Privacy Policy

Last Updated: July 2026

Effective Date: These Terms become effective on the date you first access or use TMatch, or when you explicitly agree to them during account registration.

TMatch is a service provided by Tmind AI Inc., doing business as TMatch (“TMatch,” “we,” “us,” or “our”). This Privacy Policy explains how we collect, use, disclose, and safeguard information through TMatch, including Tracy and related matching, booking, communication, payment, and care-navigation features.

TMatch is not a healthcare provider. When applicable, TMatch may act as a Business Associate under HIPAA in support of providers or covered entities. Information that is not governed by HIPAA may still be protected by state privacy laws, consumer health data laws, professional confidentiality obligations, contract, or other legal requirements.

Information We Collect

We may collect personal and account information, health-related and matching information you choose to provide, provider and practice information, usage and interaction information, support communications, booking activity, payment information where applicable, and device, browser, IP address, and log information.

Payment information may include billing details or payment-method information collected through our payment processor for self-pay bookings, provider plan billing, or payout setup. TMatch does not store complete card or bank-account numbers when those credentials are collected directly by the payment processor.

How We Use Information

We may use information to provide matching, care navigation, booking, scheduling, reminders, communication, support, Tracy and other AI-assisted features, non-diagnostic summaries, self-pay payment processing, provider payouts, account billing, fraud review, refunds, disputes, verification, profile publication, platform operations, security, analytics, and legal or compliance functions.

We may create de-identified or aggregated information for analytics, security, research, product improvement, quality improvement, and business operations, where permitted by law and applicable agreements.

We do not train AI models on identifiable client health information without explicit consent where required.

Tracy and AI-Assisted Processing

Tracy may analyze information you provide, including conversation history and account/profile data, to organize intake information, summarize stated needs and preferences, and suggest potentially compatible providers.

AI-generated content may be incomplete, inaccurate, or based on limited information. Tracy does not provide diagnosis, treatment, medical advice, legal advice, clinical judgment, crisis intervention, or emergency services.

How We Share Information

We may share information with providers you choose, book with, are matched with, or authorize us to connect you with; supervisors, practices, schools, placement sites, employers, clinics, billing entities, or other authorized organizations where needed; service providers and vendors supporting platform operations; and legal, regulatory, safety, or compliance recipients when required or permitted by law.

We do not sell personal information.

HIPAA and Health Information

When TMatch creates, receives, maintains, or transmits PHI on behalf of a HIPAA Covered Entity, TMatch handles that PHI in accordance with applicable HIPAA requirements and any applicable Business Associate Agreement.

TMatch may also handle health-related information that is not PHI. Such information may still be protected by other privacy, confidentiality, or consumer health data laws.

Security

We use administrative, technical, and physical safeguards designed to protect information handled through TMatch. No system can be guaranteed completely secure. You are responsible for protecting your account credentials and for using appropriate safeguards on your own devices and networks.

Your Choices and Rights

Depending on applicable law and the type of information involved, you may request access, correction, deletion, restriction, or information about certain disclosures. Some requests may be limited by legal, clinical, billing, record-retention, safety, or compliance requirements.

To make a request, contact hi@tmind.ai.

Data Retention

We retain information for as long as reasonably necessary for platform operations, security, compliance, legal obligations, dispute resolution, business records, and the purposes described in this Policy, unless a longer or shorter period is required by law or applicable agreement.

Updates

We may update this Privacy Policy to reflect product, business, legal, or regulatory changes. If changes are material, we will provide notice as required by applicable law.

Contact

If you have questions or concerns, contact hi@tmind.ai.