Privacy Policy
Effective Date: October 10, 2025
Last Updated: October 10, 2025
This Privacy Policy explains how Eternity AC Inc. (“Eternity AC USA,” registered at 8 The Green, STE B, Dover, DE 19901, USA) and ETERNITYAC (Poland), NIP (VAT) 5342648830 (“Eternity AC EU,” registered in Poland) (together, “AlfredMind,” “we,” “our,” or “us”) collect, use, store, transfer, and protect your personal data when you use our website at https://alfredmind.com and related services (the “Services”).
1. Who We Are
AlfredMind is a digital platform for psychological and personality assessments and self-analysis tools.
The website is operated by:
-
United States & non-EU/UK users:
Eternity AC Inc.,
8 The Green, STE B, Dover, Delaware 19901, USA -
EU/UK users:
ETERNITYAC, Poland
NIP (VAT): 5342648830
Both entities are joint data controllers under GDPR Article 26(2). Questions? Contact us at: [email protected]
2. What Data We Collect
| Category | Examples | Purpose |
|---|---|---|
| Identity Data | Name, email address | Account creation, communication |
| Test Responses / Psychological Data | Answers to AlfredMind tests | To generate personalized insights and reports |
| Technical Data | IP address, device type, browser, OS, cookies | Security, performance, analytics |
| Usage Data | Session duration, clicks | Service improvement |
| Communications Data | Support emails | Feedback and support |
We do not collect sensitive data unless you voluntarily provide it in free-text fields.
3. How We Use Your Data
- Operate and deliver our Services
- Generate test results and insights
- Maintain platform security and performance
- Respond to support requests
- Conduct internal analytics
- Comply with legal obligations
- Send product updates (with consent)
We never sell your personal data or use it for third-party marketing.
4. Legal Bases for Processing (GDPR)
For EU/UK users, we rely on these lawful bases:
| Purpose | Data | Legal Basis | Explanation |
|---|---|---|---|
| Service access | Account, test responses | Contract | To provide requested services |
| Generate reports | Test responses | Consent | Explicit consent required |
| Support & communication | Identity, communication | Contract / Legitimate interest | Support and maintenance |
| Analytics | Technical, usage | Legitimate interest | Improve service quality |
| Legal compliance | Logs, billing | Legal obligation | Tax and consumer law |
| Security | Technical identifiers | Legitimate interest | Fraud prevention |
Special category data is only processed with your consent. Withdraw anytime via [email protected].
5. Profiling and Automated Decision-Making
We use algorithms to analyze your answers and generate insights. These do not produce legal effects. You may request human review at any time.
6. Cookies & Tracking
- Essential cookies – core functionality
- Analytics cookies – traffic metrics
- Preference cookies – language and theme
For EU/UK users, cookies are used only after consent via banner. You can revoke consent anytime.
7. Data Sharing & Third Parties
We may share your data with:
- Service providers (hosting, analytics)
- Legal and compliance consultants
- Regulatory authorities
- Affiliates (technical/admin operations)
All third parties operate under GDPR-compliant contracts and may not reuse your data.
8. International Data Transfers
Your data may be processed in the USA, Poland, or other countries. Transfers are protected by SCCs or equivalent safeguards.
9. Data Retention & Deletion
We retain data as needed for service delivery and legal compliance. Accounts inactive for 24+ months are deleted or anonymized. Backups purge within 30 days. Request deletion at [email protected].
10. Security Measures
- Encryption in transit and at rest
- Strict access controls
- Real-time monitoring
- Regular security audits
11. Your Rights
Under GDPR, you may:
- Access your data
- Correct inaccuracies
- Request deletion
- Restrict processing
- Transfer your data
- Object to processing
- Withdraw consent
Contact us at [email protected]. We respond within 30 days. You may also contact your local Data Protection Authority.
12. Children’s Privacy
Our Services are not intended for children under 13 (US) or 16 (EU/UK). If a minor’s data is submitted, notify us immediately. We will delete the data.
13. Changes to This Policy
We may update this Policy. Material changes will be communicated via email or banner. The latest version is always effective by the "Last Updated" date.
14. Contact Us
For questions, contact us at: [email protected]