Legal

Privacy Policy

Last updated · 8 June 2026

This Privacy Policy explains how [your legal entity / your name] (ABN [your ABN]), trading as Aussie Toolkit ("we", "us", "our"), handles your personal information. We are committed to protecting your privacy in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles ("APPs").

1. Personal information we collect

  • Account information — your name and email address when you sign up (managed via our authentication provider).
  • Payment information — when you purchase, our payment provider (Stripe) processes your payment. We receive limited details (such as your customer ID and payment status); we do not store your full card number.
  • Content you enter — the information you put into a SWMS, including business, site and project details, and any worker names and signatures you add.
  • Lead information — your email address (and any details you provide) when you download a free resource or subscribe to updates.
  • Technical & usage data — information collected automatically such as your IP address, device and browser type, and how you use the Service (via cookies and similar technologies used by us and our providers).

2. How we collect it

We collect personal information directly from you (when you sign up, buy, build a document or contact us), automatically as you use the Service, and from third parties such as our payment provider (for example, payment confirmation).

3. Why we use it

  • to provide, operate and improve the Service;
  • to create accounts, authenticate you and process payments;
  • to deliver resources you request and, with your consent, send you updates and marketing;
  • to provide support and respond to enquiries; and
  • to meet our legal obligations and protect our rights and the Service.

4. Who we share it with

We do not sell your personal information. We share it with trusted service providers who help us run the Service, only as needed, including:

  • Clerk — authentication and account management;
  • Supabase — database and storage of your account and document data;
  • Stripe — payment processing and billing;
  • Kit (ConvertKit) — email delivery and marketing;
  • Vercel — website and application hosting.

We may also disclose information where required by law, or to protect our rights, users or the Service.

5. Overseas disclosure

Some of our service providers store or process data outside Australia (including in the United States). By using the Service you consent to this disclosure. We take reasonable steps to ensure your information is handled appropriately, but overseas recipients may be subject to different laws.

6. Other people's information (workers)

If you add another person's details to a document (for example a worker's name or signature), you are responsible for handling that information lawfully and for obtaining any consent required. In relation to that information you are the responsible party, and we process it on your behalf to provide the Service.

7. Marketing & the Spam Act

We only send marketing emails where you have consented (for example by downloading a resource or subscribing). Every marketing email includes an unsubscribe option, and we comply with the Spam Act 2003 (Cth). You can opt out at any time.

8. Cookies

We and our providers use cookies and similar technologies for sign-in, core functionality, and to understand usage. You can control cookies through your browser, though some features may not work without them.

9. Security

We take reasonable steps to protect your personal information from misuse, loss and unauthorised access, including using reputable providers and access controls. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

10. Accessing & correcting your information

You can access and update much of your information within your account. You may also ask us to access or correct your personal information, or to delete your account and associated data, by contacting us. We will respond within a reasonable time.

11. Retention

We keep personal information while your account is active and for as long as needed to provide the Service, comply with our legal obligations, resolve disputes and enforce our agreements. We delete or de-identify information when it is no longer required.

12. Complaints

If you have a privacy concern, contact us first at [contact email] and we will try to resolve it. If you are not satisfied, you can contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

13. Changes

We may update this Privacy Policy from time to time. The "last updated" date above shows when it last changed.

14. Contact

Privacy questions or requests: [contact email].