Privacy Policy

Voxotec (“we”, “us”, or “our”) is committed to protecting the privacy of individuals who interact with our website and services. This Privacy Policy explains how we collect, use, disclose, store, and protect your personal information, and how you can exercise your privacy rights.

We are bound by the Privacy Act 1988 (Cth) (“Privacy Act”) and the Australian Privacy Principles (APPs) contained in Schedule 1 of that Act. This policy applies to all personal information we handle in connection with our website at www.voxotec.com and our business services.

By using our website or submitting your personal information to us, you consent to the collection, use, and disclosure of that information as described in this policy.

We may collect the following categories of personal information:

Contact and Inquiry Information

When you submit our contact form, we collect:

• Full name
• Email address
• Company name
• Phone number (optional)
• Budget range
• Service needs and project description
• Message content

Technical and Usage Information

When you visit our website, we may automatically collect:

• IP address and approximate geographic location
• Browser type and version
• Device type and operating system
• Pages visited, time spent on pages, and navigation paths
• Referring website or source URL
• Date and time of visits

This technical information is collected via cookies and analytics tools described in Section 7 of this policy.

We collect personal information in the following ways:

• Directly from you: when you complete and submit our contact form, send us an email, or otherwise communicate with us.
• Automatically: when you visit our website through cookies, web beacons, and analytics technologies (see Section 7).
• From third parties: we may receive information about you from referrers or partners where you have consented to that sharing.

We only collect personal information that is reasonably necessary for our business functions and activities in accordance with APP 3.

We collect and use your personal information for the purposes for which it was collected and for related purposes that you would reasonably expect, including:

• Responding to your inquiries and contact form submissions
• Providing quotes, proposals, and consultations for our services
• Delivering the services you have engaged us for
• Managing our business relationship with you
• Sending relevant service-related communications
• Improving and optimising our website and service offerings
• Analysing website traffic and user behaviour to enhance user experience
• Complying with our legal and regulatory obligations
• Protecting the security and integrity of our systems

We will not use your personal information for a secondary purpose without your consent, unless an exception under the Privacy Act applies (for example, where required or authorised by law).

We do not sell, rent, or trade your personal information to third parties for their own marketing purposes.

We may disclose your personal information to:

• Service providers and subcontractors who assist us in operating our business, including cloud storage providers, email delivery services, and analytics providers. These parties are obligated to handle your information securely and only for the purposes we specify.
• Professional advisors such as lawyers and accountants, where necessary for our business operations.
• Regulatory or government authorities where required by law, court order, or other legal obligation.

We take reasonable steps to ensure that any third parties to whom we disclose personal information handle it in accordance with the Australian Privacy Principles.

Some of our service providers are based overseas. When we disclose personal information to overseas recipients, we take reasonable steps to ensure that those recipients handle your information in a way that is consistent with the Australian Privacy Principles.

Our key overseas service providers and their locations include:

• Supabase (database and backend infrastructure) — United States. Supabase processes and stores contact form submissions we receive.
• Resend (transactional email delivery) — United States. Used to send us internal notification emails when a contact form is submitted.
• Google Analytics / Google Tag Manager — United States. Collects anonymised website usage data. See Section 7.

By providing your personal information to us, you consent to its disclosure to overseas recipients as described above. In accordance with APP 8.1, we take reasonable steps to ensure overseas recipients do not breach the APPs in relation to your information.

Our website uses cookies and similar tracking technologies to collect information about your usage of our site. Cookies are small text files stored on your device.

Google Analytics and Google Tag Manager

We use Google Analytics (via Google Tag Manager) to collect anonymised data about how visitors use our website, including pages visited, session duration, device type, and geographic region. This data is aggregated and does not directly identify you.

Google Analytics may set cookies on your device and transmit data to Google's servers in the United States. You can opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on.

Managing Cookies

Most browsers allow you to control cookies through their settings. You can configure your browser to refuse cookies or to notify you when cookies are being sent. However, disabling cookies may affect the functionality of certain parts of our website.

We take reasonable steps to protect the personal information we hold from misuse, interference, loss, unauthorised access, modification, or disclosure, in accordance with APP 11.

Our security measures include:

• Encrypted data transmission (HTTPS/TLS) for all website traffic
• Secure cloud infrastructure with access controls and role-based permissions for our database
• Input validation and sanitisation to protect against common web vulnerabilities
• Restricted access to personal information on a need-to-know basis

While we take reasonable precautions, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security of your personal information.

Where personal information is no longer needed for any purpose for which it may be used or disclosed, and we are not required by law to retain it, we will take reasonable steps to destroy or de-identify it.

Under APP 12, you have the right to request access to the personal information we hold about you. Under APP 13, you also have the right to request correction of personal information that is inaccurate, out of date, incomplete, irrelevant, or misleading.

To make an access or correction request:

• Contact us by email at hello@voxotec.com with the subject line “Privacy — Access Request” or “Privacy — Correction Request”.
• We will respond to your request within 30 days. We may need to verify your identity before processing your request.
• In most cases, access will be provided free of charge. If your request is complex or requires significant effort, we may charge a reasonable fee and will advise you of this in advance.

We may decline a request in circumstances permitted under the Privacy Act, in which case we will provide written reasons for the refusal.

If you believe we have breached the Australian Privacy Principles or this Privacy Policy, you have the right to make a complaint.

Step 1 — Contact us directly. Please email us at hello@voxotec.com with the subject line “Privacy Complaint”. Please describe the nature of your complaint in as much detail as possible. We will acknowledge your complaint within 5 business days and aim to resolve it within 30 days.

Step 2 — Office of the Australian Information Commissioner (OAIC). If you are not satisfied with our response, or if we fail to respond within 30 days, you may lodge a complaint with the OAIC:

• Website: www.oaic.gov.au
• Phone: 1300 363 992
• Post: GPO Box 5218, Sydney NSW 2001 or GPO Box 2999, Canberra ACT 2601

Our website may contain links to third-party websites. These sites have their own privacy policies, which we do not control and are not responsible for. We encourage you to review the privacy policies of any third-party sites you visit.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. The updated policy will be posted on this page with a revised “Last updated” date. We encourage you to review this policy periodically.

Continued use of our website after any changes to this Privacy Policy constitutes your acceptance of the revised policy.

For any privacy-related questions, requests, or concerns, please contact us at: