Privacy Policy

ComplyMate Pty Ltd (ABN 71 652 040 732) (“we”, “us” or the “Company”) is committed to privacy protection. At https://complymate.com.au (“this Platform”), we understand the importance of keeping personal information private and secure. This privacy policy (“Privacy Policy”) describes generally how we manage personal information and safeguard privacy. If you would like more information, please don’t hesitate to contact us.

We care about your privacy:
We will never rent, trade or sell your email address to anyone.
We will never publicly display your email address or other personal details that identify you.

The Australian Privacy Principles

We will treat all personal information in accordance with any and all obligations that are binding upon us under the Privacy Act 1988 (Cth) (“Privacy Act”). The Privacy Act lays down 13 key principles in relation to the collection and treatment of personal information, which are called the “Australian Privacy Principles”.

Collection of Personal Information

Information that we collect

Personal Information held by the Company may include:

  • your name;
  • the contact details and organisational roles of our actual and prospective customers, suppliers and other business contacts. Typically, this information includes names, addresses, telephone numbers, e-mail addresses and job titles;
  • any information that you provided to us during your account creation process or added to your user profile;
  • your preferences and password for using this Platform and your computer and connection information; and
  • any information that you otherwise share with us.

Information that you provide to us

At this Platform, we only collect personal information that is necessary for us to conduct our business as a tax compliance and analytics platform.

We may collect personal information that you provide to us about yourself when you use this Platform, including (without limitation) when you:

  • create a user account;
  • add information to your user profile;
  • complete an online contact form to contact us;
  • provide information to us by telephone or through marketing or competition application forms; or
  • send us an email or other communication.

IP Addresses

This Platform may also collect Internet Protocol (IP) addresses. IP addresses are assigned to computers on the internet to uniquely identify them within the global network. The Company collects and manages IP addresses as part of the service of providing internet session management and for security purposes. The Company may also collect and use web log, computer and connection information for security purposes and to help prevent and detect any misuse of, or fraudulent activities involving, this Platform.

Cookies

This Platform uses “cookies” to help personalise your online experience. A cookie is a text file or a packet of information that is placed on your hard drive by a web page server to identify and interact more effectively with your computer. There are two types of cookies that may be used at this Platform: a persistent cookie and a session cookie. A persistent cookie is entered by your web browser into the “Cookies” folder on your computer and remains in that folder after you close your browser, and may be used by your browser on subsequent visits to this Platform. A session cookie is held temporarily in your computer’s memory and disappears after you close your browser or shut down your computer. Cookies cannot be used to run programs. Cookies are uniquely assigned to you, and can only be read by a web server in the domain that issued the cookie to you. In some cases, cookies may collect and store personal information about you. The Company extends the same privacy protection to your personal information, whether gathered via cookies or from other sources.

You can configure your internet browser to accept all cookies, reject all cookies or notify you when a cookie is sent. Please refer to your internet browser’s instructions to learn more about these functions. Most web browsers automatically accept cookies, but you can usually modify your browser settings to decline cookies if you prefer. If you choose to decline cookies, you may not be able to fully experience the interactive features of this Platform.

Why we use cookies

This Platform uses cookies in order to:

  • remember your preferences for using this Platform;
  • manage the signup process when you create an account with us;
  • show relevant notifications to you (e.g. notifications that are relevant only to users who have, or have not, created an account or subscribed to newsletters or email or other subscription services); and
  • remember details of data that you choose to submit to us (e.g. through online contact forms).

Many of these cookies are removed or cleared when you log out but some may remain so that your preferences are remembered for future sessions.

How we may use your Personal Information

Your personal information may be used in order to:

  • verify your identity;
  • make changes to your account;
  • respond to any queries or feedback that you may have;
  • conduct appropriate checks for fraud;
  • prevent and detect any misuse of, or fraudulent activities involving, this Platform;
  • conduct research and development in respect of our services;
  • comply with our legal obligations and assist government and law enforcement agencies or regulators;
  • gain an understanding of your information and communication needs or obtain your feedback or views about our services in order for us to improve them; and/or
  • maintain and develop our business systems and infrastructure, including testing and upgrading of these systems,

and for any other purpose reasonably considered necessary or desirable by the Company in relation to the operation of our business.

From time to time, we may email our customers with news, information and offers relating to our own services. Your personal information may also be collected so that the Company can promote and market products and services to you. This is to keep you informed of products, services, and special offers we believe you will find valuable and may continue after you cease acquiring products and services from us. If you would prefer not to receive promotional or other material from us, please let us know and we will respect your request. You can unsubscribe from such communications at any time if you choose.

When we may disclose your Personal Information

In order to deliver the services you require or for the purposes set out above, the Company may disclose your personal information to organisations outside the Company. Your personal information may be disclosed to these organisations only in relation to this Platform, and the Company takes reasonable steps to ensure that these organisations are bound by confidentiality and privacy obligations in relation to the protection of your personal information. These organisations may carry out or provide:

  • tax advisory services;
  • customer enquiries;
  • mailing systems;
  • billing and debt-recovery functions;
  • information technology services;
  • monitoring and reporting for things such as error and usage;
  • marketing, telemarketing and sales services;
  • market research; and
  • Platform usage analysis.

In addition, we may disclose your personal information to:

  • your authorised representatives or legal advisers (when requested by you to do so);
  • credit-reporting and fraud-checking agencies;
  • data validation providers;
  • financial institutions where you hold accounts or have relationships and have been nominated by you;
  • our IT service providers, payment system operators, data storage, webhosting and server providers, security vendors and maintenance or problem-solving providers;
  • persons you may have expressly consented to the disclosure or the consent may be reasonably inferred from the circumstances; 
  • our professional advisers, including our accountants, auditors and lawyers;
  • government and regulatory authorities and other organisations, as required or authorised by law; and
  • the police or other appropriate persons where your communication suggests possible illegal activity or harm to others.

Storage and security of your Personal Information

We are committed to maintaining the confidentiality of the information that you provide us and we will take all reasonable precautions to protect your personal information from unauthorised use or alteration. In our business, personal information may be stored both electronically (on our computer systems and with our Platform hosting provider) and in hard-copy form. Firewalls, anti-virus software and email filters, as well as passwords, protect all of our electronic information. Likewise, we take all reasonable measures to ensure the security of hard-copy information. 

We store information about you in computer systems and databases operated by either us or our external service providers with enterprise grade security. 

We take appropriate technical and organisational measures (including physical and electronic security) to safeguard personal information from loss, misuse, unauthorised access, modification or disclosure. The measures we use are designed to provide a level of security appropriate to the risk of processing your personal information. Specific measures that we use include:

  • restricting access to personal information where practicable;
  • implementing two-factor authentication on all accounts by default;
  • using industry-standard encryption to protect data in transit and at rest;
  • demanding equivalent security and confidentiality measures from any third parties with which we do business;
  • requiring all employees to comply with internal information security policies and keep information secure;
  • requiring all employees to complete training about information security; and
  • monitoring and regularly reviewing our practise against our own policies and against industry best practice. 

We cannot guarantee the security of any information that is transmitted to or by us over the internet. The transmission and exchange of information is carried out at your own risk. Although we take measures to safeguard against unauthorised disclosures of information, we cannot assure you that the personal information we collect will not be disclosed in a manner that is inconsistent with this Privacy Policy.

Likewise, we take all reasonable measures to ensure the security of hard-copy information. 

Disclosure of information outside of Australia

The ComplyMate application and database is hosted on Amazon Web Services in Australia. However, we use third-party services to support our operations and these services may store data in jurisdictions outside of Australia.

Specifically, this includes:

  • Google Workspace (Gmail and Google Drive): We use Google Workspace to manage email communications and store business-related documents. These services are provided by Google LLC, which may store and process data on servers located in the United States and other international locations. Google applies robust security measures and complies with international privacy standards to protect personal information.
  • Slack: We use Slack Technologies LLC’s collaboration platform for internal communication and project coordination. Slack stores data including messages and shared files on servers located in the United States. Slack maintains enterprise-grade security and adheres to global data protection frameworks.
  • Sentry: We use Sentry for application monitoring and error tracking. Sentry stores data including error events, logs, and metadata on servers located in the United States. Sentry applies rigorous security protocols and complies with international privacy and data protection standards.

We take reasonable steps to ensure that any third-party service providers we engage implement appropriate safeguards to protect your personal information, including contractual obligations and technical controls. By interacting with us through these services, you consent to the transfer and storage of your personal information outside of Australia in accordance with this Privacy Policy.

Contacting us about Privacy

If you would like more information about the way we manage personal information that we hold about you, or are concerned that we may have breached your privacy, please contact us by email at support@complymate.com.au

Access to your Personal Information

In most cases, you may have access to personal information that we hold about you. We will handle requests for access to your personal information in accordance with the Australian Privacy Principles. All requests for access to your personal information must be directed to us by email using the email address provided above. We will deal with all requests for access to personal information as quickly as possible. Requests for a large amount of information, or information that is not currently in use, may require further time before a response can be given. We may charge you a fee for access if a cost is incurred by us in order to retrieve your information, but in no case will we charge you a fee for your application for access. 

In some cases, we may refuse to give you access to personal information that we hold about you. This may include circumstances where giving you access would:

  • be unlawful (e.g. where a record that contains personal information about you is subject to a claim for legal professional privilege by one of our contractual counterparties);
  • have an unreasonable impact on another person’s privacy; or 
  • prejudice an investigation of unlawful activity.

We may also refuse access where the personal information relates to existing or anticipated legal proceedings, and the information would not be accessible by the process of discovery in those proceedings.

If we refuse to give you access, we will provide you with reasons for our refusal.

Correcting your Personal Information

We will amend any personal information about you that is held by us and that is inaccurate, incomplete or out of date if you request us to do so. If we disagree with your view about the accuracy, completeness or currency of a record of your personal information that is held by us, and you ask us to associate with that record a statement that you have a contrary view, we will take reasonable steps to do so.

Duration of retention of your data

We will only keep your data for as long as is necessary for the purpose for which it was collected, subject to satisfying any legal, accounting or reporting requirements.  At the end of any retention period, your data will either be deleted completely or anonymised (for example, by aggregation with other data so that it can be used in a non-identifiable way for statistical analysis and business planning). In some circumstances, you can ask us to delete your data.

Complaints

If you have a complaint about the way in which we have handled any privacy issue, including your request for access or correction of your personal information, you should contact us at support@complymate.com.au .

We will consider your complaint and determine whether it requires further investigation. We will notify you of the outcome of this investigation and any subsequent internal investigation.

If you remain unsatisfied with the way in which we have handled a privacy issue, you may approach an independent adviser or contact the Office of the Australian Information Commissioner (www.oaic.gov.au) for guidance on alternative courses of action which may be available. 

Keeping your Information up to date

To ensure that your personal information is accurate and up to date, please promptly advise us of any changes to your information by contacting us by email at support@complymate.com.au 

Changes to this Privacy Policy

From time to time, it may be necessary for us to revise this Privacy Policy. Any changes will be in accordance with any applicable requirements under the Privacy Act and the Australian Privacy Principles. We may notify you about changes to this Privacy Policy by posting an updated version on this Platform.

If you require any further information about the Privacy Act and the Australian Privacy Principles, you can visit the Federal Privacy Commissioner’s Platform (see www.privacy.gov.au).

Last Review: August 2025