Privacy Policy

1. About this Policy

This policy outlines how Automation Builders Pty Ltd (ACN 690 308 242) handles personal information collection, usage, storage, and disclosure.

The organisation commits to complying with the Privacy Act 1988 (Cth), the Australian Privacy Principles, and related privacy legislation.

By using our services, you consent to the information collection practices described in this policy.

2. Information We Collect

The company gathers several categories of data:

• Identity details — names, job titles, organisation names
• Contact information — emails, phone numbers, addresses
• Account credentials — login information and account identifiers
• Financial records — payment methods, invoices, transaction histories
• Usage metrics — automation logs, reports, analytical data
• System data — IP addresses, browser specifications, operating systems, device identifiers
• User-submitted content — form entries, communications, file uploads
• Business system access — temporary viewing of client systems (CRMs, ERPs, databases) during service delivery — not permanently retained

The organisation avoids collecting sensitive information unless legally mandated or explicitly consented to.

3. How We Collect Information

Data collection occurs through:

• Direct provision during account setup and service engagement
• Automatic collection via platform usage, cookies, and analytics
• Third-party system integrations authorised by customers
• Business partners or publicly accessible sources

4. How We Use Information

Information serves these purposes:

• Configuring and maintaining services
• Supporting automation troubleshooting
• Accessing client technologies for agreed service delivery
• Processing billing and account management
• Sending updates, support communications, and notices
• Meeting regulatory and contractual obligations
• Enhancing services via analytics and monitoring
• Marketing activities (unless opted out)

5. Data Logging, Storage, and Maintenance Records

5.1 Data Logging and Storage

The organisation does not permanently store customer, client, or end-user operational information on internal systems.

Operational data stays within customer-authorised platforms (Make, Zapier, n8n, HubSpot, CRMs, ERPs). Temporary access occurs only for configuration and maintenance — no copying or external retention happens.

Internal records limited to administration (billing, accounts, projects) exclude operational customer data.

5.2 Internal Maintenance Records

Technical incident records contain only metadata: error types, affected integrations, timestamps, and corrective actions.

These records exclude personal customer information, raw system data, or payment details. Secure storage in project management tools restricts access to authorised personnel.

Retention supports accountability, improvement, and compliance — not external sharing without legal requirement or explicit customer agreement.

6. Disclosure of Information

Information may be shared with:

• Employees, contractors, and service providers involved in delivery
• Third-party automation platforms and cloud services where automations operate
• Regulators, law enforcement, and government bodies (when legally required)
• Professional advisors (legal, accounting services)
• Parties involved in merger, sale, or acquisition scenarios

We never sell your personal information.

7. Security and Compliance

The company applies reasonable technical and organisational measures to protect information from misuse, loss, or unauthorised access.

Security depends in part on third-party platform safeguards (Make, Zapier, HubSpot). Customers must review those platforms' privacy and security documentation independently.

Industry-standard protections including encryption, access controls, and audit logs are employed where platforms support them.

8. International Data Transfers

Automations may involve overseas servers or processors. Service use constitutes consent to international transfers, acknowledging that foreign laws may offer less protection than Australian legislation.

Contractual or platform-based transfer protections are used where available.

9. Your Rights

Individuals may request to:

• Access held personal information
• Correct inaccurate or outdated data
• Request deletion when information is no longer necessary
• Withdraw direct marketing consent

Requests require verification before processing. The organisation aims to respond within reasonable timeframes.

10. Retention

Personal information is retained only as long as necessary for service provision and legal/contractual compliance. Unnecessary information is deleted or de-identified.

11. Complaints

If you believe the organisation has breached the Privacy Act or Australian Privacy Principles, please contact us. Unresolved complaints may be escalated to the Office of the Australian Information Commissioner (OAIC).

12. Contact Us