1. Scope of the Privacy Policy

This policy applies to all personal and non-personal data collected by MindsForest through:

• Our website (accessible globally).
• Market research activities, including surveys, focus groups, and interviews.
• Communication channels, including email, phone, and third-party platforms.
• Partnerships and vendor collaborations.

We operate in compliance with GDPR, CCPA, and India’s IT Act, 2000.

2. Information We Collect

A. Personal Data

• Identity Information: Full name, title, and professional credentials.
• Contact Details: Email addresses, phone numbers, and physical addresses.
• Professional Information: Company name, job title, and industry.

B. Research Data

• Responses to open-ended and close-ended questions.
• Audio, video, and written recordings (with explicit consent).

C. Technical Data

• Browser types, operating systems, and device identifiers.
• IP addresses, geolocation data, and usage statistics.
• Cookies for analytics, personalization, and marketing purposes.

D. Sensitive Data

In healthcare and sensitive research areas, we may collect information such as health conditions or medical history, processed with strict safeguards.

3. How We Use Your Information

1. Market Research Services: Providing customized insights for clients.
2. Operational Efficiency: Streamlining processes and optimizing user experience.
3. Data Analytics: Identifying trends, behavior, and preferences using advanced AI tools.
4. Legal Compliance: Meeting obligations under GDPR, CCPA, HIPAA, and ISO 20252 standards.
5. Marketing and Engagement: Sending updates, newsletters, or promotional materials (with consent).

4. Data Sharing and Disclosure

We do not sell personal data. However, data may be shared with:

A. Third-Party Processors

For services such as cloud storage, survey platforms, and payment processing.

B. Research Partners

For co-branded studies, ensuring contractual obligations are met.

C. Legal Authorities

When required to comply with legal or regulatory mandates.

5. Security Measures

We implement robust security frameworks, including:

• Encryption: Using SSL/TLS for data in transit and AES-256 for data at rest.
• Access Control: Multi-factor authentication and role-based access permissions.
• Regular Testing: Vulnerability assessments and penetration testing.
• Incident Response: A detailed plan for detecting, reporting, and mitigating breaches.

6. Your Data Rights

Under applicable laws, you have the right to:

• Access your data.
• Correct inaccuracies.
• Request data portability.
• Restrict processing.
• Withdraw consent at any time.
• File complaints with data protection authorities.

Email us at [Insert Email Address] to exercise these rights.

7. Data Retention Policy

We retain data only as long as necessary for client contracts, legal compliance, or anonymized archival purposes.

8. International Data Transfers

Your data may be transferred globally, with safeguards like Standard Contractual Clauses (SCCs) and encryption.

9. Cookies and Tracking Technologies

We use cookies for essential operations, performance monitoring, and advertising. Manage preferences via your browser or our Cookie Management Tool.

10. Updates to This Privacy Policy

We periodically revise this policy. The latest version will always be available on our website.

11. Contact Information