Privacy Policy

Effective / Last Updated: 05 September 2025
ABN: 45 337 110 671

Find a Sign ("we", "our", "us") is committed to protecting your privacy. This Policy explains how we collect, use, store, and disclose personal information when you use findasign.au (the "Website"), our services, or otherwise interact with us. By using our Website or services, you agree to this Policy.

1. Information We Collect

• Personal & Business Identifiers: Name, business name, ABN/ACN, role, email, phone, billing & shipping addresses.
• Account & Security: Login credentials (stored as hashed & salted values), session tokens, role flags (customer / supplier).
• Payment & Subscription: Processed via Stripe. We do not store full card numbers; we receive tokens and metadata (plan, status, renewal dates).
• Supplier Materials: Service descriptions, compliance / insurance documents, verification evidence.
• Transactional / RFQ Data: Quote requests, responses, order references, file attachments.
• Usage & Technical Data: IP address, device type, browser, operating system, pages viewed, referrers, on‑site actions (e.g. searches, clicks).
• Communications: Messages, support tickets, reviews, feedback, and email correspondence.

2. How We Collect Information

• Directly from you during registration, profile completion, RFQs, reviews, or support enquiries.
• Automatically via cookies, analytics scripts, and server logs.
• From payment processors (status / billing events) and notification services.
• From public registers (e.g. ABN lookup) for verification purposes.

3. Why We Use Your Information

• Provide, operate, and improve the marketplace and RFQ workflow.
• Authenticate users and secure accounts.
• Facilitate connections and communications between customers and suppliers.
• Process subscriptions, billing, and verification requests.
• Display transparency signals (e.g. verification badge, reviews).
• Generate anonymised, aggregated insights for platform improvement.
• Comply with legal and regulatory obligations (Australian Consumer Law, Privacy Act 1988 (Cth)).
• Prevent misuse, fraud, spam, or security threats.

4. Cookies & Analytics

We use necessary cookies for authentication, sessions, cart or RFQ state, and security. Optional cookies or analytics tools (e.g. Google Analytics) help understand usage patterns. Marketing or remarketing pixels may be deployed with consent where required.

You may disable cookies via browser settings; essential features (e.g. login) may degrade if disabled. We do not serve invasive third‑party advertising networks.

5. How We Share Information

• Between Customers & Suppliers: Contact and RFQ/order details are shared only when an RFQ is issued, responded to, or a transaction proceeds.
• Service Providers: Stripe (payments), hosting, storage, email delivery, analytics, security and monitoring vendors under contractual confidentiality obligations.
• Legal / Compliance: Where required by law, regulation, court order, or to enforce agreements.
• Business Transactions: In a merger, acquisition, restructuring, or asset sale, information may transfer subject to continuity of protections.

We do not sell personal information.

6. Storage, Location & Security

• Data is hosted in secure cloud infrastructure (Australia or reputable regions with comparable safeguards).
• Controls include encryption in transit (TLS), restricted access, monitoring, and periodic review.
• Passwords are never stored in plain text.
• Retention: We retain data only as needed for operational, legal, or dispute resolution purposes, after which it is deleted or anonymised.

7. International Transfers

Some providers may process data outside Australia. Reasonable steps are taken to ensure such parties handle information consistent with the Australian Privacy Principles (APPs).

8. Your Rights

• Request access to personal information we hold about you.
• Request correction of incomplete, inaccurate, or outdated data.
• Opt out of marketing communications (unsubscribe links or in‑account preferences).
• Adjust cookie / privacy preferences in your browser or account (where offered).

Requests may require reasonable identity verification.

9. Children's Privacy

The platform targets adult users (18+). We do not knowingly collect information from children. If received inadvertently, it will be deleted.

10. Third‑Party Links

External links may appear. We are not responsible for third‑party privacy practices or content. Review their policies before providing information.

11. Changes to this Policy

We may update this Policy. A revised "Last Updated" date indicates the current version. Material changes may be notified via email or in‑app where practical. Continued use constitutes acceptance.

12. Contact Us

Questions or privacy requests:
Email: privacy@findasign.au
Find a Sign – ABN 45 337 110 671

If any provision is invalid, the remainder stays effective. This Policy operates subject to applicable Australian law.