Privacy Policy
Your privacy matters to us. This policy explains what information we collect, how we use it, and your rights.
Last Updated: September 30, 2025
Information We Collect
Information You Provide
When you interact with our site, you may provide:
- Email address – When you subscribe to our newsletter
- Contact information – When you email us with questions
We do not collect names, addresses, phone numbers, or payment information. We never sell your personal information.
Information Collected Automatically
When you visit our site, we automatically collect:
- Usage data – Pages visited, time spent, referring sites (via Fathom Analytics)
- Device information – Browser type, device type, screen size (aggregated, not personally identifiable)
- Approximate location – Country and city (derived from IP address, which we don't store)
How We Use Your Information
Newsletter Subscriptions
If you subscribe to our newsletter, we use your email address to:
- Send monthly privacy tool updates and reviews
- Alert you to Australian data breach incidents
- Notify you of important privacy law changes
Your email is stored with ConvertKit, our newsletter provider. You can unsubscribe anytime with one click.
Analytics
We use Fathom Analytics, a privacy-focused analytics service that:
- Does NOT use cookies
- Does NOT track you across websites
- Does NOT sell your data
- Does NOT create user profiles
- Is GDPR, CCPA, and PECR compliant
We use analytics to understand which articles are helpful and improve our content.
Affiliate Link Tracking
When you click an affiliate link, tracking cookies may be set by the merchant (e.g., NordVPN, Surfshark) to track your purchase for commission purposes. These cookies are set by the merchant, not by us.
We use Impact.com for affiliate link management, which may collect:
- Click timestamps
- Referring page (which article you clicked from)
- Device type (desktop, mobile, tablet)
This data is used solely for commission tracking and fraud prevention. Read Impact.com's Privacy Policy.
Cookies
We use minimal cookies:
- Theme preference – Stores your light/dark mode choice (essential cookie)
- Newsletter popup – Remembers if you've dismissed our signup forms (essential cookie)
We do not use tracking cookies, advertising cookies, or third-party analytics cookies.
Third-Party Services
ConvertKit (Newsletter)
If you subscribe to our newsletter, your email is stored with ConvertKit. Read ConvertKit's Privacy Policy.
Fathom Analytics
We use Fathom for website analytics. Read Fathom's Privacy Policy.
Vercel (Hosting)
Our site is hosted on Vercel. They may collect server logs (IP addresses, request times) for security and performance. Read Vercel's Privacy Policy.
Impact.com (Affiliate Tracking)
We use Impact.com to manage affiliate links. Read Impact.com's Privacy Policy.
Data Retention
- Newsletter subscribers – We retain your email until you unsubscribe
- Analytics data – Fathom retains aggregated data indefinitely (no personal data)
- Contact emails – We retain for 2 years after last contact
Your Rights (Australian Privacy Act)
Under Australian privacy law, you have the right to:
- Access – Request a copy of your personal information we hold
- Correction – Request we correct inaccurate information
- Deletion – Request we delete your information
- Opt-out – Unsubscribe from our newsletter anytime
- Complain – Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)
To exercise these rights, email us at hello@auprivacykit.com. We'll respond within 30 days.
International Data Transfers
Your information may be processed outside Australia:
- ConvertKit – Servers in the United States
- Fathom Analytics – Servers in Canada (EU/US compliant)
- Vercel – Global CDN, servers in multiple countries
All providers are compliant with GDPR, CCPA, and Australian privacy standards.
Data Security
We protect your information using:
- HTTPS encryption on all pages
- Secure, reputable third-party services
- Minimal data collection (we don't collect what we don't need)
- Regular security updates
Children's Privacy
Our site is not directed at children under 13. We do not knowingly collect personal information from children. If you believe we've collected information from a child, contact us immediately.
Changes to This Policy
We may update this privacy policy to reflect changes in our practices or legal requirements. We'll post the updated policy on this page and update the "Last Updated" date.
Material changes will be announced via our newsletter (if you're subscribed) or a prominent notice on our site.
Contact Us
Questions about this privacy policy? Contact us:
- Email: hello@auprivacykit.com
- Response time: Within 48 hours (usually faster)
Office of the Australian Information Commissioner
If you're not satisfied with our response to a privacy complaint, you can contact the OAIC:
- Website: www.oaic.gov.au
- Phone: 1300 363 992
- Email: enquiries@oaic.gov.au
Summary: We collect minimal information, use privacy-focused tools, and never sell your data. You can unsubscribe from emails anytime, and you have full rights over your personal information under Australian law.