Privacy Policy

GLOBAL PRIVACY POLICY

Last Updated: June 15, 2026

This Privacy Policy describes Our policies and procedures on the collection, use, disclosure, and safeguarding of Your information when You use our Service, and outlines Your privacy rights and how the law protects You under various global jurisdictions, including the EU/UK General Data Protection Regulation (GDPR), U.S. State Privacy Laws, and the Taiwan Personal Data Protection Act.

We use Your Personal Data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

1. DEFINITIONS AND INTERPRETATION

Interpretation

The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of this Privacy Policy:

  • Account means a unique account created for You to access our Service or parts of our Service.

  • Company (referred to as either "the Company", "We", "Us" or "Our" in this Agreement) refers to Isaiah Research, a premium business intelligence brand operated and owned by Isaiah International Inc., a company incorporated under the laws of the British Virgin Islands (BVI) with its registered office located at Keyway Chambers, 3rd Floor, Quastisky Building Road Town Tortola VG1110, British Virgin Islands, and maintaining its principal place of business and operational headquarters at 4F., No. 311, Sec. 3, Nanjing E. Rd., Songshan Dist., Taipei City 105405, Taiwan.

  • Cookies are small files placed on Your computer, mobile device, or any other device by a website, containing details of Your browsing history on that website among its many uses.

  • Personal Data is any information that relates to an identified or identifiable individual. Under applicable laws, this includes identifiers such as names, IP addresses, email addresses, commercial history, and user interactions within our communication or restricted system interfaces.

  • Service refers to the Website and its integrated or gated customer utilities, restricted client portals, and automated messaging or information processing features provided by the Company to authorized users.

  • Service Provider means any third-party company or individual employed by the Company to process data on our behalf, facilitate the Service, or assist the Company in analyzing usage.

  • Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit or automated system operational logs).

  • Website refers to the web platform accessible from https://www.isaiahresearch.com

  • You means the individual accessing or using the Service, or the entity on behalf of which such individual is accessing or using the Service, as applicable.

  • Data Controller means the entity that determines the purposes and means of processing Personal Data.

  • Data Processor means any entity processing Personal Data on behalf of the Controller.

2. TYPES OF DATA COLLECTED

Personal Data

While using Our Service, We may ask You to provide Us with certain personally identifiable information, which may include:

  • Email address

  • First name and last name

  • Company affiliation and business details

  • Interactive and Restricted Interface Inputs: When You utilize specific gated features or query fields within our authorized systems, we collect the text, instructions, questions, data, and files you input or upload into the interface, as well as associated system metadata (such as computational traffic metrics, duration, and query logs) necessary to render real-time responses.

  • Users are advised not to submit sensitive personal data (including but not limited to health data, biometric identifiers, financial account credentials, or government identification numbers) unless explicitly required by the Service. The Company does not intentionally collect or process special categories of personal data under Article 9 of the GDPR.

Usage Data

Usage Data is collected automatically when using the Service. This may include Your Device's IP address, browser type, browser version, the pages You visit, the time and date of Your visit, unique device identifiers, and other diagnostic data.

Tracking Technologies and Cookies

We use Cookies and similar tracking technologies (such as web beacons, tags, and scripts) to track activity and store certain information to improve and analyze Our Service.

  • Necessary / Essential Cookies: Essential to provide You with services and enable core features like user authentication.

  • Functionality Cookies: Allow us to remember choices You make, such as language preference or login details.

  • Performance, Analytics, and Advertising Cookies (Third-Party Cookies): Managed by third parties (e.g., Google Analytics). These cookies track traffic patterns and user behavior to optimize your experience.

3. USE AND PROCESSING OF YOUR PERSONAL DATA

The Company may use Personal Data for the following specific purposes, primarily for the performance of a contract with You:

  • To provide, maintain, and monitor our Service, including processing and executing real-time automated responses to your inputs and displaying your historical session logs.

  • To manage Your Account and registration as a user, granting you access to different functionalities available to registered users.

  • For the performance of a contract, including the undertaking of purchase contracts for products or services You have purchased through the Service.

  • To contact You by email, telephone calls, or SMS regarding security updates, system alerts, or informative communications.

  • To detect and prevent abuse: Monitoring to mitigate malicious interface activities, infrastructure overload, spam, or violations of our terms.

4. DATA SECURITY & NO EXPANSIVE TRAINING POLICY

For the avoidance of doubt, notwithstanding any general data analysis or business optimization purposes outlined above, the Company explicitly adheres to a strict No Model Training policy for all interactive automated text-processing and restricted client portal utility features. Any user queries, prompts, or inputted files securely transmitted to our computing infrastructure are processed solely for the purpose of providing the requested Service. he Company does not use such inputs to train publicly available or third-party foundational models. However, the Company may process aggregated and anonymized data strictly for internal purposes such as system performance, security monitoring, and service reliability improvements, without identifying individual users.

5. SHARING AND DISCLOSURE OF YOUR DATA

We may share Your personal information in the following designated situations:

  • With Premium Enterprise Infrastructure Providers: To deliver high-performance, real-time automated data processing and response synthesis, your securely encrypted interface inputs may be processed through enterprise-grade API infrastructures provided by certified third-party technology entities. These transfers are governed by strict enterprise Data Processing Addendums (DPAs) that contractually prohibit those providers from utilizing your data for public model optimization or external retention.

  • With Standard Service Providers: We share information with trusted third parties to host our website, process payments, analyze traffic, or provide customer support. Examples of such Service Providers include cloud infrastructure providers, analytics services, payment processors, and customer support platforms.

  • For Legal Enforcement & Protection: We may disclose Your Data if required by law, court order, or to defend the rights and property of the Company against liability or fraud.

6. INTERNATIONAL DATA TRANSFERS

The Company operates globally, and your information—including Personal Data and interface inputs—may be transferred to, and maintained on, cloud servers located outside of your country or jurisdiction (such as the United States).

For users residing in the EEA, UK, or jurisdictions with strict cross-border transfer laws: When we transfer your Personal Data outside your region, we implement standard contractual frameworks, specifically the Standard Contractual Clauses (SCCs) approved by the European Commission, alongside rigorous technical security measures to ensure your data remains protected.

The Company conduct transfer impact assessments (TIAs) where required and implement supplementary technical safeguards such as encryption, pseudonymization, and access controls to ensure an equivalent level of protection.

7. DATA RETENTION AND SECURITY

Retention

The Company will retain Your Personal Data and input histories for the duration of Your Account relationship and for a limited period thereafter (typically up to 3–7 years), as necessary to comply with legal obligations, resolve disputes, enforce agreements, and maintain operational records, or otherwise for as long as required for the purposes set out in this Privacy Policy (e.g., to comply with statutory financial, tax, or legal retention laws). Retention periods may vary depending on the nature of the data and applicable legal requirements. Once an account deletion request is processed, associated data will be permanently scrubbed from our active databases.

Security

The Company employ commercially reasonable technical and organizational safeguards to protect your information, including but not limited to HTTPS encryption, firewalls, access controls, encryption at rest, role-based access control (RBAC), audit logging, and continuous monitoring mechanisms. However, please note that no method of transmission over the Internet is 100% secure, and we cannot guarantee its absolute security.

8. REGULATORY SPECIFICS FOR EUROPEAN UNION & UNITED KINGDOM (GDPR)

If you are a resident of the EEA or the UK, you have specific rights under the GDPR:

  • Lawful Bases for Processing: We rely on Performance of a Contract (to deliver the Service and computational responses), Legitimate Interests (for security and website optimization), and Consent (for marketing and non-essential cookies).

  • Your Rights: You have the right to Access, Rectify, or Erase your data; the right to Data Portability; and the right to Object to or restrict certain processing activities. You may contact us to exercise these rights. You also have the right to lodge a complaint with a competent supervisory authority in your jurisdiction.

9. REGULATORY SPECIFICS FOR TAIWAN RESIDENTS (PDPA)

Pursuant to Article 8, Paragraph 1 of the Personal Data Protection Act of Taiwan, the Company explicitly informs users in Taiwan of the following mandatory disclosures:

  • Purpose of Collection 040 Marketing, 069 Contract/Quasi-contract, 135 Information & Communication Services, 136 Information/Database Management.

  • Classification of Personal Data C001 Personal Identifiers (e.g., name, email), C035 Records of Personal General Data (e.g., interface interaction logs, system queries).

  • Time Period, Area, Target, and Way of Utilization As outlined in Sections 3, 4, 5, and 6 of this policy; utilized until the specific purpose expires, globally via secure cloud servers, through automated digital machines or manual processing.

  • Your Rights Under Article 3 You may exercise your rights to check, review, replicate, supplement, correct, restrict processing, or delete your personal data by contacting us.

  • Right to Lodge a Complaint You have the right to lodge a complaint with a competent supervisory authority in your jurisdiction.

10. REGULATORY SPECIFICS FOR CALIFORNIA RESIDENTS (CCPA/CPRA)

If you are a resident of California, the following applies: We Do Not Sell or Share Your Data: The Company does not sell your personal data for monetary consideration. Utilizing third-party analytics or performance cookies may be deemed "sharing" for cross-context behavioral advertising.

  • Your Rights & GPC: You have the Right to Access, Delete, and Correct your data, as well as the Right to Opt-Out of Sale or Sharing. You can opt-out by adjusting your cookie banner preferences or enabling the Global Privacy Control (GPC) signal on your browser, which our system automatically honors.

  • Sensitive Personal Information: You have the right to limit the use and disclosure of sensitive personal information where applicable under California law.

11. CHILDREN'S PRIVACY & AGE RESTRICTIONS

Our general Website does not knowingly collect personal data from children under 16. In jurisdictions such as the United States, we do not knowingly collect data from children under 13 in compliance with the Children's Online Privacy Protection Act (COPPA). However, please note that specific restricted client utilities, advanced analytical portals, or interactive professional services strictly require users to be at least 18 years old or the age of majority in their jurisdiction pursuant to the relevant authorized service agreements. If we become aware that we have collected personal data from a minor without authorized consent, we will take immediate steps to remove that information and terminate the associated Account.

11. COOKIE CONSENT MECHANISM

You can manage or withdraw your consent to non-essential cookies at any time through our cookie consent banner or preference center.

12. CHANGES TO THIS PRIVACY POLICY

We may update Our Privacy Policy from time to time to reflect operational or regulatory changes. We will notify You of any material changes by posting the revised policy on this page and updating the "Last Updated" date. For significant updates, we will provide additional notice (such as an interface prompt or email alert).

13. CONTACT US

If you have any questions about this Privacy Policy or wish to exercise your global data protection rights (including overall account erasure), you can reach our Legal & Privacy Team at: