Privacy Policy

How DigitalPath AI handles personal information collected through this website and during client engagements.

Last updated: 2026-04-08

1. Who we are

DigitalPath AI Pty Ltd (“DigitalPath AI”, “we”, “us”, or “our”) is a Sydney-based AI and data consultancy. This Privacy Policy explains how we collect, use, store, and disclose personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles.

2. What we collect

We collect personal information in two main scenarios:

2.1 When you contact us via the website

  • Name
  • Email address
  • Message content
  • Technical metadata (IP address, browser user agent) for spam prevention

2.2 When you become a client

  • Business contact details (company, role, phone)
  • Project requirements and scope information
  • Billing details necessary to issue invoices
  • Any business data you choose to share with us under a Statement of Work

3. How we use it

We use personal information to:

  • Respond to enquiries submitted through the contact form
  • Schedule discovery calls and follow-up communications
  • Deliver consulting and development services
  • Issue invoices and process payments
  • Comply with legal and tax obligations

We do not sell personal information to third parties, and we do not use contact form submissions for marketing without explicit opt-in.

4. Storage and security

Personal information is stored in databases and cloud services located in Australia where possible. We apply industry-standard security controls including encryption in transit (HTTPS), access controls, and authentication. Despite reasonable safeguards, no system is 100% secure — you share information with us at your own risk.

5. Cookies and analytics

This website uses minimal cookies necessary for core functionality (e.g. authentication, theme preference). We may use privacy-respecting analytics to measure aggregate visitor patterns. We do not use behavioural tracking cookies for third-party advertising.

6. Third parties

We share personal information with third-party service providers only where strictly necessary to deliver our services, including:

  • Email and SMTP providers (for transactional emails)
  • Cloud infrastructure providers (AWS, Cloudflare, etc.)
  • Payment processors (Stripe) where applicable
  • Authentication providers (Google, GitHub) when you choose to sign in via OAuth

Each of these providers has its own privacy policy, and we encourage you to review them.

7. Your rights

Under Australian privacy law, you have the right to:

  • Request access to the personal information we hold about you
  • Request correction of inaccurate or out-of-date information
  • Request deletion of your information (subject to legal record-keeping obligations)
  • Withdraw consent at any time

To exercise any of these rights, contact us via our contact page.

8. Data retention

We retain personal information only as long as necessary for the purposes for which it was collected, or as required by law (typically up to 7 years for financial records).

9. Children

Our services are intended for businesses and adult professionals. We do not knowingly collect personal information from anyone under the age of 18.

10. Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top of this page reflects the most recent version. Continued use of the website after a change constitutes acceptance of the updated policy.

11. Complaints

If you have a complaint about how we handle your personal information, contact us first via our contact page. If you're unsatisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).