Privacy Policy

MindTalk respects your privacy. This document explains what data we collect and how we use it. Processing follows GDPR and Georgia's Personal Data Protection Law.

Last updated · 2026-04-23

This document is a plain-language summary. Please wait for the fully-legal version reviewed by counsel before relying on it.

What we collect

Account info (email, phone, name), payment metadata (last 4 card digits — we do not store full card numbers), session logs, and verification documents for clinicians.

Chat content

Chat messages are stored encrypted and accessible only to session participants. Our automated system scans for crisis keywords (e.g. suicidality) to surface care in emergencies.

Who we share with

Only for specific purposes: payment processors (TBC/BOG/Stripe), verification provider (Sumsub), emergency services in crisis situations. We never sell data.

Your rights

Access, rectification, erasure, portability, objection to processing. Requests to privacy@mindtalk.ge — we respond within 30 days.

Retention

Account data — until deletion. Session records — 2 years. Payment logs — as required by financial regulations (typically 7 years).

Questions? Email privacy@mindtalk.ge.