Privacy Policy

TibMind is a BiggerMind Group product. This policy explains how we handle information in connection with the TibMind website (www.tibmind.com) and the TibMind mobile application (together, the "Services"). You can contact us about anything in this policy at legal@tibmind.com.

This is a launch-preparation version of our Privacy Policy. It describes how the Services are designed to work and will be refined as features finalise. It is written to be accurate and careful rather than absolute.

TibMind is built privacy-first. In practice that means three design commitments:

• User control — you decide what information you add, what AI features you use, and what you remove.
• Local-first documents where possible — medical documents and scanned files are treated as user-controlled, device-side storage where possible, designed to reduce unnecessary exposure.
• Clear consent — AI features and any processing of health information you add operate with clear, specific consent inside the app.

We deliberately avoid absolute claims such as "fully private" or "zero data". Some features (for example, account sign-in or AI explanations) require processing information to work, and this policy explains that processing plainly.

Depending on how you use the Services, this can include:

• Account information — such as your name, email address, and sign-in identifiers when you create an account.
• Health information you choose to add — such as documents you scan or upload, tracker entries, medications, conditions, allergies, and family profile details. You are never required to add health information.
• Usage and device information — such as app version, device type, language settings, and diagnostic events that help us keep the Services reliable.
• Communications — messages you send us, such as early-access requests or support emails.

We use information to:

• Provide the Services — including storing what you add, generating plain-language explanations, and sending reminders you set up.
• Operate AI features you choose to use — content you submit to an AI feature (for example, a scanned report) is processed to generate the explanation or summary you requested, which may involve carefully selected service providers acting on our instructions.
• Keep the Services safe and reliable — debugging, abuse prevention, and service integrity.
• Communicate with you — responses to your messages and, with consent, launch or early-access updates.

We do not sell your personal information, and we do not use the health information you add to the app for third-party advertising.

Export and delete controls are designed into TibMind as first-class features. You can export your information, delete individual documents, logs, or profiles, and request deletion of your account and associated data. When you delete information, we are designed to remove it from active systems within a reasonable period, subject to legal retention obligations.

We share information only in limited circumstances:

• Service providers — infrastructure, authentication, and AI processing providers that act under our instructions to deliver features you use.
• Legal reasons — where required by applicable law or to protect the rights, safety, and integrity of the Services.
• Corporate context — TibMind operates within BiggerMind Group; information is handled under this policy across the group.

We do not share the health information you add with advertisers or data brokers.

TibMind is designed for users in the UK, the Gulf and wider Middle East, and internationally. Information may be processed in countries other than your own; where that happens, we aim to apply appropriate safeguards consistent with applicable data protection laws.

Depending on where you live, you may have legal rights over your personal information — such as access, correction, deletion, and portability. We honour requests to exercise these rights; contact us at the address below.

TibMind accounts are intended for adults. Family features allow an account holder to organise health information for family members, including children, as their parent or guardian. Children should not create their own TibMind accounts.

We use technical and organisational measures appropriate to the sensitivity of health information, and we design features to reduce unnecessary data exposure in the first place. No system can be guaranteed absolutely secure, which is one more reason TibMind favours user-controlled, local-first document handling where possible.

We will update this policy as the Services evolve and will change the "last updated" date above when we do. Material changes will be communicated through the Services.

Questions, requests, or concerns: legal@tibmind.com (legal) or support@tibmind.com (support).