Privacy Policy

This policy describes how Compoundly ("we", "our", or "the Company") collects, uses, stores, and protects your personal information when you use this website and the Compoundly brand intelligence system. By using our services, you agree to the terms of this policy. Last updated: April 16, 2026

1. Service Provider

This website is operated by JCW Group Ltd. ("the Company"). If you have any questions about this policy or wish to exercise your data rights, please use the contact information at the end of this page.

2. What Personal Data We Collect

Depending on how you use this website, we may collect the following categories of personal data:

  • Questionnaire data: When you complete the Brand DNA Scan, this may include contact name, company/brand name, email address, job title, industry, and your responses to questionnaire items (including Q1–Q10 and multi-select topics).
  • Login / account information: If you sign in with Google, we may receive basic identification information provided by Google (such as email address and name, subject to your authorization scope), used to verify identity and create or maintain your account.
  • Technical usage information: Browser type, device information, IP address, access time, browsing behavior, and error logs — used for system security and service improvement (may be collected via cookies or similar technologies).

3. How We Collect Data

We obtain data primarily through: (1) information you voluntarily enter and submit via questionnaires or forms; (2) information provided via Google OAuth authorization when you sign in; (3) technical and log information automatically generated by website operations (including cookies or analytics tags).

4. Why We Use Your Personal Data

  • To provide initial brand diagnostic services and deliver diagnostic results and insights.
  • To contact you regarding questionnaire results, consultation requests, or follow-up services (e.g., email replies, customer support).
  • To ensure normal system operations, maintain information security, and detect and prevent misuse or fraudulent activity.
  • To analyze website usage for the purpose of improving user experience and service quality (e.g., via analytics tools).
  • As required by applicable laws or legitimate legal processes (e.g., regulatory authority requests).

5. Data Use and Third-Party Services

To deliver our services, some data will be processed by third parties (limited to what is necessary):

  • Data storage / content management: We use Sanity as our data management service to store questionnaire submissions.
  • Content generation: To generate diagnostic insights, we transmit necessary information (such as portions of questionnaire responses) to external services (such as Anthropic) for text generation or computation, after which results are returned to you.
  • Login authentication: When you use Google Sign-In, Google provides OAuth authentication and confirms your identity.
  • Website analytics: We may use analytics tools (such as Vercel Analytics or other analytics services) to collect usage behavior data for service improvement.

We take reasonable steps to ensure third parties process your personal data only within the scope necessary to provide their respective services, and in accordance with applicable law and this policy.

6. Data Retention

Unless otherwise required by law, we retain your personal data for as long as necessary to fulfill the purposes for which it was collected. When data is no longer needed, we will take appropriate steps to delete, anonymize, or securely dispose of it. If you request deletion or cessation of processing, we will handle the request in accordance with applicable regulations.

7. Data Security

We implement reasonable technical and administrative measures — including access controls, encrypted transmission and storage, backup systems, and protective mechanisms — to reduce the risk of unauthorized access, tampering, loss, or disclosure. However, data transmission over the internet inherently carries risk, and 100% security cannot be guaranteed.

8. Your Rights

  • To query or view your personal data.
  • To correct or supplement your personal data.
  • To request deletion of your personal data (to the extent permitted by law).
  • To request cessation of processing or use of your personal data (to the extent permitted by law).
  • To withdraw consent (where data processing is based on your consent).

To exercise any of these rights, please contact us using the information at the end of this page. We will respond to your request within a reasonable timeframe and handle it in accordance with applicable law.

9. Cross-Border Data Transfers

As some services (such as system services, analytics, or cloud storage) may be provided or processed by entities outside Taiwan, your personal data may be subject to cross-border transfer. We will take appropriate protective measures in a manner consistent with applicable law, ensuring purpose and security are maintained within the necessary scope.

10. Cookies and Similar Technologies

This website may use cookies or similar technologies to provide core functionality, maintain login sessions, analyze usage behavior, and improve service quality. You may restrict or delete cookies through your browser settings, though doing so may affect the availability of certain features.

11. Updates to This Policy

We may update this policy from time to time due to regulatory changes, service adjustments, or security requirements. For material changes, we will notify you through appropriate means. We recommend checking this page periodically for the latest version.

12. Contact Us

Email: service@jcwgrp.com