Privacy Policy

1. Introduction

Strata Bot AI Pty Ltd (ABN 43 688 631 601), trading as DrilLedger ("we", "us", "our"), is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information in accordance with the Privacy Act 1988 (Cth) ("Privacy Act") and the Australian Privacy Principles (APPs).

By using our website, services, or engaging with us, you consent to the collection, use, and disclosure of your personal information as described in this Privacy Policy.

2. About Us

We are an AI consultancy and software development company specialising in AI strategy, process automation, and custom software solutions for businesses across Australia.

3. What Personal Information We Collect

"Personal information" means information or an opinion about an identified individual, or an individual who is reasonably identifiable. We may collect the following types of personal information:

3.1 Information You Provide Directly

• Contact Information: Name, email address, phone number, business name, job title
• Business Information: Company details, industry sector, business challenges, technology requirements
• Enquiry Information: Details you provide through contact forms, questionnaires, or consultation requests
• Communication Records: Correspondence via email, phone calls, meetings, or other communication channels
• Project Information: Requirements, specifications, and other information related to AI consultancy or software development projects

3.2 Information Collected Automatically

• Technical Information: IP address, browser type, device information, operating system
• Usage Data: Pages visited, time spent on pages, links clicked, referring website
• Cookies and Tracking Technologies: Information collected through cookies, web beacons, and similar technologies (see Section 8)

4. How We Collect Personal Information

We collect personal information through various means, including:

• Website Forms: Contact forms, questionnaire submissions, consultation requests
• Direct Communication: Email, phone calls, video conferences, in-person meetings
• Business Relationships: During the course of providing AI consultancy and software development services
• Third Parties: Business partners, referrals, or publicly available sources (only where lawful and appropriate)
• Automated Technologies: Cookies, analytics tools, and tracking technologies on our website

5. Why We Collect and Use Personal Information

We collect and use your personal information for the following purposes:

5.1 Primary Purposes

• Service Delivery: To provide AI consultancy, software development, and related services
• Communication: To respond to enquiries, provide information, and maintain business relationships
• Project Management: To assess requirements, develop solutions, and deliver projects
• Business Operations: To manage contracts, invoicing, and administrative functions
• Customer Support: To provide technical support and address concerns

5.2 Secondary Purposes

• Marketing: To send relevant information about our services (with your consent or as permitted by law)
• Website Improvement: To analyse usage patterns and improve user experience
• Research and Development: To develop new services and improve existing offerings
• Legal Compliance: To comply with legal obligations and protect our rights
• Security: To protect against fraud, unauthorised access, and security threats

6. Disclosure of Personal Information

We may disclose your personal information to third parties in the following circumstances:

6.1 Service Providers

We may engage third-party service providers to assist with our business operations, including:

• Cloud hosting and infrastructure providers (e.g., Vercel, AWS)
• Email service providers (e.g., Resend)
• Analytics and marketing platforms (e.g., Google Analytics, Google Tag Manager)
• Payment processors and accounting software
• Customer relationship management (CRM) systems

These service providers are contractually obligated to protect your personal information and use it only for the purposes we specify.

6.2 Business Partners and Subcontractors

We may share information with trusted business partners or subcontractors who assist in delivering our services, subject to confidentiality obligations.

6.3 Legal Requirements

We may disclose personal information where required or authorised by law, including:

• To comply with legal obligations, court orders, or regulatory requirements
• To protect our rights, property, or safety, or that of others
• To investigate fraud, security issues, or illegal activities
• In connection with legal proceedings or disputes

6.4 Business Transfers

In the event of a merger, acquisition, sale of assets, or similar business transaction, personal information may be transferred to the acquiring entity, subject to the same privacy protections.

7. Overseas Disclosure of Personal Information

Some of our service providers and technology platforms are located overseas or store data on servers outside Australia. Your personal information may be disclosed to recipients in the following countries:

• United States: Cloud hosting (Vercel, AWS), email services (Resend), analytics (Google)
• European Union: Various cloud and software service providers
• Other Countries: As required for specific project delivery or service provision

When we disclose personal information overseas, we take reasonable steps to ensure that overseas recipients comply with the APPs or are subject to similar privacy protections. By using our services, you consent to such overseas disclosures.

8. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance user experience and analyse website usage.

8.1 What Are Cookies?

Cookies are small text files stored on your device when you visit a website. They help websites remember your preferences and track usage patterns.

8.2 Types of Cookies We Use

• Essential Cookies: Required for website functionality and security
• Analytics Cookies: Help us understand how visitors use our website (Google Analytics, Google Tag Manager)
• Marketing Cookies: Used to deliver relevant advertising and measure campaign effectiveness

8.3 Managing Cookies

You can control and delete cookies through your browser settings. However, disabling cookies may affect website functionality. For more information, visit www.aboutcookies.org.

9. Data Security

We take reasonable steps to protect your personal information from misuse, interference, loss, unauthorised access, modification, or disclosure. Our security measures include:

• Encryption: SSL/TLS encryption for data transmission
• Access Controls: Restricted access to personal information on a need-to-know basis
• Secure Infrastructure: Use of reputable cloud hosting providers with robust security measures
• Regular Reviews: Periodic security assessments and updates
• Staff Training: Employee awareness and training on privacy and security practices

While we implement appropriate security measures, no method of transmission or storage is completely secure. We cannot guarantee absolute security but will notify you of any data breaches as required by law.

10. Data Retention

We retain personal information for as long as necessary to fulfil the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention periods vary depending on the type of information and purpose:

• Client Records: Retained for the duration of the business relationship and for 7 years thereafter (as required by Australian taxation and corporate laws)
• Marketing Communications: Retained until you unsubscribe or request deletion
• Website Analytics: Typically retained for 26 months (Google Analytics default)
• Legal Requirements: Retained as required by applicable laws and regulations

11. Your Rights and Choices

Under the Privacy Act and APPs, you have the following rights regarding your personal information:

11.1 Access

You have the right to request access to the personal information we hold about you. We will provide access unless an exception applies under the Privacy Act.

11.2 Correction

You have the right to request correction of inaccurate, incomplete, or out-of-date personal information. We will take reasonable steps to correct the information or attach a statement if we disagree with the correction.

11.3 Deletion

You may request deletion of your personal information, subject to legal and contractual obligations. We will delete or de-identify information where reasonably practicable.

11.4 Opt-Out of Marketing

You can opt out of receiving marketing communications by:

• Clicking the "unsubscribe" link in marketing emails
• Contacting us at privacy@drilledger.com.au

11.5 Complaints

If you believe we have breached the Privacy Act or APPs, you have the right to lodge a complaint (see Section 13).

12. How to Exercise Your Rights

To exercise any of the rights described above, please contact us:

We will respond to your request within a reasonable timeframe (typically 30 days). We may require verification of your identity before processing your request. In some cases, we may charge a reasonable fee for providing access to information.

13. Complaints and Disputes

If you have a complaint about how we handle your personal information, please contact us at privacy@drilledger.com.au. We will:

1. Acknowledge your complaint within 7 days
2. Investigate the matter thoroughly
3. Provide a written response within 30 days (or notify you if more time is needed)
4. Work with you to resolve the issue

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

14. Children's Privacy

Our services are directed at businesses and are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete it promptly.

15. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations. The updated policy will be posted on our website with a revised "Effective Date."

We encourage you to review this Privacy Policy periodically. Continued use of our services after changes are posted constitutes acceptance of the updated policy. For material changes, we may provide additional notice via email or website notification.

17. Governing Law and Jurisdiction

This Privacy Policy is governed by the laws of Western Australia and the Commonwealth of Australia. Any disputes arising from this policy or our privacy practices shall be subject to the exclusive jurisdiction of the courts of Western Australia.

18. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us: