Privacy Policy

Effective Date: 13 February 2026 | Last Updated: 13 February 2026

This Privacy Policy explains how we collect, use, store, disclose, and protect your personal information when you use our website, Di Marco AI service, and related services ("the Service"). We are transparent about how we handle your information and committed to safeguarding your privacy.

1. Who We Are

Entity Name: Di Marco Consulting Pty Ltd
Trading As: Di Marco Consulting
ABN: 56 693 264 087
Contact Email: admin@dimarco.consulting
Privacy Officer: You may contact our Privacy Officer at the email above.

2. Why We Collect Personal Information

We collect personal information to:

• Provide you with access to the Di Marco AI service and related HR/IR guidance
• Create and manage your user account and subscription
• Process payments and manage billing through our payment provider (Stripe)
• Respond to your enquiries, support requests, or feedback
• Send you service updates, subscription notifications, and important account information
• Improve our Service, website functionality, and user experience
• Comply with legal obligations and protect against fraud or misuse
• Conduct internal research, analytics, and AI model improvement (using aggregated, anonymised data)

Personal information is collected to provide you with the services you have requested and to understand how we can meet your needs now and in the future.

3. What Personal Information We Collect

The type of personal information we collect depends on how you interact with our Service:

• Identity and Contact Information: Name, email address, business name, role or occupation (if voluntarily provided)
• Account Information: Username, password (securely hashed), subscription tier, account status, and preferences
• Payment Information: Payment details are processed securely by Stripe. We do not store full credit card numbers; we only receive confirmation of payment status, customer ID, and subscription details from Stripe
• Usage and Chat Data: Messages you submit to the Di Marco AI chat, conversation history, and AI-generated outputs (to provide the Service and improve responses)
• Technical and Device Information: IP address, browser type and version, device type, operating system, referring URLs, pages visited, time spent on pages, and access logs
• Cookies and Analytics Data: Information collected via cookies and similar technologies (see Section 9 below)

4. How We Collect Personal Information

We collect personal information through the following methods:

• Directly from you: When you create an account, subscribe, sign in, submit chat messages, complete forms (such as contact or review forms), or communicate with us via email
• Automatically: When you visit our website, we collect technical information via cookies, server logs, and analytics tools
• Third-party payment providers: Payment and subscription information is collected via Stripe when you purchase a subscription
• Referrals and interactions: If you attend events, webinars, or communicate with our staff, we may collect information provided during those interactions

Registration is not required to browse our website. If you are a visitor and do not create an account, we only collect limited technical information through cookies and server logs.

5. How We Use Your Personal Information

We will only use your personal information for the purpose for which it was collected, or for a related purpose you would reasonably expect. We use your personal information to:

• Provide, operate, maintain, and improve the Di Marco AI service
• Process your subscription payments and manage billing
• Authenticate your identity and manage your account security
• Generate AI responses to your chat queries and maintain conversation history
• Respond to your support requests, enquiries, or feedback
• Send you important service notifications (e.g., subscription renewals, system updates, changes to Terms or Privacy Policy)
• Detect, prevent, and address technical issues, security threats, fraud, or misuse
• Comply with legal obligations and respond to lawful requests from government authorities
• Conduct research and analytics to improve our Service (using aggregated, anonymised data)
• Train and improve our AI models (using aggregated, anonymised data only)

We will take reasonable steps to ensure you are aware of:

• Our identity and how to contact us
• The purpose for which your information is collected
• Your ability to access and correct your information
• Any law that requires us to collect particular information
• The main consequences (if any) if you do not provide the information requested

6. Marketing and Communications

We may send you:

• Service communications: Essential notifications about your account, subscription, billing, security, or changes to our Terms or Privacy Policy (you cannot opt out of these)
• Marketing communications: Updates about new features, resources, articles, or events (you may opt out at any time by clicking "unsubscribe" in the email or contacting us)

We will only use your email address for marketing purposes if you have consented or if permitted under Australian spam laws.

7. How We Disclose Personal Information

We do not sell, rent, or trade your personal information to third parties. We may disclose your personal information to:

• Service providers: Third-party providers who assist us in operating the Service (e.g., cloud hosting, payment processing, email delivery, AI model providers, analytics). These providers are contractually obligated to handle your information securely and only for the purposes we specify
• Payment processors: Stripe processes subscription payments on our behalf. Stripe's use of your payment information is governed by their privacy policy
• Legal and regulatory authorities: If required or permitted by law, or to protect our rights, property, or safety, or that of our users or the public
• Business transfers: If Di Marco Consulting is involved in a merger, acquisition, or sale of assets, your personal information may be transferred to the new entity

8. Overseas Disclosure of Personal Information

Some of our service providers may store or process data overseas, including:

• Cloud hosting providers: Data may be stored in data centres located in the United States, Europe, or other jurisdictions
• AI model providers: OpenAI (United States) processes chat messages to generate AI responses
• Payment processors: Stripe (United States) processes payment information

We take reasonable steps to ensure that overseas recipients handle your personal information in a manner consistent with the Australian Privacy Principles. By using our Service, you consent to this overseas disclosure.

9. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to improve user experience, analyse website traffic, and provide functionality. Cookies are small text files stored on your device that help us recognise you and remember your preferences.

Types of cookies we use:

• Essential cookies: Required for the website and Service to function (e.g., session management, authentication, security)
• Analytics cookies: Help us understand how visitors use our website (e.g., pages visited, time spent, traffic sources) so we can improve it
• Functional cookies: Remember your preferences and settings

Managing cookies: You may set your browser to refuse cookies or delete them at any time. However, if you disable cookies, some features of our website may not function properly.

We do not use third-party advertising cookies or track you across other websites.

10. Third-Party Links

Our website may contain links to third-party websites (e.g., Fair Work Ombudsman, Fair Work Commission, legislation.gov.au) for your convenience. Di Marco Consulting is not responsible for the privacy or security practices of those websites, which are not covered by this Privacy Policy.

Third-party websites have their own privacy and security policies, which we encourage you to read before providing any personal information to them.

11. Your Responsibilities When Providing Others' Personal Information

If you provide personal information to us about someone else (e.g., a colleague, employee, or client in a chat query), you must ensure that:

• You are entitled and authorised to disclose that information to us
• The individual has been informed about this Privacy Policy and how we will handle their information
• Without us taking any further steps required by privacy laws, we may collect, use, and disclose such information for the purposes described in this Privacy Policy

12. How We Protect Your Personal Information

We take the security of your personal information seriously and implement reasonable measures to protect it from misuse, interference, loss, unauthorised access, modification, or disclosure.

Our security measures include:

• Encryption: Data transmitted between your browser and our servers is encrypted using SSL/TLS (HTTPS)
• Secure password storage: User passwords are securely hashed using industry-standard algorithms
• Access controls: Access to personal information is restricted to authorised personnel only, on a need-to-know basis
• Secure servers: Our hosting infrastructure uses firewalls, anti-virus software, intrusion detection, and regular security updates
• Payment security: Payment information is processed via Stripe's PCI-DSS compliant platform; we do not store full credit card numbers
• Workplace security: Physical security measures at our offices and secure access policies for staff

While we take reasonable precautions, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we will notify you in accordance with legal requirements if a data breach occurs that is likely to result in serious harm.

13. Data Retention

We retain your personal information for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce our agreements.

• Account information: Retained while your account is active and for a reasonable period after closure (to comply with legal, accounting, or reporting obligations)
• Chat history: Stored while your account is active; you may request deletion at any time
• Payment records: Retained for up to 7 years to comply with Australian taxation and financial record-keeping laws
• Technical logs: Retained for a limited period (typically 12 months) for security and operational purposes

14. How We Ensure Accuracy of Your Personal Information

We take reasonable steps to ensure that the personal information we collect, use, or disclose is accurate, complete, up-to-date, and relevant.

It is important that you notify us promptly if your personal information changes (e.g., email address, name, contact details) so we can update our records.

You can update your account information by logging into your account or by contacting us at admin@dimarco.consulting.

15. Access and Correction of Your Personal Information

Under the Australian Privacy Principles, you have the right to:

• Access: Request access to the personal information we hold about you
• Correction: Request correction of personal information if it is inaccurate, out-of-date, incomplete, irrelevant, or misleading

How to request access or correction:

To request access to or correction of your personal information, please contact us at admin@dimarco.consulting. We will respond to your request within a reasonable timeframe (typically within 30 days).

We may request verification of your identity before providing access to your personal information. In some circumstances, we may refuse your request (e.g., if providing access would have an unreasonable impact on another person's privacy, or if required or authorised by law). If we refuse your request, we will provide you with written reasons.

16. Deletion of Your Personal Information

You may request deletion of your personal information and account at any time by contacting us at admin@dimarco.consulting.

Please note:

• We may retain some information to comply with legal, accounting, or reporting obligations (e.g., payment records for taxation purposes)
• Aggregated, anonymised data used for analytics or AI training cannot be attributed back to you and is not considered personal information
• Deletion of your account will result in loss of access to the Service and deletion of your chat history

17. Privacy Complaints

If you have a complaint about how Di Marco Consulting has collected, used, disclosed, or handled your personal information, please contact our Privacy Officer in the first instance:

• Email: admin@dimarco.consulting
• Subject Line: "Privacy Complaint"

How we handle complaints:

1. We will acknowledge receipt of your complaint within 7 days
2. We will investigate your complaint and endeavour to provide a response within 30 days
3. If we need more time, we will notify you and explain the reason for the delay
4. We will take any necessary steps to resolve the matter and prevent recurrence

If you are not satisfied with our response:

You may escalate your complaint to the Office of the Australian Information Commissioner (OAIC):

• Website: www.oaic.gov.au
• Phone: 1300 363 992
• Email: enquiries@oaic.gov.au

18. Children's Privacy

Our Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can delete it.

19. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

• Posting the updated Privacy Policy on our website with a new "Effective Date"
• Sending you an email notification (if you have an account with us)

Continued use of the Service after changes are posted constitutes your acceptance of the updated Privacy Policy. We encourage you to review this Privacy Policy periodically.

20. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal information, please contact us:

• Entity Name: Di Marco Consulting Pty Ltd
• Trading As: Di Marco Consulting
• ABN: 56 693 264 087
• Email: admin@dimarco.consulting
• Privacy Officer: Contact via the email above

← Back to Home