Legal

Privacy Policy

Effective July 2026 · hxframework.org, operated by let.ai research

The short version

This is a documentation site. It has no accounts, no sign-in, no analytics scripts, no advertising, and no cookies set by us. Reading it sends us nothing. One feature — the shareable score reading — stores data you explicitly submit, described below.

Score readings

When you finish the self-assessment on /score and choose to create a share page, we store exactly what appears on that page: your sixteen answers, your four maturity answers, the organization name if you typed one (it's optional), and the creation time. The reading gets a random, unguessable link. We store no name, no email, and no account — there are none to store. To have a reading removed, send its link to research@let.ai and we'll delete it.

Until you create the share page, your answers exist only in your browser and are gone when you close the tab.

The charter certificate and badge

The certificate and badge on /charter/adopt are generated entirely in your browser. The names and dates you type there are never sent to us.

Hosting

The site and its score API are served through Cloudflare and our hosting origin. Like all web infrastructure, those systems keep standard operational logs (such as request IPs) for security and abuse prevention, under their own retention policies. We don't use those logs to identify readers.

Changes and contact

If this policy changes, the new version appears here with a new effective date. Questions: research@let.ai.