Ironmind.ai Privacy Statement: Use of Wearable Health and Activity Data

Effective Date: June 10, 2025

At Ironmind Inc., we are committed to protecting the privacy and security of all users, including athletes, coaches, and organizational partners. This Privacy Policy describes how we collect, use, and disclose personal health and activity data—particularly from third-party integrations such as Garmin Connect—through our platform at www.ironmind.ai.

By using our services and connecting your wearable device, you agree to the terms outlined in this policy.

1. Who We Are

Ironmind Inc. is a Delaware-registered C-Corp with headquarters in San Francisco, California. We build AI-powered tools for mental and physical performance optimization, primarily targeting elite athletes, military personnel, coaches, and clinical partners. This privacy policy applies to data collected via our website and our associated applications and services.

2. What We Collect from Garmin Connect

If you authorize Ironmind to access your Garmin Connect account, we may collect and process the following information:

• Biometric and physiological data (e.g., heart rate, HRV, sleep, VO₂ max, respiration rate, stress levels)
   
• Physical activity and training logs (e.g., workout type, intensity, duration, GPS movement patterns)
   
• Device metadata (e.g., device type, firmware, sync timestamps)
   

This data is retrieved only with explicit user consent and used to generate insights, alerts, and mental performance recommendations within the Ironmind platform.

3. How We Use This Data

We use your Garmin data for the following purposes:

• To deliver personalized mental performance feedback and coaching insights
   
• To generate AI-powered analytics on stress, recovery, and readiness
   
• To support clinicians or coaches (if authorized by the user)
   
• To improve our product and validate outcomes through aggregated, anonymized analysis
   
• To maintain system functionality and user experience integrity
   

We do not sell, share, or commercialize user health data to third parties.

4. How We Share and Protect Your Data

We may share your data only under the following conditions:

• With third-party service providers operating under strict contractual confidentiality agreements
   
• With authorized partners (e.g., coaches or clinicians) only after explicit user consent
   
• When required by law, regulation, or legal process
   
• As part of a business transfer or acquisition, under applicable confidentiality agreements
   
• In fully anonymized or aggregated form, for research or internal analytics
   

All data is encrypted in transit and at rest. We adhere to GDPR principles and follow HIPAA-aligned security protocols.

5. User Rights and Controls

Users can access, manage, or revoke data sharing at any time by logging into their Ironmind account or disconnecting their Garmin Connect integration.

You have the right to:

• View and access your data
   
• Request correction or deletion of personal information
   
• Withdraw your consent at any time
   
• Request export of your data in a machine-readable format
   

To exercise your rights, contact us at privacy@ironmind.ai.

6. Legal Authority & Contact

This policy is managed and overseen by Privacy Officer at Ironmind.ai and authorized legal representative of Ironmind Inc. Any request to Garmin or similar third parties to access health or device data is made solely for authorized, non-personal, commercial use, in support of Ironmind’s platform.

Ironmind does not collect data for personal use. If you wish to manage your personal Garmin data, please visit: www.garmin.com/en-GB/account/datamanagement

7. Policy Availability

This policy is publicly accessible and linked directly from the homepage of https://www.ironmind.ai. All updates will be clearly marked with a revised date.

Ironmind Inc.

San Francisco, CA, USA

Email: privacy@ironmind.ai

Website: https://www.ironmind.ai