Privacy Policy

1. Introduction

Provenance Guild is committed to protecting the privacy and security of personal information entrusted to us by clients and website visitors. This Privacy Policy explains how we collect, use, store, and protect your personal data in accordance with Taiwan's Personal Data Protection Act and international privacy standards.

By engaging our services or using our website, you acknowledge that you have read and understood this Privacy Policy. If you have questions or concerns about our privacy practices, please contact us at [email protected].

2. Information We Collect

2.1 Personal Information

We collect personal information that you provide directly to us, including:

• Name and contact information (email address, phone number, mailing address)
• Professional and employment information
• Financial information relevant to our consulting engagements
• Communication records and correspondence
• Information provided during consultation or engagement processes

2.2 Automatically Collected Information

When you visit our website, we may automatically collect:

• IP address and device information
• Browser type and operating system
• Pages visited and time spent on our website
• Referral source and exit pages

2.3 Cookies and Tracking Technologies

We use cookies and similar technologies to enhance website functionality and user experience. For detailed information about our cookie usage, please refer to our Cookie Policy.

3. How We Use Your Information

We process personal information for the following purposes:

• Service Delivery: To provide investment consulting services and fulfill our engagement obligations
• Communication: To respond to inquiries, provide updates, and maintain client relationships
• Professional Coordination: To coordinate with legal counsel, accountants, and other specialists as necessary for client engagements
• Compliance: To meet regulatory requirements and legal obligations
• Business Operations: To improve our services, analyze trends, and maintain business records
• Marketing: To send relevant information about our services (only with your consent)

3.1 Legal Basis for Processing

We process personal data based on:

• Your consent for specific processing activities
• Contractual necessity for service delivery
• Legitimate business interests in maintaining client relationships and improving services
• Legal obligations under Taiwan law and professional regulations

4. Information Sharing and Disclosure

We may share your personal information with:

• Professional Service Providers: Legal counsel, accountants, and industry specialists engaged for client services
• Service Providers: Technology providers, cloud hosting services, and administrative support (under strict confidentiality agreements)
• Regulatory Authorities: When required by Taiwan law or regulatory compliance
• Legal Proceedings: If necessary to comply with legal obligations or protect our rights

We do not sell, rent, or trade personal information to third parties for marketing purposes. All data sharing occurs under appropriate confidentiality protections.

5. Data Security Measures

We implement comprehensive security measures to protect personal information:

• Encryption of data in transit and at rest
• Secure servers and access controls
• Regular security audits and vulnerability assessments
• Employee training on data protection and confidentiality
• Physical security measures for document storage
• Incident response procedures for potential data breaches

While we employ industry-standard security measures, no system can be completely secure. We encourage you to protect your own information and promptly notify us of any security concerns.

6. Data Retention

We retain personal information for as long as necessary to:

• Provide ongoing services and maintain client relationships
• Comply with legal and regulatory retention requirements (typically 7-10 years for financial services)
• Resolve disputes and enforce agreements
• Support legitimate business purposes and professional obligations

When personal information is no longer needed, we securely delete or anonymize it in accordance with our data retention policies and applicable law.

7. Your Privacy Rights

Under Taiwan's Personal Data Protection Act, you have the following rights:

• Right of Access: Request copies of personal information we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete information
• Right to Erasure: Request deletion of your personal information (subject to legal retention requirements)
• Right to Object: Object to processing of your personal information for specific purposes
• Right to Data Portability: Receive your personal data in a structured, commonly used format
• Right to Withdraw Consent: Withdraw previously given consent for data processing
• Right to Lodge Complaint: File a complaint with Taiwan's data protection authority

To exercise these rights, please contact us at [email protected]. We will respond to your request within 30 days.

8. Cookies and Tracking

Our website uses cookies to improve functionality and user experience. We use:

• Essential Cookies: Required for website operation and security
• Analytics Cookies: To understand website usage and improve our services
• Preference Cookies: To remember your settings and preferences

For detailed information about our cookie usage and how to manage cookie preferences, please visit our Cookie Policy.

9. Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices or content of third-party sites. We encourage you to review the privacy policies of any external websites you visit.

10. Children's Privacy

Our services are intended for adults aged 18 and over. We do not knowingly collect personal information from individuals under 18. If we become aware that we have inadvertently collected information from a minor, we will delete it promptly.

11. International Data Transfers

While our primary operations are in Taiwan, we may transfer personal information to service providers in other jurisdictions. When we do so, we ensure appropriate safeguards are in place, including standard contractual clauses and adequacy determinations under applicable law.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. When we make material changes, we will notify you through our website or by email. The "Last Updated" date at the top of this policy indicates when the most recent changes were made.

Your continued use of our services after policy updates constitutes acceptance of the revised terms.

13. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact: