Privacy Policy - Kaleidoscope Axiom Inc.

Last Updated: February 11, 2026

Introduction

Kaleidoscope Axiom Inc. ("we," "us," "our") operates the Mim and Krystallos web and mobile applications (the "Service"). This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our Service.

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

Information We Collect

1. Personal Information You Provide

Mim (Mobile Application):

  • Account information (email address, username)
  • Authentication data (password, tokens)
  • Value assessment responses
  • Coaching conversation history
  • User preferences and settings

Krystallos (Web Application):

  • Email address (optional, only if you choose to subscribe to updates)
  • Value assessment responses
  • Survey responses (optional)
  • Feedback submissions (optional)

2. Automatically Collected Information

Analytics Data (with your consent): We use PostHog, a third-party analytics service, to understand how you use our Service. When you consent to analytics, PostHog may collect:

  • Device information (browser type, operating system, device model)
  • Usage data (pages viewed, features used, time spent)
  • Session data (session duration, interactions)
  • Anonymized user identifiers

PostHog is hosted in the United States. For more information about PostHog's privacy practices, visit: https://posthog.com/privacy

Essential Data (always collected):

  • Assessment progress and state (stored locally on your device in Krystallos web app)
  • User preferences and consent choices

3. Cookies and Local Storage

Krystallos Web Application:

  • Essential Storage (localStorage): We store your assessment progress, value ratings, clustering data, and consent preferences in your browser's local storage. This data never leaves your device unless you explicitly choose to sync with Mim or provide your email address. These are essential for the application to function and cannot be disabled.
  • Analytics Cookies (optional): If you consent to analytics, PostHog may set cookies to track your session and usage patterns across visits.

Mim Mobile Application:

  • Session tokens for authentication
  • User preferences
  • Analytics data (with consent)

Your Control: You can manage your consent preferences at any time through:

  • The consent banner on your first visit to Krystallos
  • The "Privacy Settings" link in the application footer
  • Your browser's privacy settings to clear cookies and local storage

How We Use Your Information

We use the collected information for the following purposes:

  1. Provide and Maintain the Service

    • Deliver the value assessment experience
    • Store your assessment progress and results
    • Provide AI-powered coaching (Mim)
    • Authenticate your account (Mim)

  2. Improve the Service (with your consent)

    • Analyze usage patterns to improve user experience
    • Identify and fix bugs
    • Understand which features are most valuable
    • Optimize assessment completion rates

  3. Communicate with You (with your consent)

    • Send updates about Krystallos and Mim
    • Respond to your feedback and support requests
    • Notify you of important changes to the Service

  4. Comply with Legal Obligations

    • Respond to legal requests
    • Enforce our Terms of Use
    • Protect our rights and the rights of our users

Consent Management

We provide you with granular control over your data:

Consent Categories

  1. Essential Storage (always active)

    • Required for the Service to function
    • Stores assessment progress locally on your device
    • Cannot be disabled

  2. Analytics (optional, disabled by default)

    • Enables PostHog tracking
    • Allows us to understand usage patterns
    • Enables in-app surveys

  3. Marketing Communications (optional, disabled by default)

    • Allows us to collect your email address
    • Enables us to send updates about Krystallos and Mim
    • You can unsubscribe at any time

How to Manage Consent

  • Initial Choice: When you first visit Krystallos, you'll see a consent banner with options to "Accept All," "Reject All," or "Manage Preferences."
  • Change Anytime: Access "Privacy Settings" from the application footer on any page.
  • Granular Control: You can enable analytics while declining marketing communications, or vice versa.

We record the date and time when you grant or revoke consent for compliance purposes.

Survey Data

We may occasionally ask you to complete surveys to help us improve the Service. Survey participation is always optional. Survey responses may include:

  • Feedback about your experience
  • Ratings of features or satisfaction
  • Open-text comments

Survey data is collected via PostHog and is only gathered if you have consented to analytics. Survey responses are anonymized unless you choose to provide your email address for follow-up.

Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties.

We may share your information in the following limited circumstances:

  1. Service Providers

    • PostHog: Analytics and survey platform (with your consent)
    • AWS (Amazon Web Services): Cloud infrastructure for Mim (database, authentication, AI services)

  2. Legal Requirements

    • To comply with a legal obligation
    • To protect and defend our rights or property
    • To prevent or investigate possible wrongdoing
    • To protect the safety of users or the public

  3. Business Transfers

    • In connection with a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity

Data Retention

  • Krystallos (Web): Assessment data is stored in your browser's local storage indefinitely until you clear your browser data or use the "Restart Process" feature. Consent records are stored separately and persist even after restarting the assessment.
  • Mim (Mobile): Account data and conversation history are retained as long as your account is active. You may delete your account at any time.
  • Analytics Data: PostHog retains data according to their retention policy. We do not control PostHog's retention practices.
  • Email Marketing: If you provide your email address, we retain it until you unsubscribe or request deletion.

Data Security

We implement appropriate technical and organizational security measures to protect your information:

  • Encryption in transit (HTTPS/TLS)
  • Secure authentication (AWS Cognito for Mim)
  • Regular security reviews
  • Access controls and logging

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

Your Rights

Depending on your location, you may have the following rights:

  1. Access: Request a copy of the personal information we hold about you
  2. Correction: Request correction of inaccurate or incomplete information
  3. Deletion: Request deletion of your personal information
  4. Portability: Request transfer of your data to another service (Mim)
  5. Objection: Object to processing of your personal information
  6. Withdraw Consent: Withdraw consent for analytics or marketing at any time (does not affect prior processing)
  7. Restrict Processing: Request restriction of processing in certain circumstances

For Krystallos (Web): Since your assessment data is stored locally on your device, you have full control over it:

  • Clear your browser's local storage to delete all assessment data
  • Use the "Restart Process" feature to reset your assessment
  • Change consent preferences via "Privacy Settings"

For Mim (Mobile): Contact us at info@kaleidoscopeaxiom.com to exercise your rights. We will respond within 30 days.

Children's Privacy

Our Service is not intended for children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

International Data Transfers

Our Service is operated from Canada, and our service providers (AWS, PostHog) may process data in the United States. By using our Service, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection laws.

For users in the European Economic Area (EEA), we ensure appropriate safeguards are in place for international transfers, including:

  • Standard Contractual Clauses (SCCs) with service providers
  • Adequacy decisions by the European Commission where applicable

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date
  • Sending an email notification for material changes (if you have provided your email)

You are advised to review this Privacy Policy periodically for any changes. Changes are effective when posted.

Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Kaleidoscope Axiom Inc. Email: info@kaleidoscopeaxiom.com

For GDPR-related inquiries (EEA residents), please include "GDPR Request" in your email subject line.