Privacy Policy

Overview

This Privacy Policy explains how BondiByte Robotics may handle information in connection with the BondiByte website, SaaS platform, customer workspaces, support processes, and billing or subscription activities where applicable.

BondiByte is designed for NDIS provider operations. Information may include account, organisation, workspace, operational, document, audit, support, usage, and billing information.

Information we may collect

The information handled by BondiByte depends on how a customer, user, auditor, or website visitor interacts with the website and platform.

• Account and contact information, such as name, role, email, organisation, and login-related identifiers.
• Organisation and workspace information, such as tenant settings, sites, teams, roles, and operational configuration.
• Staff and client operational records entered by customers.
• Documents, files, and audit evidence uploaded or released by customers.
• Usage, logs, device, security, support, and troubleshooting information.
• Billing, plan, subscription, invoice, order, and payment-related information where applicable.

How information is used

BondiByte Robotics may use information to provide, secure, support, maintain, improve, and administer the website and platform.

Information may also be used to support customer onboarding, workspace operation, notifications, email workflows, audit evidence workflows, automation capacity controls, subscription administration, support enquiries, and security monitoring.

Customer workspace information

Customer workspace information is entered, uploaded, configured, or managed by the customer and its authorised users. This may include staff, clients, sites, rosters, service agreements, documents, incidents, reports, timesheets, invoice drafts, audit evidence, and automation settings.

Customers are responsible for deciding what information is entered into their workspace, who can access it, and how it is reviewed, approved, published, exported, or shared.

Staff, client, auditor, and user information

BondiByte may handle information about staff, clients, auditors, customer users, platform users, and other people when that information is provided by a customer, entered into the platform, used for access control, or needed for support.

Staff Portal and Auditor Portal access are designed for separate access surfaces, with customer-controlled staff records and scoped auditor access supporting the relevant workflow.

Service providers and hosting

BondiByte Robotics may use trusted service providers to operate the website and platform, including providers for hosting, storage, email delivery, monitoring, support, analytics, security, payment processing, or other operational needs.

Service provider use may change over time as the platform develops. BondiByte Robotics expects service providers to support the secure and reliable operation of the service.

Security measures

BondiByte is designed to support tenant-scoped workspaces, role-aware access, separated access surfaces, controlled file access patterns, platform-managed email, and permission checks.

No online service can prevent every possible security event. Customers also play an important role by managing user access, protecting credentials, reviewing role assignments, and handling uploaded information responsibly.

Retention

BondiByte Robotics may retain information for as long as needed to provide the service, support customer workspaces, meet operational and billing needs, resolve disputes, maintain audit and security records, comply with legal obligations, and support legitimate business purposes.

Retention periods may vary depending on the type of information, customer agreement, configuration, legal requirements, and operational needs.

Access, correction, and enquiries

Customers can manage many records directly inside their workspace. People seeking access to or correction of information should usually contact the organisation that controls the relevant workspace information.

Privacy questions for BondiByte Robotics can be sent through the public contact page. BondiByte Robotics may need to verify the request and coordinate with the relevant customer where the information belongs to a customer workspace.

Changes to this policy

BondiByte Robotics may update this Privacy Policy as the website, platform, service providers, support model, billing processes, or legal requirements change.

The latest version published on the website should be read together with any applicable customer agreement or order terms.

Contact

For privacy enquiries, contact BondiByte Robotics through the public contact page.