Last Updated: February 2026
System Status: Active & Compliant
1. The Architecture of Trust
Most privacy policies are walls of legal text designed to obscure the truth. At api.juliansong.my, we do not build obfuscation; we build clarity.
I view your personal data as a high-value packet within my digital ecosystem. It is not a commodity to be sold. It is an input signal that allows me to communicate with you and optimise this platform.
This document
outlines the architecture of how we log, process and secure that signal.
2. The Data Controller
This website is the personal philosophy domain of Julian Song. However, the legal entity responsible for the data infrastructure (the “Controller”) is my agency:
Ulement Sdn Bhd Location: Malaysia Contact: ym.gnosnailuj.ipa@olleh
When you interact with this site, you are interacting with the Ulement ecosystem.
3. Data Inputs (What We Log)
We limit our data collection to the variables necessary for the system to function and for me to understand the patterns of my audience.
3.1 Direct Inputs (Data You Provide)
-
Communication: If you email
ym.gnosnailuj.ipa@olleh, we store that correspondence to maintain the thread of conversation. -
Newsletter: If you subscribe to the “Deep Work” essays, we store your email address and name. This is strictly for outgoing transmission of my content.
3.2 Telemetry (Data We Observe)
-
Server Logs: My infrastructure (managed by WPCare) logs standard technical data: IP address, browser type, referring URL and timestamp. This is used for security auditing and ensuring uptime.
-
Analytics: We use tools (such as Google Analytics) to detect patterns in traffic. We do not look at you individually; we look at the system of users to see which essays resonate and where the user experience faces friction.
4. Throughput (How We Process Data)
We do not sell data. We do not rent lists. That introduces entropy and erodes trust. We process your data solely for:
-
Delivery: Sending you the essays or replies you requested.
-
Optimisation: Using telemetry to refactor the website for better performance.
-
Security: Monitoring for brute-force attacks or malicious patterns.
5. Third-Party Nodes
No digital system exists in isolation. We rely on specific trusted sub-processors to handle certain tasks.
-
Ulement & WPCare: My own teams may access the backend for maintenance. They are bound by strict internal confidentiality protocols.
-
Analytics Providers: Google Analytics (traffic patterns).
-
Email Gateways: The service providers used to deliver the newsletter.
These nodes are selected for their reliability and security standards.
6. Storage & Retention
Your data is stored on secure servers managed under the WPCare infrastructure protocols.
-
Retention: We keep email records as long as the conversation is active or you remain subscribed.
-
Deletion: If you unsubscribe, your email is removed from the active loop immediately.
7. Your Admin Rights
You are the admin of your own data. Under applicable laws (including GDPR and PDPA considerations), you have the right to:
-
Request a dump: Ask for a copy of the data we hold on you.
-
Request a wipe: Ask for complete deletion of your personal data.
-
Opt-out: Unsubscribe from any communication at any time.
To execute any of these commands, send a direct signal to ym.gnosnailuj.ipa@olleh.
8. Cookies (The Cache)
We use cookies strictly for functional performance and analytics. We do not use aggressive cross-site tracking pixels to follow you around the web. You may disable cookies in your browser, but it may degrade the user experience of this site.
9. Policy Updates
Systems evolve. This document will be refactored as we add new features or as legal frameworks shift. The “Last Updated” timestamp at the top serves as the version number.