Privacy Policy

DreamLink services and this website are operated by Tidefast Limited. Your privacy is foundational to everything we build. This policy explains what data we collect, why we collect it, how we protect it, and the choices you have.

1. Data We Collect

1.1 Account & Contact Information

When you join our waitlist, create an account, or contact us, we collect your name, email address, and any other information you voluntarily provide.

1.2 Sleep & Brain-Signal Data

DreamLink's embedded EEG sensors capture electrical brain-signal data during use. This data is processed on-device to determine sleep stages (light, deep, REM, wake) and generate sleep architecture reports. Raw EEG signals are never transmitted off-device unless you explicitly opt in to cloud-based features.

1.3 Device & Usage Data

We collect basic device telemetry (firmware version, connectivity status, error logs) to maintain and improve product performance. This data does not include brain-signal recordings.

1.4 Website Analytics

We use privacy-respecting analytics to understand how visitors interact with our website. We do not use third-party advertising trackers.

2. How We Use Your Data

• To provide, personalise, and improve your sleep experience.
• To generate your sleep reports and insights.
• To communicate product updates, if you have opted in.
• To maintain device safety, security, and performance.
• To comply with applicable legal obligations.

We never sell your personal or brain-signal data. Period.

3. Data Ownership & Control

You own your data. Sleep insights are a gift, not a transaction. You may export or delete your data at any time through the DreamLink app. Upon account deletion, all associated personal and sleep data is permanently removed from our systems within 30 days.

4. Data Security

Brain-signal data is processed on-device using on-board machine learning. When cloud features are enabled, data is encrypted in transit (TLS 1.3) and at rest (AES-256). Access is strictly limited to authorised personnel under confidentiality obligations.

5. Third-Party Sharing

We may share limited data with trusted service providers who help us operate (e.g., cloud hosting, email delivery). These providers are contractually bound to use your data only as instructed and in compliance with this policy. We do not share brain-signal data with any third party without your explicit consent.

6. International Transfers

If your data is transferred across borders, Tidefast Limited applies appropriate technical, contractual, and organizational safeguards in accordance with applicable privacy laws.

7. Children's Privacy

DreamLink is not intended for use by children under 16. We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

8. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, delete, port, or restrict processing of your personal data. To exercise these rights, contact us at [email protected].

9. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or a prominent notice on our website. Your continued use of DreamLink after changes constitutes acceptance of the updated policy.

10. Related Legal Notices

Related notices: Data Rights Request Policy, Marketing Consent Notice, and Cookie Notice.

11. Contact

For privacy-related questions or requests, reach us at [email protected].