Privacy Notice
Last updated: June 12, 2026
Who we are
KrosWeb Enterprise Inc ("KrosWeb", "we", "us") operates the Global Founder Access service. KrosWeb is the data controller for personal data processed in connection with the Service.
What we collect and why
- Account and contact data (name, email, login credentials) — to create your account, authenticate you, and provide the Service. Legal basis: performance of a contract.
- Assessment responses and generated reports — to generate your readiness report and program recommendations. Legal basis: performance of a contract.
- Support messages — to respond to questions and provide customer support. Legal basis: legitimate interests.
- Usage data and device identifiers (IP address, browser, pages viewed, timestamps) — for security, fraud prevention, and product improvement. Legal basis: legitimate interests.
- Transactional emails (receipts, report unlock notifications) — to fulfil purchases and provide service updates. Legal basis: performance of a contract.
Payment data (card details, billing address, tax data) is collected directly by Paddle as Merchant of Record — we do not see or store full card numbers.
Who we share data with
- Service providers / subprocessors: hosting, database, email delivery, analytics, and AI/LLM providers used to power the Service.
- Paddle.com, our Merchant of Record, for processing payments, managing subscriptions, calculating and remitting tax, issuing invoices, and handling refunds and chargebacks.
- Professional advisers (legal, accounting) where necessary.
- Authorities where required by law or to protect our rights.
International transfers
Some of our service providers may process data outside your country of residence, including in the United States and the European Economic Area. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.
Retention
We retain personal data only as long as needed for the purposes described above or as required by law. Assessment data and reports are retained while your account is active and for a reasonable period thereafter, then deleted or anonymised.
Your rights
Depending on your jurisdiction, you may have the right to access, correct, delete, restrict, or port your personal data, to object to certain processing, and to withdraw consent. EU/UK users also have the right to lodge a complaint with their supervisory authority. To exercise these rights, contact us via the support channels listed on this site; we aim to respond within one month.
Security
We use appropriate technical and organisational measures to protect personal data, including encryption in transit, access controls, and least-privilege server access.
Cookies
We use essential cookies required to operate the Service (for example, to keep you signed in) and limited analytics cookies to understand how the Service is used. You can manage cookies through your browser settings.
Changes to this notice
We may update this notice from time to time. Material changes will be communicated through the Service or by email.
Contact
Privacy questions: contact KrosWeb Enterprise Inc through the support channels listed on this site.