Skip to main content
← Back to home

Privacy Policy

Last updated: 3 April 2026

1. About this policy

Korvos Pty Ltd ("Korvos", "we", "us", "our") is committed to protecting your personal information in accordance with the Privacy Act 1988(Cth) and the Australian Privacy Principles ("APPs"). This policy describes how we collect, hold, use, and disclose personal information, and how you can access and correct information we hold about you.

This policy applies to all personal information collected through our website (korvos.com.au), our software products, and any communications with us.

2. Information we collect (APP 3)

We collect personal information that is reasonably necessary for our business functions. The types of information we may collect include:

  • Contact information — name, email address, phone number, business name
  • Account information — login credentials, role, subscription details
  • Usage data — interaction logs, feature usage, and performance metrics within our products
  • Communications — enquiry forms, emails, and support requests you send us
  • Technical data — IP address, browser type, device information, and cookies

We do not collect sensitive information (such as health, racial, or biometric data) unless it is directly related to the function of a specific product and you have provided explicit consent.

3. How we collect information (APP 3 & 5)

We collect personal information directly from you when you:

  • Submit a contact or enquiry form on our website
  • Create an account or subscribe to a product
  • Communicate with us via email or phone
  • Use our software products

Where reasonable and practicable, we collect information directly from you. We may also collect information from third parties such as identity verification services, but only where you have consented or would reasonably expect us to do so.

4. Purpose of collection (APP 6)

We use your personal information to:

  • Provide, maintain, and improve our products and services
  • Respond to your enquiries and support requests
  • Process payments and manage subscriptions
  • Communicate product updates, changes, and relevant information
  • Comply with legal obligations and enforce our terms
  • Analyse usage patterns to improve our products (in aggregate, de-identified form)

We will not use your personal information for purposes unrelated to the above without your consent, unless required by law.

5. Disclosure of information (APP 6)

We may disclose personal information to third-party service providers who assist us in operating our business, including:

  • Cloud infrastructure providers (hosted in Australia)
  • Payment processors
  • Email and communication service providers
  • Analytics services (using de-identified data only)

All third-party providers are contractually bound to handle your information in accordance with Australian privacy law. We do not sell personal information to any third party.

6. Data storage and security (APP 8 & 11)

All personal information is stored on servers located in Sydney, Australia (AWS ap-southeast-2 region). We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification, or disclosure, including:

  • Encryption at rest and in transit (TLS 1.2+)
  • Row-level security and tenant isolation at the database level
  • Access controls and audit logging
  • Regular security reviews and vulnerability assessments

We destroy or de-identify personal information when it is no longer needed for the purposes for which it was collected, unless retention is required by law.

7. Overseas disclosure (APP 8)

We do not transfer personal information outside of Australia. All data processing, storage, and inference occurs on Australian infrastructure. If this changes in future, we will update this policy and notify affected users before any overseas transfer occurs.

8. Automated decision-making

Some of our products use automated systems (including AI) to process information and make recommendations or decisions. Where automated decision-making could significantly affect your rights or interests, we will provide meaningful information about the logic involved and allow you to request human review of the decision.

9. Access and correction (APP 12 & 13)

You have the right to request access to personal information we hold about you, and to request correction of any information that is inaccurate, incomplete, or out of date. To make a request, contact us at privacy@korvos.com.au. We will respond within 30 days.

If we refuse access or correction, we will provide written reasons and information about how to complain.

10. Cookies

Our website uses essential cookies required for site functionality. We do not use third-party advertising or tracking cookies. Any analytics cookies collect data in aggregate, de-identified form only.

11. Complaints (APP 1)

If you believe we have breached the APPs or handled your personal information improperly, you may lodge a complaint by emailing privacy@korvos.com.au. We will acknowledge your complaint within 7 days and provide a written response within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.

12. Changes to this policy

We may update this policy from time to time to reflect changes in our practices or legal requirements. Material changes will be communicated via our website or email. We encourage you to review this policy periodically.

13. Contact

For questions about this policy or our privacy practices, contact our privacy officer:

Korvos Pty Ltd

Privacy Officer

Email: privacy@korvos.com.au

Sydney, Australia