Legal
Privacy policy
Last updated 4 July 2026
Compounding Context provides a retained editorial service: we help clients produce public writing grounded in their own work. That work is often sensitive, so we have written this policy the way we write everything else — plainly, and with the mechanism visible.
Who we are
Compounding Context is the data controller for this website and for the personal data we process about prospective clients. You can reach us at office@compoundingcontext.io.
What we collect on this website
- Nothing by default. This site sets no cookies and runs no advertising or cross-site tracking.
- Aggregate analytics. If enabled, we use Plausible Analytics, a privacy-respecting, EU-hosted service that collects no personal data, sets no cookies, and stores no identifiers about you.
- What you send us. If you request a place or write to us, we receive your email address and whatever you choose to include. We use it to reply and, if you become a client, to set up your account.
What we collect as a service
Clients of the editorial service grant us access to material they choose to connect or upload — published writing, and optionally working material such as email or meeting notes. In summary:
- Your data is stored in the European Union.
- Your data is encrypted, with encryption keys unique to your account.
- Your material is used only to produce your own content. It is never used to train models, never shared with other clients, and never sold.
- Material captured from your working life is never reproduced in output — it informs drafts only as synthesis.
- When you leave, we revoke connected access, destroy your encryption keys, and delete your data within thirty days.
The full terms governing client data are set out in our data processing agreement.
Legal bases
We process prospective-client correspondence on the basis of legitimate interest (responding to you), and client data on the basis of contract. Where client material contains personal data about third parties, the client is the controller of that data and we process it on their documented instructions.
Who we share data with
Only the sub-processors necessary to run the service, each under a data processing agreement. The current list, with locations and purposes, is published at /subprocessors. We disclose data to no one else unless the law requires it.
Your rights
Under the GDPR you may request access to, correction of, or deletion of your personal data; restriction of or objection to its processing; and a portable copy. Write to office@compoundingcontext.io and we will respond within thirty days. You may also lodge a complaint with your supervisory authority.
Changes
If this policy changes materially, we will note it here with a new date, and tell active clients directly.