Privacy Policy – Axiomatic AI Platform

We are a corporation organized under the laws of the State of Delaware and operate out of Massachusetts, with subsidiaries and offices in Barcelona (Spain) and Toronto (Canada).

For any questions about this policy or our data practices, contact:

Who We Are

• Company Name: Axiomatic-AI Inc.
• Jurisdiction of Incorporation: Delaware, USA
• Principal Office: The Engine, 501 Massachusetts Avenue, Middlesex County, Cambridge, MA 02139
• EU Office Legal Name: AXIOMATIC AI EU, SL
• EU Office Address: Carrer d'Esteve Terradas, 1, 08860, Castelldefels, Barcelona (Spain)

Information We Collect

We may collect the following categories of information:

For Website Users:

• Technical information: IP address, browser type, device type, geolocation (if any), and cookies or similar technologies.
• Information voluntarily submitted: name, email, messages via contact forms, or newsletter sign-ups, to manage the relationship established with us, applications and participation in our selection processes.

For Platform Clients/Users:

• Personal Information: name, email, organization.
• Account Information: login credentials, user preferences.
• Technical Information: IP address, browser, device type, session logs, telemetry.
• Usage Data: design specifications, documents, notes, uploaded content.
• Payment Info (planned): will be processed via PCI-compliant providers in the future.
• Information to manage contact details within the scope of contractual or commercial relationships and comply with the legal obligations' incumbent upon us.

We do not collect Social Security Numbers, PHI, or similarly sensitive categories of personal data under Article 9 of the GDPR.

How We Collect Information

We collect data through the following mechanisms:

Website Users:

• Interactions with our corporate website, such as submitting contact forms or signing up for newsletters.
• Technical information automatically collected by the website, including IP address, browser type, and device type.

Platform Clients/Users:

• Product telemetry and session logging
• Interactions with our platform

Cookies and Third-Party Technologies

The Platform sets a first-party session cookie solely to keep you logged in. This cookie is essential to the functioning of the service and is not used for tracking or analytics.

If you choose to sign in using a third-party provider (such as Google or Microsoft), those services may set cookies under their own domains to support authentication and account-related functionality. These cookies are governed by the respective providers' privacy policies and are not controlled by Axiomatic.

We do not currently use additional cookies for analytics, personalization, or advertising, and no cookie consent banner is required. If this changes in the future, we will update this policy and introduce a consent mechanism as needed.

You can manage or block cookies through your browser preferences at any time.

How We Use Your Information

We use your information to:

Website Users:

• To operate and secure the website.
• To respond to inquiries or requests submitted via contact forms.
• To analyze site visits and improve content (analytics if implemented).

Platform Clients/Users:

• To authenticate users and manage access.
• To deliver and improve Platform functionality.
• To monitor performance, diagnose issues.
• To send updates and gather feedback.
• Support research and development
• Payment processing in the future.

We may use de-identified or aggregated data for internal analytics and benchmarking.

Disclosure of Information

Website Users:

• Data submitted through contact forms or job applications may be shared with recruiting platforms or hiring service providers (e.g., Greenhouse) for the purposes of evaluating applications.
• We may also disclose information to comply with legal obligations, regulatory authorities, law enforcement, or courts.
• We do not sell your personal information.

Platform Clients/Users:

• Service providers: third parties providing infrastructure, analytics, and operational support.
• Payment processors (in future implementations), under secure contractual agreements
• Regulatory authorities, law enforcement, or courts, when required by law or subpoena

We do not sell your personal information.

Data Retention

In general, the data will be kept i) for as long as is necessary for the purpose for which the data were collected and ii) for the applicable limitation periods, if liabilities might be incurred as the result of the processing.

On a special basis:

Website users:

• Data retained only as long as necessary for the website operations or to respond to inquiries.
• The data collected based on your consent will be kept for as long as such consent is not withdrawn.
• In all other cases, users will be informed of the retention periods applicable to the specific processing operation.

Platform clients/users: We retain your data only as long as needed to operate and improve the Platform:

• All the first-party collected data is retained for up to 1 year, unless deleted sooner by request.
• Anonymized logs: Aggregated or de-identified data may be kept as long as needed to operate and improve the Platform
• Third-party services: Some platform features use third-party providers (e.g., for AI, auth, or analytics) that may apply their own retention policies.

If you delete your account or request erasure, your data will be removed within 30 days, unless required otherwise by law.

Data Security

Our security measures include:

• Encryption (in transit and at rest)
• Role-based access controls
• Network security monitoring and firewall protection
• U.S.-based secure cloud infrastructure

If a data breach occurs, affected users and authorities will be notified as required by law.

Your Rights and Choices

Depending on your jurisdiction, you may have the right to:

• Access your data
• Correct inaccurate or incomplete info
• Delete your data
• Opt-out of Sale: we do not sell personal data

To exercise your rights, email:

Identity verification may be required.

International Transfers

Your data may be processed in the United States. We use Standard Contractual Clauses (SCCs) and other safeguards to ensure compliance with international data protection laws.

Children's Privacy

This platform is not intended for individuals under 18, and we do not knowingly collect data from minors.

Legal Basis for Processing Personal Data (GDPR)

If you are located in the EEA, we rely on the following legal bases to process your data under the General Data Protection Regulation (GDPR):

Website Users: legitimate interest for analytics, legal obligations, consent for forms/newsletters.

Platform Clients/Users:

• Contractual Necessity: To provide platform services, onboarding, and access.
• Legitimate Interests: Improving security, analytics, and product features.
• Consent: For data collection activities such as surveys or additional feedback.
• Legal Obligation: Where required to comply with laws, enforce agreements, or respond to lawful requests.

Questions? Contact us at:

Payments (Planned Feature)

Only for Platform Clients/Users: The Platform is currently offered free of charge to selected users. If paid access is introduced, payments for individual users will be processed through PCI-compliant third-party providers, in accordance with applicable legal and security standards. Enterprise plans may be subject to separate billing arrangements as defined by contract.

Changes to This Policy

We may revise this Privacy Policy. Material changes will be communicated via email or through platform notifications.

Contact Us