At Imagineer Digital Labs (“we”, “us”, “our”), we believe that digital security and data privacy are fundamental rights. We are committed to protecting your personal information and being transparent about how we collect, use, store, and share it.
This policy outlines our obligations under the Australian Privacy Principles (APPs) and the General Data Protection Regulation (GDPR).
1. What Information We Collect
We only collect personal information that is reasonably necessary for our business operations. The types of information we hold include:
We only collect personal information that is reasonably necessary for our business operations. The types of information we hold include:
- Identity & Contact Data: Name, email address, phone number, company name, and job title.
- Technical & Usage Data: IP addresses, browser types, time zone settings, and website interaction data (collected via cookies and analytics tools).
- Communication Data: Information provided when you contact us via forms, emails, or during discovery workshops and consultations.
2. How We Collect It
We collect your information through two primary methods:
We collect your information through two primary methods:
- Directly from you: When you fill out a contact form, engage us for services, subscribe to our insights, or communicate with our team.
- Automatically: When you interact with our website, we use cookies and similar tracking technologies to collect technical data about your equipment and browsing actions.
3. How We Use Your Information
We use your personal data under lawful bases (such as your consent, the performance of a contract, or our legitimate business interests) for the following purposes:
We use your personal data under lawful bases (such as your consent, the performance of a contract, or our legitimate business interests) for the following purposes:
- To provide, manage, and deliver our digital product and engineering services.
- To respond to your inquiries and provide project estimates or feasibility audits.
- To send you relevant industry insights (only if you have opted in).
- To improve our website, user experience, and technical infrastructure.
- To comply with our legal and regulatory obligations.
4. Disclosure & Overseas Transfers
We do not sell your personal data. We may share your information strictly on a need-to-know basis with:
We do not sell your personal data. We may share your information strictly on a need-to-know basis with:
- Trusted Service Providers: Third-party vendors who provide IT, cloud hosting (e.g., AWS, Google Cloud), CRM, and analytics services.
- Overseas Recipients: Because we use global cloud infrastructure, your data may be stored or processed on servers located outside of Australia or the European Economic Area (EEA). When this occurs, we ensure strict data protection safeguards are in place (such as Standard Contractual Clauses) to protect your privacy rights.
5. Data Storage & Security
We apply a 'Zero Trust' and DevSecOps approach to data security. Your personal information is stored in highly secure, encrypted cloud environments. We implement robust technical and organisational measures—aligned with ISO 27001 standards—to protect your data from unauthorised access, alteration, disclosure, or destruction.
We apply a 'Zero Trust' and DevSecOps approach to data security. Your personal information is stored in highly secure, encrypted cloud environments. We implement robust technical and organisational measures—aligned with ISO 27001 standards—to protect your data from unauthorised access, alteration, disclosure, or destruction.
6. Your Rights & Choices
Under the APPs and the GDPR, you have the right to:
Under the APPs and the GDPR, you have the right to:
- Access: Request a copy of the personal data we hold about you.
- Correction: Request that we fix any inaccurate or incomplete information.
- Erasure: Request the deletion of your personal data (the "right to be forgotten").
- Withdraw Consent: Opt-out of marketing communications at any time.
To exercise any of these rights, please contact us using the details below. We will respond to your request within 30 days.
7. Complaints
If you believe we have breached the APPs or the GDPR, please contact us immediately. We take all privacy complaints seriously and will conduct a prompt investigation.
If you are not satisfied with our response, you have the right to escalate your complaint to the relevant authority:
If you believe we have breached the APPs or the GDPR, please contact us immediately. We take all privacy complaints seriously and will conduct a prompt investigation.
If you are not satisfied with our response, you have the right to escalate your complaint to the relevant authority:
- In Australia: The Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.
- In the EU: Your local Data Protection Authority.
8. Contact Us
If you have any questions about this Privacy Policy or how we handle your data, please reach out:
Imagineer Digital Labs
If you have any questions about this Privacy Policy or how we handle your data, please reach out:
Imagineer Digital Labs
- Email: privacy@imagineerlabs.com.au
- Address: Ground Floor, 161 Collins St, Melbourne VIC 3000, Australia
