INTRODUCTION

Design Studio Manager Pty Ltd (ABN 13 692 715 923) (“Company”, “we”, “us”, or “our”) is committed to protecting your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (“APPs”).

This Privacy Policy describes how we collect, hold, use, and disclose your personal information when you use our website at http://www.designstudiomanager.com.au and our software-as-a-service (SaaS) application (collectively, the “Service”).

By accessing or using the Service, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with this Privacy Policy, please do not use the Service.

INFORMATION WE COLLECT

We may collect and hold the following types of personal information:

Information You Provide to Us

• Account information: When you register for an account, we collect your name, email address, phone number, business name, and password.
• Business information: Information about your business operations that you enter into the Service, including project details, client information, staff details, scheduling data, and financial information such as quotes, invoices, and purchase orders.
• Communications: When you contact us directly, we may collect your name, email address, phone number, and the contents of your message or enquiry.
• Payment information: If you subscribe to a paid plan, we collect billing details. Payment card details are processed by our third-party payment processor and are not stored on our servers.

Information Collected Automatically

• Log data: Your IP address, browser type and version, operating system, referring URLs, pages visited, date and time of access, and other standard web log information.
• Device information: Information about the device you use to access the Service, including device type, unique device identifiers, and screen resolution.
• Cookies and similar technologies: We use cookies, session tokens, and similar technologies to maintain your session, remember your preferences, and improve the Service. See the “Cookies” section below for more detail.

HOW WE USE YOUR INFORMATION

We use the personal information we collect for the following purposes:

• To provide, operate, and maintain the Service;
• To create and manage your account;
• To process your subscription and billing;
• To communicate with you, including responding to your enquiries and sending you Service-related notices;
• To improve, personalise, and develop the Service;
• To monitor and analyse usage patterns and trends;
• To detect, prevent, and address technical issues, fraud, or security breaches;
• To comply with our legal obligations under Australian law; and
• For any other purpose with your consent.

WE DO NOT SELL OR SHARE YOUR INFORMATION WITH THIRD PARTIES

We do not sell, rent, trade, or otherwise provide your personal information to third parties for payment, marketing, advertising, or any other commercial purpose.

We do not share your personal information with third parties in exchange for any form of consideration, whether monetary or otherwise.

Your business data entered into the Service (including project details, client information, financial data, and operational information) belongs to you. We do not access, use, analyse, or share your business data for any purpose other than providing the Service to you, unless required by law.

DISCLOSURE OF YOUR INFORMATION

We will only disclose your personal information in the following limited circumstances:

• Service providers: We may share your information with trusted service providers who assist us in operating the Service (such as hosting providers and payment processors), solely to the extent necessary for them to perform their services for us. These providers are contractually obligated to protect your information and may not use it for any other purpose.

• Legal requirements: We may disclose your information where required to do so by law, regulation, legal process, or governmental request, including to comply with a court order, subpoena, or mandatory reporting obligation under Australian law.

• Protection of rights: We may disclose your information where we believe it is necessary to investigate, prevent, or take action regarding potential violations of these Terms, suspected fraud, situations involving potential threats to the safety of any person, or as evidence in litigation in which we are involved.

• Business transfers: If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our Service of any change in ownership or uses of your personal information.

• With your consent: We may disclose your information for any other purpose with your prior consent.

DATA STORAGE AND SECURITY

Your personal information is stored on secure servers located in Australia. We take reasonable steps to protect your personal information from misuse, interference, loss, unauthorised access, modification, or disclosure, in accordance with APP 11.

Security measures we employ include:

• Encryption of data in transit using SSL/TLS;
• Access controls and authentication mechanisms;
• Regular security assessments and monitoring; and
• Secure password hashing.

However, no method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

DATA RETENTION

We will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy, or as required to comply with our legal obligations, resolve disputes, and enforce our agreements.

COOKIES

We use cookies and similar tracking technologies to track activity on the Service and to hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier.

We use the following types of cookies:

• Essential cookies: Required for the operation of the Service. These include cookies that enable you to log in to secure areas and use the Service’s features.
• Functionality cookies: Used to recognise you when you return to the Service and to remember your preferences and settings.
• Analytics cookies: Used to collect information about how you use the Service, which pages you visit, and any errors you encounter. This information is used to improve the Service.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some features of the Service.

OVERSEAS DISCLOSURE

We store your data in Australia. In limited circumstances, some of our service providers (such as cloud hosting or email delivery providers) may store or process data in overseas locations. Where this occurs, we take reasonable steps to ensure that the overseas recipient handles your personal information in accordance with the APPs, as required by APP 8.

We will not transfer your personal information overseas unless: (a) we have taken reasonable steps to ensure the overseas recipient complies with the APPs; (b) you have consented to the transfer; or (c) the transfer is required or authorised by law.

YOUR RIGHTS UNDER THE PRIVACY ACT

Under the Privacy Act 1988 (Cth) and the APPs, you have the following rights in relation to your personal information:

Access (APP 12)

You have the right to request access to the personal information we hold about you. We will respond to your request within a reasonable period (generally within 30 days). We may charge a reasonable fee for providing access to cover our administrative costs.

Correction (APP 13)

You have the right to request that we correct any personal information we hold about you that is inaccurate, out of date, incomplete, irrelevant, or misleading. We will respond to your request within a reasonable period (generally within 30 days).

Complaints

If you believe that we have breached the APPs or this Privacy Policy, you may lodge a complaint with us using the contact details below. We will investigate your complaint and respond to you within 30 days. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.

NOTIFIABLE DATA BREACHES

In the event of an eligible data breach as defined under Part IIIC of the Privacy Act 1988 (Cth) (the Notifiable Data Breaches scheme), we will take all reasonable steps to contain the breach and assess whether it is likely to result in serious harm to any individual. If we determine that the breach is likely to result in serious harm, we will notify the affected individuals and the OAIC as soon as practicable in accordance with our obligations under the Act.

DIRECT MARKETING

We may send you direct marketing communications about our Service, including feature updates, product announcements, and promotional offers. We will only do so where you have consented or where we are otherwise permitted to do so under the Spam Act 2003 (Cth) and the APPs.

Every marketing communication will include a clear and easy way to unsubscribe. You may opt out of receiving marketing communications from us at any time by clicking the “unsubscribe” link in any email or by contacting us using the details below.

THIRD-PARTY INTEGRATIONS

The Service may offer integrations with third-party services (such as accounting software). If you choose to enable a third-party integration, you may be asked to authorise the exchange of certain data between the Service and the third-party service. Any data shared with a third-party service through an integration you have enabled is governed by that third party’s own privacy policy. We are not responsible for the privacy practices of third-party services.

We will not enable any third-party integration or share your data with any third-party service without your explicit authorisation.

CHILDREN’S PRIVACY

The Service is not intended for use by persons under the age of 18. We do not knowingly collect personal information from children under 18 years of age. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information as soon as practicable.

CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on the Service and updating the “Last updated” date at the top of this page. Where changes are material, we will use reasonable efforts to notify you by email or by placing a prominent notice on the Service.

You are advised to review this Privacy Policy periodically for any changes. Your continued use of the Service after any changes to this Privacy Policy constitutes your acceptance of those changes.

CONTACT US

If you have any questions about this Privacy Policy, wish to exercise your rights under the Privacy Act 1988 (Cth), or wish to make a complaint, please contact us at:

Design Studio Manager Pty Ltd
ABN: 13 692 715 923
New South Wales 2031
Australia
Email: info@designstudiomanager.com.au

If you are not satisfied with our response to your privacy complaint, you may contact the Office of the Australian Information Commissioner:

Office of the Australian Information Commissioner (OAIC)
Website: www.oaic.gov.au
Phone: 1300 363 992
Email: enquiries@oaic.gov.au