Skip to content

Privacy Policy and Innovations

TruMind.ai complies with the General Data Protection Regulation (GDPR) for users in the European Economic Area and United Kingdom.  EU representative appointment is in progress.

Effective Date: April 21, 2026

1. Introduction

This Privacy Policy explains how TruMind.ai ("we," "us," or "our") collects, uses, and protects your information when you use our psychometric assessment services (the "Service"). Your privacy is the foundation of our technology, and we are committed to transparency and protecting your data.

2. Our Data Promise: Privacy by Design

Our Service analyzes conversation transcripts to provide you with psychometric measurements and developmental feedforward (our "Analysis"). Our entire process is built on a simple, powerful promise:

  • We treat your data with the same security as private healthcare data (HIPAA). We use three industry leading approaches to ensuring zero data goes to any other organization:
    • Our earliest studies showed that even open source models are super-human for AI Measurement, so we only use open source models for our AI Measurements. We never share your data with any other organization, as OpenAI, Anthropic, Google or other providers use those data for training.  We never do.
    • Trusted Execution Environment. Our AI runs inside a hardware-isolated enclave operated by external TEE partners (NEAR AI Cloud, Phala Network and Venice.ai). GPU providers cannot access your prompts. Verified by remote attestation. This allows for hardware-verified privacy, GPU operator cannot see data

      • The enclave isolates computation from the host OS, hypervisor, and infrastructure operator. Software on the CPU and GPU can be trusted not to have been tampered with at the system level.

        Remote attestation produces a cryptographic certificate proving the model runs inside a genuine enclave — we can validate it independently outside our partners infrastructure.

        • We no longer need to trust the GPU operator, but you are still trusting TruMind.ai that raw data in transit is not retained (it's not).
        • TruMind.ai does not run TEE infrastructure itself.
        • Further Reading: Intel TDX Demystified 
        • Further Reading: Confidential Computing on NVIDIA
  • We Do Not Use Your Data to Train Our AI Models. Our unique methodology is built on decades of established science in psychometrics and psychology. This allows us to deliver highly precise analysis using pre-validated models, which means we don't need to learn from your private data—and we never will.
  • No Transcript Storage. The content of your conversations is processed temporarily in-memory and is immediately and irrevocably discarded the moment your Analysis is generated.  We only store measurements and meta-data for your display in your dashboard.  
  • You Control Your Results. We only store the resulting Analysis, which belongs to you. You can view, manage, and permanently delete this data from your account at any time.

3. Information We Handle & Data Retention

  • Information You Provide: Your name, email, and password. For paying customers, our secure payment processor handles billing details.
  • Information We Process Temporarily: Meeting transcripts that you explicitly authorize. This data is never stored.
  • Information We Generate and Store for You: Your psychometric Analysis. We retain your Analysis data for as long as your account is active. If you close your account, account and analysis data is permanently deleted within 30 days. With your consent, upon account closure, we will only retain anonymized research data that is aggregated and cannot be attributed to anyone.

4. How We Use Your Information

  • To Provide and Maintain the Service: To create your account, generate your Analysis, and display it to you.
  • For Service Validation and Enhancement (With Your Consent): With your explicit consent, we may use your anonymized, aggregated Analysis data for limited internal research to validate the statistical accuracy and fairness of our methods and explore new features. This is not AI training. You can opt-out at any time in your account settings.
  • To Communicate With You: For essential service-related, billing, and support messages.
  • For Safety and Security: To prevent fraud, enforce our Terms of Service, and comply with legal obligations.

4a. Automated Decision-Making and Profiling

Our Service generates psychometric Analysis based on automated quality controlled processing of conversation transcripts. This Analysis is provided for developmental and coaching purposes. You have the right to:

  • Request human review of any Analysis
  • Express your point of view regarding the Analysis
  • Contest the Analysis and request re-evaluation

Our Analysis does not produce legal effects or similarly significant effects regarding access to services. It is a developmental tool, not an employment or qualification decision.

5. How We Share Your Information

We do not sell your personal data. We only share information under these limited circumstances:

  • Service Providers: With trusted third parties for essential services like secure cloud hosting and payment processing, who are contractually bound to protect your data.
  • Legal Compliance: If required by law, or if we have a good faith belief that such disclosure is reasonably necessary to protect the rights, property, or safety of our company, our users, or the public.
  • Business Transfers: In the event of a merger or acquisition, we will notify you before your information is transferred and becomes subject to a different privacy policy.

6. Your Data Rights and Choices

You have complete control over your information. This includes the Right to Access, Rectify, Erasure, and Object to certain processing as described below. You can exercise these rights via your account settings or by contacting us. In addition to the rights listed above, you have the right to:

  • Restrict processing of your personal data in certain circumstances

  • Data portability — receive your data in a structured, commonly used format

  • Withdraw consent at any time where processing is based on consent, without affecting the lawfulness of processing before withdrawal

  • Not be subject to solely automated decision-making if desired, we can supply expert human review (see Section 4a above)

7. International Users & Data Transfers

Our Service is global. Your information may be transferred to, and processed in, countries outside your country of residence, including the United States, which may have different data protection laws. Where required, we implement legally-provided mechanisms to protect data across borders, such as Standard Contractual Clauses.

  • Legal Basis for Processing (EEA/UK Users): If you are in the European Economic Area or the UK, we process your personal data based on: (a) your consent; (b) the need to perform our contract with you; or (c) our legitimate interests in providing and improving the Service, which do not override your fundamental rights and freedoms.
  • Your Rights under GDPR/CCPA: Depending on your location, you may have additional rights, such as the right to restrict processing, object to processing, or request data portability.
  • Special Category Data: Our psychometric analysis is designed to reveal information about you and your client's psychological characteristics for both stakeholder's development. We process these data based on your explicit consent and with appropriate safeguards. You may withdraw this consent at any time.

8. Data Security

We implement industry-standard technical and organizational security measures to protect your information. In the event of a personal data breach, we will notify affected users and the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR Article 33.

9. Cookies and Tracking Technologies

We only use essential cookies and similar technologies to provide and improve our Service, such as remembering your login status and preferences. We do not use them for advertising. You can control cookies through your browser settings. Where required by law, we obtain your consent before placing non-essential cookies on your device.

10. Children’s Privacy

Our Service is not intended for or directed at children under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have, we will take steps to delete such information.

11. Changes to This Privacy Policy

We may update this policy. If we make material changes, we will notify you by email or through an in-app notice before the changes take effect.

12. Contact Us

If you have any questions about this Privacy Policy, please contact privacy@trumind.ai