Skip to content
Privacy

Our privacy approach.

Plain English. No 40-page legalese document. Here's exactly what we collect, why, and what we do with it.

Last updated: May 2026

The short version

We're a small Australian IT business. We collect the minimum information needed to reply to your enquiry, deliver the service you've signed up for, and meet our legal obligations. We don't sell your data. We don't run advertising trackers. We don't share your details with anyone except the suppliers we need to deliver your service (e.g. Telstra for mobile plans, Stripe for payments).

If you'd like a copy of what we hold about you, or want it deleted, send us a message via our contact form and we'll sort it within a few business days.

What we collect

When you fill in our contact form

  • Your name and email address
  • Your phone number (if you provide it)
  • Whatever you write in the message field

We use this to reply to your enquiry. Nothing more. We don't add you to any marketing list unless you separately ask.

When you buy a mobile plan

  • Your full name and date of birth (required by Telstra for ID verification under telecommunications regulations)
  • Your email address (for receipts and to deliver your eSIM QR code)
  • Company name (only if you tell us — it's optional)
  • Payment details, which are entered directly into Stripe — we never see your full card number

Your name and DOB are passed to Telstra to provision the service. That's a regulatory requirement — we can't activate a mobile service without it.

When you're a managed-IT client

  • Business contact details (name, role, email, phone)
  • Information needed to deliver the service — usually access credentials, device inventories, configuration notes, ticket history
  • Anything you send us in support tickets or emails

Held in our PSA system (ConnectWise) and Microsoft 365 tenant. Both are protected by MFA, role-based access and encryption at rest and in transit.

When you visit this website

We use Cloudflare to serve the site. Cloudflare logs basic request metadata (IP address, user agent, request path) for fraud and abuse protection. We don't use Google Analytics, ad pixels, or third-party trackers. No cookies are set unless you submit a form.

Who we share with

Only with the suppliers we need to deliver what you've asked for:

We don't sell, rent or share your personal information with anyone else. Ever.

How long we keep it

  • Contact form enquiries — kept for 2 years, then deleted unless you've become a client.
  • Client records — kept for the duration of our relationship plus 7 years (Australian tax record-keeping requirement).
  • Mobile plan customers — kept for the life of the service plus 2 years, per telecommunications regulations.

Your rights

Under the Australian Privacy Principles, you can:

  • Ask what personal information we hold about you
  • Ask us to correct anything that's wrong
  • Ask us to delete it (subject to the retention requirements above)
  • Make a complaint if you think we've mishandled your data

Send us a message via our contact form with "Privacy request" in the subject of your message. We'll respond within 30 days (usually much faster).

If you're not happy with how we handle a complaint, you can escalate to the Office of the Australian Information Commissioner.

Security

We're an IT and cybersecurity firm — so we practise what we preach:

  • MFA on every internal account, no exceptions
  • Role-based access and least privilege across all systems
  • Encryption in transit (TLS 1.2+) and at rest
  • EDR/anti-malware on every endpoint and server
  • Patching and configuration audited monthly

If you ever spot a security issue with our site or systems, please let us know via the contact form — we appreciate the heads-up.

Updates

If we change this page in a material way, we'll update the "Last updated" date at the top. For active clients we'll also drop you an email.

Questions?

Drop us a line — we're happy to explain anything in this document or anywhere else.

Contact us Call 02 6173 7877