Privacy Policy

InfinumGrowth (“we,” “our,” “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mental health and personal growth application (the “App”). Please read this Privacy Policy carefully. By using the App, you consent to the practices described in this policy.

1. Information We Collect

We may collect and process the following types of information:

• A. Personal Information
  • Account Information: When you create an account, we may collect information such as your name, email address, and password.
  • Profile Information: You may choose to provide additional information such as your age, gender, and mental health preferences.
• B. Health Information
  • Mental Health Data: Information related to your mental health, including your self-reported symptoms, mood tracking, and any other data you choose to enter into the App.
• C. Usage Data
  • Log Data: Information about your use of the App, such as your IP address, device type, operating system, and the pages you visit.
• D. Cookies and Tracking Technologies
  • Cookies: We may use cookies and similar technologies to collect information about your interactions with the App.

2. How We Use Your Information

We use the information we collect for the following purposes:

• To Provide and Improve the App: To operate, maintain, and improve the App and our services.
• Personalization: To personalize your experience and deliver content and features tailored to your interests.
• Communication: To send you updates, security alerts, and support messages.
• Research and Analytics: To conduct research and analyze usage trends to improve the App.
• Compliance: To comply with legal obligations and protect our rights and interests.

3. How We Share Your Information

• We do not sell your personal information. We may share your information in the following circumstances:
  • With Your Consent: We may share your information with third parties if you have given us your consent to do so.
  • Service Providers: We may share your information with third-party service providers who perform services on our behalf, such as hosting, data analysis, and customer service.
  • Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities.

4. Data Security

We implement appropriate technical and organizational measures to protect your information from unauthorized access, use, or disclosure. However, no internet-based service can be 100% secure, and we cannot guarantee the absolute security of your information.

5. Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When your information is no longer needed, we will securely delete or anonymize it.

6. Do We Transfer Information to Third Parties?

• We may share your personal information with third parties for the following purposes:
  • A. Counsellors/affiliates/partners: To provide you with counselling, psychotherapy, coaching, and mentoring services, we may need to transfer certain personal information to our trained and experienced counsellors. This transfer is necessary to facilitate and conduct the sessions effectively. We ensure that any data shared with our counsellors is done so securely and is used solely for the purpose of delivering the requested services. Our counsellors are bound by confidentiality agreements and are committed to protecting your personal information in accordance with this Privacy Policy.
  • B. Service Providers: We may share your information with third-party service providers who assist us in operating our business and providing our services.
  • C. Legal Compliance: We may disclose your information to comply with applicable laws, regulations, legal processes, or government requests.
  • D. Business Transfers: We may transfer your information in connection with a merger, acquisition, restructuring, or sale of assets.
  • E. Other: Other than the persons working for or with us, your information may also be passed on to third parties that perform services for us such as information technology suppliers, security providers, special consultants, etc.

7. Legal Basis for Processing

• A. DPDPA (Indian citizens)
  • Right to Access:
    • Information Access: Data principals have the right to access their personal data held by data fiduciaries. This includes information on the nature and scope of data collected and processed.
    • Copy of Data: They can request a copy of their personal data in a structured, commonly used, and machine-readable format.
  • Right to Correction and Erasure:
    • Correction: Data principals can request correction of any inaccurate or incomplete personal data.
    • Erasure: They have the right to request the erasure of their personal data when it is no longer necessary for the purpose for which it was collected, or if they withdraw their consent.
  • Right to Data Portability:
    • Data Transfer: Data principals can request the transfer of their personal data to another data fiduciary in a structured, commonly used, and machine-readable format.
  • Right to Restrict Processing:
    • Restriction: They have the right to restrict the processing of their personal data under certain conditions, such as when they contest the accuracy of the data or object to the processing.
  • Right to Withdraw Consent:
    • Consent Withdrawal: Data principals can withdraw their consent for processing personal data at any time. Withdrawal of consent does not affect the legality of processing based on consent before its withdrawal.
  • Right to Object to Processing:
    • Objection: Data principals have the right to object to the processing of their personal data for specific purposes, such as for direct marketing.
  • Right to Complaint:
    • Grievance Redressal: Data Principals can file a complaint with the Data Protection Board if they believe their rights under the DPDPA are being violated.
• B. GDPR (EEA Residents)
  • If you are located in the European Economic Area (EEA), we process your personal information based on the following legal grounds:
    • Consent: We may process your personal information if you have given us explicit consent to do so.
    • Contract: We may process your personal information to fulfill the terms of a contract with you.
    • Legal Obligation: We may process your personal information to comply with legal obligations.
    • Legitimate Interests: We may process your personal information to pursue our legitimate interests, provided that such processing does not outweigh your rights and freedoms.
• C. CCPA (California Residents)
  • Under the California Consumer Privacy Act (CCPA), California residents have the right to:
    • Right to Know: The right to request disclosure of the categories and specific pieces of personal information we have collected about you.
    • Right to Delete: The right to request the deletion of your personal information, subject to certain exceptions.
    • Right to Opt-Out: The right to opt-out of the sale of your personal information. Note: We do not sell personal information.
    • Non-Discrimination: The right to not be discriminated against for exercising any of your CCPA rights.
• D. PIPEDA (Canada Residents)
  • Under the Personal Information Protection and Electronic Documents Act (PIPEDA), Canadian residents have the right to:
    • Access: The right to request access to your personal information.
    • Correction: The right to request correction of inaccurate or incomplete information.
    • Withdrawal of Consent: The right to withdraw consent for processing your personal information.
• E. PDPA (Singapore Residents)
  • Under the Personal Data Protection Act (PDPA), Singapore residents have the right to:
    • Access: The right to request access to your personal information.
    • Correction: The right to request correction of inaccurate or incomplete information.
    • Withdrawal of Consent: The right to withdraw consent for processing your personal information.
• F. DPA (UK Residents)
  • Under the Data Protection Act (DPA) and GDPR, UK residents have the right to:
    • Access: The right to request access to your personal information.
    • Correction: The right to request correction of inaccurate or incomplete information.
    • Erasure: The right to request deletion of your personal information.
    • Restriction: The right to request restriction of processing of your personal information.
    • Objection: The right to object to the processing of your personal information.
    • Portability: The right to request a copy of your personal information in a structured, commonly used, and machine-readable format.
• G. LGPD (Brazil Residents)
  • Under the Lei Geral de Proteção de Dados (LGPD), Brazil residents have the right to:
    • Access: The right to request access to your personal information.
    • Correction: The right to request correction of inaccurate or incomplete information.
    • Deletion: The right to request deletion of your personal information.
    • Portability: The right to data portability.
    • Information: The right to information about public and private entities with which we have shared data.
    • Withdrawal of Consent: The right to withdraw consent for processing your personal information.

8. Children’s Privacy

We prioritize the privacy of children using our mental health counselling services for adolescents. We require parental or guardian consent before collecting any personal information from users under 18. Parents or guardians can access, review, correct, or delete their child’s information by contacting us.

9. What Measures Do We Use to Protect Your Information?

We endeavor to uphold physical, technical, and procedural safeguards that are appropriate to protect your information against loss, misuse, copying, damage or modification, and unauthorized access or disclosure. We restrict access to Personal Data to our employees, agents, affiliates, and service providers who need to know that information in order to process it for us, and who are subject to strict contractual confidentiality obligations, and who may be disciplined or whose relationship with us may terminate if they fail to meet these obligations. We take reasonable measures to protect customer information from unauthorized access, use, disclosure, alteration, or destruction. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

10. Data Minimization

We adhere to the principle of data minimization, which means we only collect and process personal data that is necessary for the specific purposes outlined in this Privacy Policy. We regularly review our data processing practices to ensure compliance with this principle.

11. Third-Party Links

Our platform may contain links to third-party websites or services. We are not responsible for the privacy practices or content of such third parties. We encourage you to review their privacy policies before providing any personal information.

12. Automated Decision-Making

We do not engage in automated decision-making or profiling that significantly affects you. Any decisions regarding your services will be made by human agents based on the information you provide.

13. Data Breach Notification

In the event of a data breach that may compromise your personal data, we will notify you without undue delay. We will provide details of the breach, its potential impact, and the measures we are taking to address the issue.

14. Data Accuracy

We strive to ensure that the personal data we hold is accurate and up-to-date. You are encouraged to inform us of any changes to your information to help us maintain accuracy.

15. Changes to Our Privacy Notice

If we decide to change our Privacy Notice, we will update the Privacy Policy Notice date below.