1. Who this applies to
This policy covers how Axiom Private Research handles information collected through axiomprivateresearch.com and any associated services (the “Service”). It applies to visitors browsing the catalog, members signing into a Research account, and anyone contacting us via email.
2. Information we collect
- Account information. When you create a Research Member account, we collect your name, email address, and a salted hash of your password. We never store the password itself.
- Session cookies. A single HMAC-signed session cookie (
axiom_session) is set after sign-in. It is used only to keep you signed in for up to 30 days. It contains no personal data, only a signed reference to your account identifier. - Order information. If you place an order, we collect shipping details, billing information, and order history sufficient to fulfill and document the transaction.
- Operational logs. Routine server logs (IP, user-agent, timestamps) may be retained briefly for security and abuse-prevention purposes.
3. How we use it
We use the information above to:
- authenticate members and provide access to the Research Brain library;
- fulfill orders, issue documentation (COA, MS data), and respond to inquiries;
- operate, secure, and improve the Service;
- comply with applicable legal obligations.
4. What we do not do
- We do not sell personal information.
- We do not share member data with third-party advertisers.
- We do not use third-party tracking pixels or behavioral-ad networks.
5. Service providers
We may share limited information with vetted service providers strictly to operate the Service — for example, payment processors, shipping carriers, and infrastructure providers (Cloudflare). Each provider is bound to use the information only for the purposes for which it was shared.
6. Data retention
Account information is retained for as long as the account is active. You can request deletion at any time by emailing [email protected]. Order records may be retained longer where required by tax or regulatory law.
7. Your rights
Depending on your jurisdiction, you may have the right to access, correct, port, or delete the personal information we hold about you. To exercise any of these rights, contact [email protected].
8. Security
Passwords are stored as scrypt hashes with per-account salts. Session tokens are HMAC-signed and HTTP-only. The Service is served over TLS via Cloudflare. No system is perfectly secure, and we encourage members to use strong, unique passwords.
9. Changes
We may update this policy from time to time. Material changes will be flagged on the Service and the effective date above will change.
10. Contact
Questions: [email protected].