Privacy Policy

Last updated: February 25, 2026

1. Introduction

Axiomatic Technologies Inc. (“Axiomatic,” “we,” “our,” or “us”) operates the Axiomatic platform at axiomatic.us and app.axiomatic.us (the “Service”). This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you use our Service.

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, and authentication credentials. If you subscribe to a paid plan, we collect billing information through our payment processor, Stripe.

Financial Data

You may upload or enter financial data including transactions, journal entries, account balances, and related information. This data is encrypted at rest using AES-256-GCM with entity-specific data encryption keys.

Usage Data

We automatically collect information about how you interact with the Service, including transaction counts, proof generation events, API call volume, and feature usage. This data is used for billing and to improve the Service.

Technical Data

We collect standard technical information such as IP address, browser type, device information, and access timestamps for security and operational purposes.

3. How We Use Your Information

  • To provide, maintain, and improve the Service
  • To process transactions and manage your subscription
  • To generate zero-knowledge proofs over your financial data
  • To send service-related communications
  • To detect and prevent fraud, abuse, or security incidents
  • To comply with legal obligations

4. Zero-Knowledge Proofs and Privacy

A core feature of Axiomatic is the generation of zero-knowledge proofs (ZK proofs) over your financial data. ZK proofs allow you to demonstrate the correctness of financial statements without revealing the underlying transaction data. When you share a proof with a third party, they can verify the mathematical correctness of your statements without accessing your raw financial data.

ZK proofs are generated on our infrastructure. Your financial data is encrypted at rest and only decrypted in memory during proof computation. We do not share your raw financial data with any third party unless you explicitly authorize it through the bilateral counterparty protocol.

5. Data Encryption

All financial data is encrypted using AES-256-GCM with unique data encryption keys (DEKs) per entity. DEKs are themselves encrypted with key-encryption keys (KEKs) derived from a master key. Data is encrypted at rest and in transit (TLS 1.3).

6. Data Sharing

We do not sell your personal information. We may share information with:

  • Service Providers: Stripe (payments), Neon (database hosting), Vercel (application hosting), Resend (email). These providers are bound by their own privacy policies and data processing agreements.
  • Bilateral Counterparties: When you initiate or accept a bilateral proposal, limited transition data is shared with the specified counterparty entity as part of the protocol.
  • Legal Compliance: When required by law, subpoena, or regulatory requirement.

7. Data Retention

We retain your data for as long as your account is active. If you close your account, we will delete your financial data within 30 days. Some data may be retained longer as required by law or for legitimate business purposes (e.g., billing records, audit logs).

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate information
  • Delete your personal information
  • Export your data in a portable format
  • Object to or restrict processing of your information
  • Withdraw consent where processing is based on consent

To exercise any of these rights, contact us at privacy@axiomatic.us.

9. Security

We implement industry-standard security measures including encryption at rest and in transit, role-based access controls, key rotation without downtime, and regular security reviews. No system is perfectly secure, and we cannot guarantee absolute security.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through the Service. Continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact

If you have questions about this Privacy Policy, contact us at privacy@axiomatic.us.