Privacy Policy

1. What is Personal Information?
Personal information means information or an opinion about an identified individual, or an individual who is reasonably identifiable.
Examples of personal information we may collect include:

• Name

• Business name

• Email address

• Telephone number

• Postal address

• Professional role or organisation

• Communication records

• Billing and transaction details

2. How We Collect Personal Information
We collect personal information in a number of ways, including:

• Directly from you through:

  • Website contact forms

  • Email communications

  • Telephone communications

  • Meetings and consultations

  • Client onboarding processes

  • Contracts and service engagements

• Automatically through our website via cookies and similar technologies

• From publicly available sources

• From third parties where reasonably necessary for our business activities

3. Why We Collect Personal Information
We collect personal information where reasonably necessary for our business functions and activities, including to:

• Provide professional consulting services

• Communicate with clients and prospective clients

• Manage contracts and service delivery

• Process payments and invoices

• Provide support and respond to enquiries

• Improve our services and operations

• Manage business administration

• Comply with legal and regulatory obligations

We do not collect personal information that is not reasonably necessary for our business activities.
4. Use and Disclosure of Personal Information
We use and disclose personal information for:

• The primary purpose for which it was collected

• Related secondary purposes where you would reasonably expect such use or disclosure

• Where required or authorised by law

• Where you have provided consent

We may disclose personal information to:

• Professional advisers (including legal, accounting and insurance advisers)

• Service providers (including IT, cloud services, payment processors, communications and website hosting providers)

• Contractors and consultants engaged in service delivery

• Government authorities where required by law

We do not sell personal information.
5. Marketing Communications
We may use your personal information to send business-related communications, updates, insights and information about our services.
You may opt out of receiving marketing communications at any time by contacting us or using any unsubscribe mechanism provided.
6. Sensitive Information
Sensitive information includes information about an individual's health, racial or ethnic origin, political opinions, religious beliefs, criminal history or similar matters.
We generally do not collect sensitive information. If we do, it will only be collected and used:

• For the primary purpose for which it was obtained

• With your consent

• Where required or authorised by law

7. Overseas Disclosure of Personal Information
We may disclose personal information to overseas recipients where reasonably necessary for business operations, including service providers and clients located outside Australia.
Where overseas disclosure occurs, we take reasonable steps to ensure that the recipient handles the information in a manner consistent with the Australian Privacy Principles, unless an exception under APP 8 applies.
Overseas recipients may be located in jurisdictions including (but not limited to) the United States, Canada, the United Kingdom and the European Union.
8. Data Security
We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification or disclosure.
Security measures include:

• Access controls

• Secure cloud infrastructure

• Encryption where appropriate

• Secure authentication systems

• Internal governance and access policies

However, no method of transmission or storage is completely secure and we cannot guarantee absolute security.
9. Data Retention
We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, including legal, regulatory, accounting and operational obligations.
When personal information is no longer required, we take reasonable steps to destroy or permanently de-identify it.
10. Access and Correction
You may request access to the personal information we hold about you and request correction of inaccurate, incomplete or outdated information.
Requests can be made in writing using the contact details below. We may require verification of identity before processing a request.
11. Complaints
If you have a complaint about how we handle personal information, please contact us in writing.
We will:

• Acknowledge your complaint within 14 business days

• Investigate the complaint

• Respond within 30 business days where reasonably possible

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC): https://www.oaic.gov.au/
12. International Users
Where individuals are located outside Australia, local data protection laws may apply in addition to Australian law.
Where applicable, we will comply with relevant international data protection requirements to the extent required by law.
13. Third-Party Websites
Our website may contain links to third-party websites. We are not responsible for the privacy practices of third parties and encourage you to review their privacy policies.
14. Changes to this Policy
This Privacy Policy may be updated from time to time. The current version will always be available on our website.