Privacy Policy

Last Updated: June 6, 2025

1. Introduction

Welcome to DocuFlow Pro ("we," "us," or "our"). We are committed to protecting your privacy in compliance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). This Privacy Policy explains how we collect, use, disclose, and manage your personal information when you use our DocuFlow Pro software-as-a-service application (the "Service"). By accessing or using the Service, you consent to the practices described in this policy.

2. Information We Collect

We may collect personal information as defined under the Privacy Act 1988 (Cth). The information we may collect via the Service includes:

a. Personal Information

Information that identifies you, such as your name, email address, contact details, and professional details that you provide when registering or using the Service.

For brokers: Information necessary to create and manage your account and client cases.

For clients: Information and documents you upload as requested by your broker, which may include sensitive information such as financial records and identification documents.

b. Usage Data

Information automatically collected when you access the Service, such as IP address, browser type, operating system, access times, pages viewed, and actions taken within the Service.

c. Financial Information

If you subscribe to paid plans, payment details (processed via Stripe). We do not store full credit card information.

d. Sensitive Information

As defined under the Privacy Act, this may include financial information, government identifiers, and other sensitive details contained in uploaded documents. We collect this only with your consent and when necessary for providing our services.

3. Use of Your Information

We collect and use personal information for purposes directly related to our functions and activities, including:

  • Providing and managing the Service
  • Processing transactions and delivering services
  • Communicating about your account
  • Facilitating broker-client communications
  • Improving and maintaining the Service
  • Complying with legal obligations
  • Protecting against fraudulent activity

4. Disclosure of Your Information

We may disclose personal information in these circumstances:

a. Required by Law

When required by Australian law or legal process, or to protect our rights, property, or safety.

b. Service Providers

To third parties providing services on our behalf (e.g., Stripe for payments, AWS for storage). We ensure these providers comply with Australian privacy requirements.

c. Business Transfers

In connection with any merger, sale of company assets, or acquisition.

d. With Your Consent

For any other purpose with your explicit consent.

e. Overseas Disclosure

Some service providers may be located outside Australia (e.g., AWS regions). We take reasonable steps to ensure overseas recipients comply with APPs.

Uploaded documents are accessible only to the uploading client and their designated broker, except where disclosure is required by law or with explicit consent.

5. Security of Your Information

We implement technical and organisational measures to protect personal information in accordance with APP 11, including:

  • Encryption of data in transit and at rest
  • Access controls and authentication mechanisms
  • Regular security assessments

While we take reasonable steps to secure your information, no electronic transmission or storage is 100% secure.

6. Data Retention

We retain personal information only as long as necessary for:

  • The purposes outlined in this policy
  • Compliance with Australian laws (e.g., tax records for 7 years)
  • Brokers' professional obligations

We will take reasonable steps to destroy or de-identify information that is no longer needed.

7. Your Rights Under Australian Privacy Law

Under the Privacy Act, you have rights to:

  • Access: Request access to your personal information
  • Correction: Request correction of inaccurate, incomplete, or outdated information
  • Complaints: Lodge complaints about our handling of your information

To exercise these rights, contact us at info@one01Apps.com. We will respond within 30 days and may need to verify your identity.

8. Complaints Process

If you believe we've breached the APPs:

  1. Contact us first to resolve the issue
  2. If unsatisfied, you may complain to the Office of the Australian Information Commissioner (OAIC):
    Website: oaic.gov.au
    Phone: 1300 363 992

9. Policy for Children

We do not knowingly collect personal information from children under 15 without parental consent. If we discover such collection, we will delete it promptly.

10. Changes to This Privacy Policy

We may update this policy to reflect changes in law or practices. We will notify you of material changes via email or Service notification and update the "Last Updated" date.

11. Contact Us

For privacy-related inquiries or to exercise your rights:

DocuFlow Pro Privacy Officer
Email: info@one01Apps.com

This Privacy Policy should be read in conjunction with our Terms of Service.