided your address

Legal basis: Consent (Article 6(1)(a) GDPR) — you voluntarily submit the form and photos.

4. Data Storage & Security

All data stored in the EU (Frankfurt, Germany) on Supabase infrastructure
Photos stored in private encrypted buckets — never publicly accessible
Image access links expire after 1 hour
Data retained for maximum 30 days unless the clinic requires otherwise
All connections encrypted via TLS 1.2+

5. Your Rights (GDPR)

Access: Request a copy of your data
Rectification: Correct inaccurate data
Erasure: Request deletion of your data
Portability: Receive your data in machine-readable format
Objection: Object to processing of your data

To exercise any right: privacy@mindtrellis.com

6. Important Disclaimer

MindTrellis does not provide medical advice. The AI assistant provides general information and estimates only. Always consult a qualified medical professional before making any health decisions. Hair transplant procedures must be assessed and performed by licensed physicians.

7. Cookies

We use session cookies for authentication only. No advertising or tracking cookies are used.