Consuite trademark

Effective Date: 1 March 2025

Consuite Pty Ltd ("Consuite", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our construction management platform and related services.

1. Information We Collect

Account Information: When you create an account, we collect your name, email address, phone number, company name, and role.

Organisation Data: Information you and your team enter into the platform, including projects, tenders, contacts, financial data, documents, and communications.

Usage Data: We automatically collect information about how you interact with our platform, including pages visited, features used, timestamps, device information, and IP addresses.

Payment Information: When you subscribe, payment details are processed securely by our payment provider (Stripe). We do not store your full credit card details.

Cookies & Analytics: We use cookies and analytics tools (PostHog) to understand usage patterns and improve our service.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Consuite platform
  • Process transactions and manage your subscription
  • Send transactional emails (account confirmations, notifications, invoices)
  • Provide customer support and respond to enquiries
  • Improve our platform through usage analytics
  • Power AI-assisted features using your organisation data (processed but not stored by our AI provider)
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations

3. How We Share Your Information

We do not sell your personal information. We may share information with:

  • Service Providers: Third-party services that help us operate our platform (e.g., Supabase for database hosting, Vercel for application hosting, Stripe for payments, Postmark for email)
  • AI Providers: Data sent to AI models for AI-assisted features is processed in real-time and not retained by the provider
  • Integration Partners: When you connect third-party integrations (e.g., Xero), we share relevant data as authorised by you
  • Legal Requirements: When required by law, regulation, or legal process
  • Organisation Members: Data within your organisation is accessible to members according to your configured permissions

4. Data Security

We implement industry-standard security measures to protect your data, including:

  • Encryption in transit (TLS/SSL) and at rest
  • Row-level security policies on our database
  • Role-based access controls within organisations
  • Regular security audits and monitoring
  • Secure authentication with password requirements and optional multi-factor authentication

5. Data Retention

We retain your data for as long as your account is active or as needed to provide our services. When you delete your account, we will delete or anonymise your personal data within 30 days, except where we are required to retain it for legal or regulatory purposes.

Organisation data follows a soft-delete model — deleted records are marked as deleted and excluded from active use, with permanent deletion occurring during scheduled data purges.

6. Cookies

We use cookies for:

  • Essential Cookies: Required for authentication and cross-subdomain sessions
  • Analytics Cookies: Help us understand how you use our platform (PostHog)
  • Preference Cookies: Remember your settings and preferences

You can control cookie preferences through your browser settings. Disabling essential cookies may affect platform functionality.

7. Your Rights

Under the Australian Privacy Act 1988 and applicable laws, you have the right to:

  • Access and obtain a copy of your personal data
  • Correct inaccurate or incomplete personal data
  • Request deletion of your personal data
  • Object to or restrict processing of your personal data
  • Export your data in a portable format
  • Withdraw consent at any time where processing is based on consent

To exercise these rights, contact us at the details below.

8. Children's Privacy

Our platform is not intended for use by anyone under 18 years of age. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through our platform. Your continued use of the platform after such changes constitutes acceptance of the updated policy.

10. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at:

Consuite Pty Ltd
Email: support@consuite.app