Information We Collect

When you use our platform, we gather different types of information. Some you provide directly, others we collect automatically as you interact with our services.

Personal Information You Provide

• Name, email address, and phone number when you create an account
• Business details including company name, ABN, and industry sector
• Financial data you input for budgeting and forecasting purposes
• Payment information when you subscribe to our services
• Communications you send us through contact forms or support channels

Information Collected Automatically

• Device information including IP address, browser type, and operating system
• Usage data showing how you interact with our platform features
• Session information and access times
• Cookies and similar tracking technologies

How We Use Your Information

We use the data we collect to run our service and make it better. Here's what that actually means in practice:

Data Sharing and Disclosure

We don't sell your information. That's not our business model. But we do share data with certain parties who help us run the service.

Service Providers

We work with third-party companies who process data on our behalf. These include cloud hosting providers, payment processors, and email service providers. All are bound by confidentiality agreements and can only use your data for the specific purposes we define.

Legal Requirements

Sometimes we have to share information because the law requires it. This includes responding to court orders, complying with regulatory investigations, or protecting our legal rights. We'll always notify you when legally permitted to do so.

Your Rights Under Australian Privacy Law

The Australian Privacy Principles give you specific rights regarding your personal information. Here's what you can do and how to do it:

1. Access Your Data: You can request a copy of all personal information we hold about you. We'll provide this within 30 days at no charge.
2. Correct Inaccuracies: If information we hold is wrong or outdated, you can ask us to fix it. We'll update our records promptly.
3. Delete Your Account: You can request deletion of your account and associated data. Some information may be retained for legal compliance.
4. Restrict Processing: You can ask us to limit how we use your information in certain circumstances.
5. Data Portability: Request your data in a structured, commonly used format to transfer to another service.
6. Object to Processing: You can object to certain types of data processing, particularly for marketing purposes.

To exercise any of these rights, email us at info@celarithoza.com with your request. We'll verify your identity and respond within the timeframes required by Australian law.

Data Security Measures

Protecting your financial data is critical. We use multiple layers of security to keep your information safe from unauthorised access, alteration, or destruction.

• Bank-grade encryption for all data transmission (TLS 1.3 protocol)
• AES-256 encryption for data stored on our servers
• Multi-factor authentication required for account access
• Regular security audits and penetration testing
• Staff training on data protection and confidentiality
• Restricted access to personal data on a need-to-know basis
• Automated backup systems with encrypted storage

While we take every reasonable precaution, no system is completely secure. If we detect a data breach that poses a serious risk to your information, we'll notify you within 72 hours as required by law.

Data Retention and Deletion

We keep your information only as long as necessary. But what does "necessary" actually mean?

Active Accounts

While your account remains active, we retain all your data to provide continuous service. You can export or delete specific information at any time through your account settings.

Closed Accounts

After you close your account, we delete most personal data within 90 days. However, some information must be retained longer for legal reasons:

• Financial transaction records: 7 years (Australian tax law requirement)
• Business correspondence: 7 years (Corporations Act 2001)
• Account creation and deletion logs: 2 years (security purposes)
• Aggregated, anonymised usage statistics: indefinitely

Cookies and Tracking Technologies

We use cookies to make the platform work properly and understand how you use it. You have control over most cookie settings.

Essential Cookies

These are required for the platform to function. They handle things like keeping you logged in and remembering your preferences. You can't disable these without breaking the service.

Analytics Cookies

We use these to understand which features get used and where people encounter problems. This data is aggregated and doesn't identify you personally. You can opt out through your account settings.

International Data Transfers

Your data is primarily stored on Australian servers. However, some of our service providers operate internationally, which means your information might be processed outside Australia.

When this happens, we ensure those providers offer protections equivalent to Australian privacy law. We use standard contractual clauses and conduct due diligence on data handling practices.

Countries where your data may be processed include: United States (cloud hosting), Singapore (backup servers), and New Zealand (payment processing). All these transfers comply with Australian Privacy Principle 8.

Children's Privacy

Our service is designed for business use and isn't directed at children under 16. We don't knowingly collect information from minors. If you're under 16, please don't use our platform or provide any personal information.

If we discover we've accidentally collected data from someone under 16, we'll delete it immediately. Parents or guardians who believe we may have information about their child should contact us straight away.

Changes to This Policy

We update this policy occasionally to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you by email and display a notice on the platform for 30 days.

Minor updates might happen without direct notification. We recommend reviewing this policy every few months. The "Last updated" date at the top shows when the current version took effect.

Continuing to use our service after changes take effect means you accept the updated policy. If you disagree with changes, you can close your account before they come into force.

Complaints and Disputes

If you have concerns about how we handle your information, we want to hear about it. Start by contacting us directly—most issues can be resolved quickly through conversation.

If you're not satisfied with our response, you have the right to lodge a complaint with the Office of the Australian Information Commissioner (OAIC). They can investigate and make determinations about privacy breaches.

OAIC contact details: 1300 363 992 or visit oaic.gov.au. They're an independent authority and their services are free.