BrainBestLifeLab
Home

Privacy Policy

How BrainBestLifeLab Ltd. collects, uses and protects personal and wellness data on our nature and mindfulness platform.

Operator and Scope

Operator: BrainBestLifeLab Ltd., a company established under the laws of the Republic of Uzbekistan. This Privacy Policy applies to all services available at BrainBestLifeLab.space including guided programs, wellness tracking, nature trail mapping and community forums. We combine Uzbek data protection safeguards and international standards, and provide special transparency for European Economic Area (EEA) users.

Types of Data We Collect

  • Wellness & brain data – optional brainwave analytics, session timestamps, meditation history and mood-tracking metrics collected with explicit consent to personalize experiences.
  • Nature trail GPS – voluntary GPS routes and waypoints recorded during guided immersions to enable maps and recommendations.
  • Usage & device data – app and web logs, device type, IP and basic diagnostics for security and service quality.
  • Community content – posts, comments and shared media that you publish; you remain the owner of your content.
  • Authentication & contact – email, username and optional phone for account and support.

Legal Bases and How We Use Data

We process data based on your consent, to provide contractual services, for legitimate interests such as safety and fraud prevention, and to comply with legal obligations. Uses include personalized practice recommendations, safe storage of trail data, analytics to improve the platform, community moderation and account administration.

Cookies and Analytics

We use essential and functional cookies for login and session continuity. Optional cookies support analytics and product improvement. EEA users are prompted to accept or reject non-essential cookies via a persistent cookie banner. You can change preferences at any time in your account settings or by contacting support.

Data Storage, Retention and Transfers

Primary servers are located in Uzbekistan. Where necessary, we transfer data to subprocessors or service providers within jurisdictions that uphold adequate protections. For EEA users we implement safeguards such as EU-standard contractual clauses and documented technical measures. Retention periods are purpose-driven: usage logs and transactional records are retained for up to 3 years, account and profile data for as long as the account is active, and anonymized analytics retained for long-term research.

EEA Rights under GDPR

If you are in the EEA you have the right to access, rectify, erase, restrict processing, object, and obtain portability of personal data. You may withdraw consent at any time without affecting processing prior to withdrawal. To exercise these rights contact us at [email protected]. We will verify requests to protect privacy.

Children and Minors

Our services are not directed at children under 16. We do not knowingly collect personal data from persons under 16. If you believe we have collected such data, contact support and we will take prompt steps to remove it.

Security

We apply technical and organizational measures to protect data, including encryption in transit, access controls, and regular security assessments. No system is completely secure; in the unlikely event of a breach we will follow applicable notification rules under Uzbek law and GDPR where relevant.

Processors and Third Parties

We share data with trusted processors who act under our instructions, such as hosting, analytics and payment providers. We require contractual safeguards and limit third-party use to necessary purposes. We do not sell personal data.

Automated Decisions

We may use automated analysis to tailor recommendations. You have the right to meaningful human review and to express your views where automated decisions significantly affect you.

Contact and Complaints

Contact: [email protected]. Postal contact and other support details are available on the Contact page. For EEA residents you also have the right to lodge a complaint with a supervisory authority in your Member State.

Changes to this Policy

We may update this Privacy Policy to reflect new services or legal changes. Material changes will be communicated through the platform and via the "Last updated" date shown below.