Privacy Policy

• 2.1. Personal Information: We may collect personal information that you voluntarily provide when using our services, such as your name, email address, postal address, phone number, and other data. This includes information provided during account registration, subscription to newsletters, or contact inquiries.
• 2.2. Automatically Collected Information: We automatically collect certain information when you visit our website, such as your IP address, browser type, operating system, referring URLs, and pages visited. This data is used to improve our website and enhance your user experience.

We may use your information for the following purposes:

• to enable you to access and use our website and services;
• to operate, protect, improve and optimise our website, services, business and our users’ experience, such as to perform analytics, conduct research and for advertising and marketing;
• to send you service, support and administrative messages, reminders, technical notices, updates, security alerts, and information requested by you;
• to send you marketing and promotional messages and other information that may be of interest to you, including information sent by, or on behalf of, our business partners that we think you may find interesting;
• to monitor and analyze usage patterns to enhance our website’s functionality and security;
• to comply with our legal obligations, resolve any disputes that we may have with any of our users, and enforce our agreements with third parties; and

We may disclose personal information for the purposes described in this privacy policy to:

• our employees and related bodies corporate;
• third party suppliers and service providers (including providers for the operation of our websites and/or our business or in connection with providing our products and services to you);
• our existing or potential agents, business partners or partners;
• specific third parties authorised by you to receive information held by us; and/or
• other persons, including government agencies, regulatory bodies and law enforcement agencies, or as required, authorised or permitted by law.

We protect your information with the same rigour we bring to our client work. Our security measures include end-to-end encryption, multi-factor authentication, regular penetration testing, and continuous monitoring protocols. Access to your data is restricted to authorised personnel only, with all activities logged and audited.

We maintain ISO 27001-aligned security frameworks and conduct quarterly security assessments. Our website is hosted on Webflow's enterprise platform, which provides SOC 2 Type II certified infrastructure, AWS-backed security, and 99.99% uptime reliability with automatic backups and DDoS protection.

In the unlikely event of a data breach, we will notify you and relevant authorities within the timeframes required under the Privacy Act 1988 (Cth) and Notifiable Data Breaches scheme.

Your data is never shared with third parties without your explicit consent, except where required by law. We retain information only as long as necessary for the purposes outlined in this policy, after which it is securely destroyed using industry-standard data sanitization methods.

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent. However, we may share your information with trusted service providers who assist us in operating our website, subject to strict confidentiality agreements.

We may collect personal information about you when you use and access our website.

While we do not use browsing information to identify you personally, we may record certain information about your use of our website, such as which pages you visit, the time and date of your visit and the internet protocol address assigned to your computer.

We may also use ‘cookies’ or other similar tracking technologies on our website that help us track your website usage and remember your preferences. Cookies are small files that store information on your computer, TV, mobile phone or other device. They enable the entity that put the cookie on your device to recognise you across different websites, services, devices and/or browsing sessions. You can disable cookies through your internet browser but our websites may not work as intended for you if you do so.

We may also use cookies to enable us to collect data that may include personal information. For example, where a cookie is linked to your account, it will be considered personal information under the Privacy Act. We will handle any personal information collected by cookies in the same way that we handle all other personal information as described in this Privacy Policy.

Manage cookies.

• 7.1. Access: You have the right to access the personal information we hold about you. You can request a copy of your information by contacting us.
• 7.2. Correction: If you believe the personal information we hold about you is inaccurate or incomplete, you can request corrections.
• 7.3. Deletion: You have the right to request the deletion of your personal information.
• 7.4. Objection: You can object to the processing of your personal information for certain purposes, such as direct marketing.
• 7.5. Data Portability: You have the right to receive your personal information in a structured, commonly used, and machine-readable format.

We may update this Privacy Policy periodically to reflect changes in our practices or for legal reasons. We will notify you of any significant changes by posting the revised Privacy Policy on our website.

If you would like more information concerning how we handle your information, or our approach to privacy, please contact:

Invara Group Pty Ltd

Attention: Privacy Officer

Email: info@invara.com.au

Effective: 01 July 2025
Updated: This Privacy Policy was last updated on 01 July 2025