This privacy policy ("Privacy Policy") governs the data collection, processing, and usage made by Reflect Innovation Ltd. ("Company", "we" or "us").
This Privacy Policy concerns the data we collect from individuals:
Each of the Visitors and Users, shall also be referred to herein as "you".
By using our Website, App and Product, you agree to this Privacy Policy, which shall be read together with our Terms of Use.
This Privacy Policy constitutes an integral part of the Website Terms of Use and the Product's End User License Agreement (together "Terms"). Definitions used herein but not defined herein shall have the meaning ascribed to them in the Terms.
If you do not agree with this Privacy Policy, do not use our Services, Product, App and Website or provide us with your Personal Information (as defined below). If you choose not to provide your consent for the processing activities described below, we might not be able to provide you with our Services, Product, App and Website.
If you have any questions about this Privacy Policy, please contact us at: hello@meetreflect.com.
We reserve the right to periodically amend or revise the Privacy Policy, which will immediately affect the implementation of the revised Privacy Policy on our Website or App. The last revision date will be reflected in the "Last Modified" heading located at the top of the Privacy Policy. We will make a reasonable effort to notify you if we implement any changes that substantially change our privacy practices. We recommend that you review this Privacy Policy periodically to ensure that you understand our privacy practices and to check for any amendments.
Reflect Innovation Ltd.
Ha'Manofim 11,
Herzlia, Israel
Questions, comments, requests and complaints regarding this Privacy Policy and the information we hold are welcome and should be addressed to us by using the contact details above. All requests will be dealt with promptly and efficiently.
We may collect aggregated, non-personal and non-identifiable information which may be made available or gathered via your use of our website or App ("Non-Personal Data"). We are not aware of the identity of the individual from which the Non-Personal Data is collected.
Also, we may sometimes process and anonymize or aggregate personal data and identifiable information in a manner that shall create a new set of data that will be Non-Personal Data. Such a new data set can no longer be associated with any identified person.
Non-Personal Data may be used by us or third parties without limitation and for any purpose, including for commercial, academic, research, or statistical purposes, without further notice to you.
During your use of the Website or the App and the Product, we will collect individually identifiable information, namely information that identifies an individual or may with reasonable effort be used to identify an individual ("Personal Data" or "Personal Information" as defined under applicable law). This may include online identifiers, name, emails, etc., subject to applicable law.
If we combine Personal Data with Non-Personal Data, we will treat the combined data as Personal Data.
Please note that certain data protection laws and regulations, such as the GDPR typically distinguish between two main roles for parties processing Personal Information: the "Data Controller", who determines the purposes and means of processing; and the "Data Processor", who processes the data on behalf of the Data Controller. Please see the below explanation where we elaborate how these roles that apply to our Services, to the extent that such laws and regulations apply.
We are the "Data Controller" of our Users and Visitors Personal Data. With respect to such Personal Data, we assume the responsibilities of Data Controller (solely to the extent applicable under law), as set forth in this Privacy Policy. In such instances, our service providers processing such data will assume the role of "Data Processor".
We may be considered the "Data Processor" of the Personal Information we process on behalf of our B2B Customers ("Customers") who we provide our Products to be distributed to their designated end users (and who are the "Data Controller" of such Personal Data). Our service providers who process such user Personal Data on our behalf are the "Sub-processors" of such Personal Data.
We may provide Customers who are employers with periodic, aggregated reporting designed to help such Customers understand employees' overall engagement, impact, and satisfaction. Reports are provided in aggregated and de-identified form and are intended to present insights at the population level only. We do not include in any report any information that would reasonably allow the identification of any individual employee, and we will not share individual-level responses, activity, or outcomes with the Customer.
Customers represent that they have all the necessary rights and to the extent required, applicable consents, for us to generate the report and distribute it to the applicable customers and in general, to provide us with the Personal Data for the provision of the Product, App and Services to their designated users.
We have included in the table below information about which data is processed, how we process and use your data and the lawful basis for which we do so subject to the GDPR.
| Type of Data | Purpose of Processing | Lawful Basis |
| As part of becoming a User and Using the Product and the App: | ||
| If you are or wish to buy the Product, become a user of the Services, you will be required to provide us with certain information such as:Identification and contact data: Full name, Email address, Username and password, etc.Account data: Name, Email, Age, Gender (including non-binary, etc.).Transaction and Reservation data: your address and method of payment detailes;Gender data.GSR and ECG signals are collected through the Product.Usage data – date and time of use, for how long, number of sessions, etc.Geo-location authorization for the use of BLE. Other data related to your health status and the reasons led you to use our Services. | We will use this data to designate your App account and allow you to use the Product and the App supporting its operation.We will use your transaction and Reservation data to allow you to order the product and ship it to you. Your credit card data shall be always kept confidential undethe relevant regulation.Also, your email address will be used to send you needed information related to our App (e.g., notify you regarding any updates to our App, etc.) and promotional and marketing emails.Also, we will use this data to adjust the Product, Services and App for your needs and optimize your benefit from its use. As explained, we will obtain geo-location authorization for using your BLE connectivity for connecting the Product and the App. We also may use this data for upgrading and developing our Services. | Our lawful basis under the GDPR for collecting most of this information is initialy the performance of a contract (i.e., providing you the Services as per your request). You credit card data and shipment information are also being collected for completing your order and fulfilling the Contract between us.When we will use your contact info for contacting you with marketing offers, we will do so as part of our legitimate interests.When we use your data for upgrading and improving the Services, we will do that under our legitimate interest, after minimizing our use of your identification data and keeping it confidential and secured. |
| When and if you will contact us with any inquiry or request | ||
| If you voluntarily contact us in any manner, whether for support, to submit a request or for other inquiries, whether by sending us an email or through other means of communications, e.g., any online form available on the Website, you may be asked to provide us with your contact information such as your full name, email address and country. | We will use this data and our contact history solely to respond to your inquiries and provide you with the support or information you have requested. We will retain our correspondence with you for as long as needed, subject to applicable law. | The lawful basis for processing your information will be the contract between you and us, meaning we will use the data for addressing your requests and inquiries.After completing any such request, we will retain your information as part of our business records under our legitimate interest.Some of our Services' data might be processed under our legal obligation, such as safety requirements. |
| Online identifiers and other Technical Data | ||
| When you access our website or interact with our App, we may collect certain online identifiers, including your IP address, Advertising ID, and IDFA.We may also collect technical Non-Personal Data transmitted from your device (e.g., actions in the Website or App, your browser type, language used, type of operating system, type of device, etc.) and approximate geographical location (country).*** please see the following paragraph regarding Cookie usage | We use this data for our legitimate interests of (i) operating, providing, maintaining, protecting, managing, customizing, and improving the Website and how we offer it; (ii) enhancing your experience; (iii) auditing and tracking usage statistics and traffic flow; (iv) protecting the security of the Website, as well as our and third parties' rights (subject to applicable law requirements); and (v) advertising purposes | Such processing is part of our legitimate interests as a commercial business.If we use third-party cookies on the Website or collect online identifiers, we will obtain your consent if required under applicable law. |
| Recruitment Data if you apply for any position in our Company | ||
| Suppose you apply for any position in our Company through the Website or elsewhere. In that case, we may collect information regarding your job status, education, CV, requested salary, and other information to be collected as part of any recruitment process. | We will use such information for the recruitment process for checking your suitability for job opportunities in our Company. Also, we may keep it afterward as part of our business records. | The lawful basis for such processing will be the contract between us – we process your data as per your application to a position within our Company.After the recruitment process, we may keep your information under our legitimate interests as part of our ongoing business records and for future protection from any potential legal suit. |
| Subscribing to our Newsletter list or Product's waiting list | ||
| Email, Name, Country | We will use that information for adding you to the Product's waiting list and providing you with news and information regarding the Product and our Services. | We will do that under your Consent as provided in the Website while subscribing to the newsletter list or waitin list. You can always withdraw your consent by contacting us as detailed hereunder. |
COOKIES USAGE
Like many other websites, the Website and parts of our System use cookies to improve your experience while you navigate the Website. We may use various types of Cookies:
Please note that the data collected by the use of Cookies may be linked to and combined with any other data, including Personal Data.
Also note, that Cookies data is usually collected through third-party services, like Google, Facebook, etc. In those cases, your Personal Data might be transferred to those third parties, which might use it, as a "joint controller" of the data, meaning that the data is also "owned" and processed by them under their terms and conditions. Under those terms and conditions and the direct accounts or subscriptions you have with those third parties, your Personal Data might be linked to other data collected by the relevant third party and processed in its systems, for its purposes, and under its management. For example, suppose you have a Facebook account, the Personal Data collected through Facebook's Cookies in Our Website might be linked to other data Facebook collects and might be used by Facebook per the independent agreements between you and Facebook.
What Are Your Choices Regarding Cookies?
If you'd like to delete cookies or instruct your web browser to delete or refuse cookies, please visit the help pages of your web browser, or use the designated Cookies Bar in the Website.
Please note, however, that if you delete cookies or refuse to accept them, you might not be able to use all of the features we offer, you may not be able to store your preferences, and some of our pages might not display properly.
For the Chrome web browser, please visit this page from Google
For the Internet Explorer web browser, please visit this page from Microsoft
For the Firefox web browser, please visit this page from Mozilla
For the Safari web browser, please visit this page from Apple
For any other web browser, please visit your web browser's official web pages.
Where Can You Find More Information About Cookies?
You can learn more about cookies and the following third-party websites:
SHARING DATA WITH THIRD PARTIES
We donotshare anyPersonal Datacollected from you with third parties or any of our partners except in the following events:
Text Messaging and SMS Communications
If you provide your phone number and opt in to receive SMS or text messages from us, we may send you transactional or service-related communications, including account notifications, order updates, support responses, and program-related messages.
We do not sell, rent, or share SMS opt-in information, including text messaging originator opt-in data and consent, with any third parties for marketing or promotional purposes.
All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
YOUR DATA SUBJECTS' RIGHTS UNDER PRIVACY PROTECTION LAWS
Under EU law, EU residents and individuals have certain rights to apply to us to provide information or make amendments to how we process data relating to them. Those rights might include:
We may not always be able to do what you have asked. Also, not all those rights apply in every jurisdiction. Yet, we encourage you to contact us with any such request, and we will be happy to assist you. To exercise these options, please contact us at hello@meetreflect.com.
If we are a Data Processor with respect to your Personal Information, we will notify the relevant Customer about your request and make our best efforts to enable them to allow you to exercise your rights.
AT ANY TIME, CONTACT US AT HELLO@MEETREFLECT.COM IF YOU WANT TO WITHDRAW YOUR CONSENT TO THE PROCESSING OF YOUR PERSONAL INFORMATION. EXERCISING THIS RIGHT WILL NOT AFFECT THE LAWFULNESS OF PROCESSING BASED ON CONSENT BEFORE ITS WITHDRAWAL.
You have the right to lodge a complaint at any time before the relevant supervisory authority for data protection issues. However, we will appreciate the chance to deal with your concerns before you approach the authorities, so please feel free to contact us in the first instance.
Notice to US Residents
Some U.S. state privacy laws require specific and transparent disclosures, which include the provision of a clear and accessible privacy notice that includes the categories of Personal Information processed, purpose of processing, instructions for exercising consumer rights and appealing decisions, categories of Personal Information shared with third parties, categories of third parties with whom Personal Information is shared, and details on any sale of Personal Information which may include processing conducted for the purpose of targeted advertising.
Under the sections "Processing of Personal Data – Purposes and Lawful bases" of this Privacy Policy, we describe our practices regarding the collection and processing of Personal Information, the categories of Personal Information that are collecting and processing, and the purposes for which Personal Information is processed, stored or used.
Under the section "Sharing Data with Third Parties" of this Privacy Policy, we detail and disclose the categories of third parties we share Personal Information with for business purposes. We will not collect additional categories of Personal Information or use the Personal Information we collected for a materially different, unrelated, or incompatible purpose without obtaining your consent.
Depending on your residence and subject to applicable exceptions, you may have certain privacy rights regarding your Personal Information. These include the right to know details about how we process your Personal Information; the right to request the deletion of your Personal Information; the right to request corrections to your Personal Information; and the right to be free from discrimination when exercising any of these rights. You may submit a request through hello@meetreflect.com to exercise your privacy rights as outlined here or to obtain more information regarding disclosures under U.S. law.
"Sale" of Personal Information: Under certain US privacy laws the term "sale" is referring to disclosing or making available Personal Information to a third-party in exchange for monetary or other valuable consideration, including for targeted advertising purposes. We do not "sell" information as most people would commonly understand that term, we do not, and will not, disclose your Personal Information in direct exchange for money or some other form of payment. However, subject to the definition of the term "Sale" under certain US privacy laws, we may "sell" the following categories of Personal Information when we use cookies or other third-party services:
Further, depending on your state of residency, you may be able to appeal a decision we have made in connection with your privacy rights request, by contacting us as instructed in our response. Please send your appeal request with a summary of the request and decision you want to appeal to hello@meetreflect.com.
Not more than 60 days after receipt of an appeal, and always in accordance with the timelines set by the applicable US privacy laws, we will inform you in writing of any action taken or not taken in response to the appeal, including a written explanation of the reason for the decision. If you are not happy with our response, depending on your jurisdiction, you may have the right to lodge a complaint against us with the relevant State's Attorney General.
DATA RETENTION
Unless you instruct us otherwise and subject to applicable laws, we retain the information we collect for as long as needed to provide our services and to comply with our legal obligations, resolve disputes and enforce our agreements if applicable. We may keep some of your Personal Data as a user of our Services for more extended periods for protecting our legal interests or under any safety or other legal requirements. We usually maintain your information as long as you will hold an Account or use the Services. If you want us to delete the data we no longer need our legal obligations and internal records (e.g., transactional data for products you have purchased from us), you can always terminate your Account.
Marketing data and other data collected under your Consent, shall be retained until you will ask us to delete it, or until it will no longer serve the purpose for which it was collected for initially.
Please note that where we act as a Processor on behalf of an account owner, the retention periods are under the sole discretion of the account owner, as the Data Controller.
SECURITY
We use physical, technical, and administrative security measures for the services that we believe comply with applicable laws and industry standards to prevent your information from being accessed without the proper authorization, improperly used or disclosed, unlawfully destructed or accidentally lost.
However, unfortunately, the transmission of information via the internet and online data processing cannot be 100% secure. As such, although we will do our best to protect your Personal Data, we cannot guarantee the security of data transmitted via the Website, App or Product and any transmission of your data shall be done at your own risk.
DATA PROCESSING LOCATION
We may store or process your Personal Data in a variety of countries, including the United States.
Any transfer of data that originates in the European Union ("EU") to a country outside of the European Economic Area (EEA), shall be made in compliance with the provisions of chapter 5 of the GDPR, e.g.:
It is important to note that we are headquartered in Israel, a country that the European Data Protection Board considers offering an adequate level of Personal Data protection regulation.
Suppose you are a resident of a jurisdiction where the transferring of your Personal Data requires your consent. In that case, your consent to this Privacy Policy includes your express consent for such transfer of your data.
LINKS TO OTHER SITES
Our Website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our Website, we encourage you to read the privacy notice of every Website you visit.
CHILDREN
Our App, Website and Product are not directed, nor are they intended for use by children (the phrase "child" shall mean an individual that is under age defined by applicable law which concerning the European Economic Area ("EEA") is under the age of 16 and with respect to the U.S.A, under the age of 13) and we do not knowingly process a child's information. We will discard any information that we receive from a user who is considered a "child" immediately upon our discovery that such a user shared information. Please contact us if you have reason to believe that a child has shared any information with us.
EFFECTIVE AS OF: FEBRUARY, 2026