Vocational Guidance and Purpose Development Platform
Last updated: June 30, 2026
A product of 3LOX LLC
7791 NW 46th Street, Suite 219, Doral, FL 33166, United States
Data Controller: 3LOX LLC (USA) | EU Representative: designation in progress (Madrid, Spain) | Contact: legal@3lox.com
Purpose: Vocational guidance through psychometric assessments, generation of personalized reports, and AI assistance.
Data processed: Identification data, responses to vocational tests, technical browsing data, and cookies.
Legal basis: Consent, contract performance, legal obligation, and legitimate interest (Art. 6 GDPR).
Rights: Access, rectification, erasure, portability, objection, and restriction. Contact: legal@3lox.com
Minors (Spain): Users aged 14 and up may consent on their own behalf. Users under 14 require parental authorization.
Full information (second layer) below:
This Privacy Policy describes how 3LOX LLC (hereinafter, "3LOX," "we," or "our"), with registered address at 7791 NW 46th Street, Suite 219, Doral, FL 33166, United States, collects, uses, protects, and shares the personal information obtained through the 360° PathFinder platform (the "Service").
For users in the European Union, 3LOX has designated an EU Representative under Article 27 of Regulation (EU) 2016/679 (GDPR), whose contact details are indicated in Section 15 of this Policy.
By accessing or using the Service, you represent that you have read, understood, and accepted the terms of this Policy and authorize the processing of your information as set out herein.
This Policy complements the Service's Terms and Conditions of Use and Cookie Policy.
The controller responsible for the processing of your personal data is:
When 3LOX acts as a data processor on behalf of an educational Institution or organization, that Institution will be the data controller and 3LOX will process the data in accordance with its instructions and the Data Processing Agreement (DPA) executed between the parties.
This Policy applies to all users of the Service, which include the following profiles:
We collect the personal information that you or your Institution provide directly or indirectly, in accordance with the data minimization principle (Art. 5.1.c GDPR). The categories of data are:
We do not request or process special category data (racial or ethnic origin, political opinions, religious beliefs, genetic data, biometric data, health data, or sexual orientation) unless the User voluntarily provides it in open-ended responses, in which case processing is based on the User's explicit consent (Art. 9.2.a GDPR).
Personal data is collected and used exclusively for the following purposes:
Data processing is carried out in accordance with the following legal bases, as set out in Art. 6 of the GDPR:
| Legal Basis | Associated Purposes |
|---|---|
| Express consent (Art. 6.1.a) | Registration, psychometric assessments, commercial communications, non-essential cookies. |
| Contract performance (Art. 6.1.b) | Provision of the Service, generation of Reports, Account management. |
| Legal obligation (Art. 6.1.c) | Compliance with tax, accounting, data protection, and child protection regulations. |
| Legitimate interest (Art. 6.1.f) | Service improvement, security, fraud prevention, anonymized statistical analysis. |
For users in Colombia, the legal basis includes the data subject's prior, express, and informed authorization under Law 1581 of 2012. For users in the United States, the legal bases of COPPA and CCPA/CPRA apply as relevant.
The Service may be used by individuals age 14 and up. Consent requirements vary by jurisdiction:
Jurisdiction-specific requirements:
Parental consent must be verifiable, with the following recorded: date, method used, identity of the person granting consent, and, where feasible, IP address, in accordance with COPPA and the GDPR.
Personal data will be retained only for as long as necessary to fulfill the purposes established, in accordance with the storage limitation principle (Art. 5.1.e GDPR):
| User Category | Retention Period |
|---|---|
| Students (minors) | 24 months from the last activity. |
| Individual users (adults) | Up to 5 years from the last activity. |
| Institutional users | Contract term + 24 months. |
| Billing and tax data | As required by applicable tax law (generally 5-7 years). |
| Anonymized data | Indefinitely (no longer personal data). |
| Consent records | For the duration of the relationship + legal statute-of-limitations period. |
When data is no longer necessary, it will be deleted or anonymized securely and irreversibly.
Under the GDPR (Arts. 15-22), the LOPDGDD, the CCPA/CPRA, and Colombia's Law 1581 of 2012, you may exercise the following rights:
To exercise these rights, write to: legal@3lox.com with the subject "Privacy Rights Request – PathFinder," indicating your name, registered email address, and the right you wish to exercise. We will respond within a maximum of 30 days (GDPR) or 45 days (CCPA).
Users in the European Union: may file a complaint with the Spanish Data Protection Agency (AEPD, www.aepd.es) or the data protection authority of their country of residence.
Users in Colombia: may file complaints with the Superintendence of Industry and Commerce (SIC).
Your data may be transferred to and hosted on servers located outside your country of residence, including in the United States and Germany, operated by providers such as Amazon Web Services (AWS).
To ensure an adequate level of protection, 3LOX applies the following safeguards:
For users in Colombia, transfers are carried out in accordance with the transfer and transmission regime under Law 1581 of 2012 and the SIC's Single Circular.
We use cookies and similar technologies in accordance with our Cookie Policy, available at https://360pathfinder.com/politica-cookies.
Main cookie categories:
Protection of minors: when the Service detects that a user is a minor, all marketing and advertising tracking cookies are automatically disabled, using only strictly necessary cookies and anonymized analytics cookies. This complies with COPPA and the GDPR.
You can manage your cookie preferences from the consent banner or the "Cookie Preferences" button in the footer.
3LOX LLC implements appropriate technical and organizational measures to protect personal data in accordance with Art. 32 of the GDPR, including:
In the event of a security breach that poses a risk to users' rights and freedoms, 3LOX will:
No digital system is completely secure. The User acknowledges and accepts the inherent risk of using online services.
When 3LOX acts as a data processor for educational Institutions or organizations, a Data Processing Agreement (DPA) will be formalized in accordance with Article 28 of the GDPR, establishing:
3LOX does not sell, rent, or trade users' personal data. Data is shared only with:
IMPORTANT NOTICE: The Reports, recommendations, and results generated by 360° PathFinder are exclusively advisory and informational in nature.
They are the result of algorithmic processing of the responses provided by the User; the narrative content of the Reports and of interactions with K-AI is generated using artificial intelligence, as detailed in Section 14. None of these results constitute medical or psychological diagnoses, nor binding professional advice. 3LOX expressly recommends that results be supplemented with the guidance of a qualified professional (vocational counselor, educational psychologist, career coach) for a comprehensive and personalized interpretation.
3LOX is not responsible for academic, professional, or personal decisions made based on the generated Reports. The quality of the results depends directly on the truthfulness and completeness of the User's responses.
The personality, competency, pathway, and other narrative Reports produced by the Service, as well as K-AI's ("Kai's") responses, are generated using artificial intelligence in an automated manner. The AI model does not directly receive the User's open-ended responses to the Assessments; rather, it receives the numerical results already calculated by 3LOX's proprietary algorithms (psychometric profiles, IKIGAI scores, VCR, among others), from which it generates the personalized narrative.
Currently, the language model that powers K-AI is provided by OpenAI, which acts as a data processor (sub-processor) under 3LOX's instructions and with adequate contractual guarantees, including Standard Contractual Clauses where applicable. As indicated in Section 14.1, this provider receives only the numerical results derived from the Assessments, not the User's original open-ended responses. 3LOX may change AI providers in the future; any material change will be reflected in this Policy.
The Service carries out vocational and psychometric profiling in accordance with Art. 4.4 of the GDPR, processing the User's responses to generate scores, categories, and personalized recommendations. This profiling is exclusively advisory in purpose and does not produce automated decisions with legal effects, as described in Section 13.
K-AI does not perform emotion recognition or analysis of the User's emotional state, whether from text or voice. Kai interprets only the already-calculated numerical results of the Assessments in order to generate the guidance narrative.
In compliance with Article 50 of Regulation (EU) 2024/1689 (AI Act), 3LOX identifies Kai as an artificial intelligence system through clear, visible notices within the platform from the first point of contact, and the Reports indicate that their narrative content is AI-generated. These in-product notices constitute the primary disclosure mechanism required by Article 50(5); this Policy and the Terms and Conditions of Use (Section 10.4) constitute complementary contractual confirmation, without replacing that in-product disclosure.
3LOX LLC – Legal Department – 360° PathFinder
Address: 7791 NW 46th Street, Suite 219, Doral, FL 33166, United States
Email: legal@3lox.com
Website: https://360pathfinder.com
Under Article 27 of the GDPR, 3LOX is in the process of formally designating a representative in the European Union with a physical address in Spain, who will act as a point of contact for data protection authorities and data subjects.
While this designation is being completed, any communication relating to the processing of personal data under the GDPR may be directed to:
3LOX undertakes to publish the full details of the designated representative (name, physical address, and contact information) in this same Policy and at https://360pathfinder.com/politica-privacidad as soon as the designation becomes effective. The estimated timeframe for formalization is 30 days from the publication of this version.
3LOX LLC, as a company established outside the European Union whose core activity does not consist of large-scale processing of special categories of data or regular and systematic monitoring of data subjects, is not required to designate a Data Protection Officer (DPO) under Article 37 of the GDPR.
Nevertheless, 3LOX maintains an internal legal team specializing in data protection and privacy that oversees regulatory compliance and handles all user inquiries and requests. You may contact this team at legal@3lox.com.
3LOX undertakes to designate a DPO if the conditions of its activities require it in the future under applicable regulations.
The Service may contain links to third-party websites, platforms, or services. 3LOX does not control or assume responsibility for the privacy practices, security, or content of third parties. We recommend reviewing the privacy policies of each external site before sharing personal information.
3LOX may periodically update this Privacy Policy to reflect changes in our data processing practices, applicable legislation, or Service features. Modifications will be published at https://360pathfinder.com/politica-privacidad with an indication of the last-updated date.
For material changes affecting your rights, we will notify you by email or through a notice within the platform at least 15 days in advance. Continued use of the Service after the changes are published constitutes acceptance of the updated Policy. If you do not agree, you must stop using the Service.
This Policy is governed by:
© 2026 3LOX LLC – All rights reserved.
Transforming lives through vocational data science.