Privacy Policy

1. Introduction and Scope

This Privacy Policy applies to all users of Get My Bond and describes our practices regarding the collection, use, disclosure, and protection of your personal information. By using our Service, you agree to the collection and use of information in accordance with this Privacy Policy.

This Privacy Policy should be read in conjunction with our Terms of Service, which govern your use of the Service.

2. Definitions

For the purposes of this Privacy Policy:

• "Service" refers to the Get My Bond platform, website, and all related services
• "Personal Information" means information or an opinion about an identified individual, or an individual who is reasonably identifiable
• "We," "us," or "our" refers to Get My Bond
• "You" or "your" refers to the user of the Service
• "APPs" refers to the Australian Privacy Principles under the Privacy Act 1988 (Cth)

3. Information We Collect

3.1 Personal Information You Provide

When you create an account and use our Service, we collect:

• Account Information: Name, email address, phone number, and password
• Profile Information: Any additional information you choose to provide
• Contact Preferences: Communication preferences and notification settings

3.2 Rental Bond Information

To provide our bond recovery service, we collect:

• Property address and rental details
• Landlord and agent contact information
• Bond amount and dispute details
• Dates of tenancy and move-out
• Description of your situation and claims
• Evidence and documentation you upload (photos, videos, documents)
• Correspondence with landlords or agents

3.3 Payment Information

When you make a payment:

• Billing name and address
• Payment method details (processed securely by Stripe)
• Transaction history and receipts

Important: We do not store your credit card information on our servers. All payment processing is handled securely by Stripe, our third-party payment processor.

3.4 Technical and Usage Information

We automatically collect certain information when you use the Service:

• Device Information: IP address, browser type and version, device type, operating system
• Usage Data: Pages visited, features used, time spent on pages, click patterns
• Session Information: Login times, session duration, authentication tokens
• Cookies: Essential cookies for authentication and functionality

3.5 AI Analysis Information

When you use our AI-powered evidence analysis features:

• Evidence files you upload for analysis
• Case details you provide for assessment
• Questions you ask the AI system
• Generated recommendations and analysis results

4. How We Collect Information

We collect information through:

Direct Provision:

• Information you enter when creating an account
• Details you provide about your bond dispute
• Documents and evidence you upload
• Communications you send through the Service

Automated Collection:

• Cookies and similar tracking technologies
• Server logs and analytics
• Session management systems

Third-Party Services:

• Payment information through Stripe
• Authentication data through Supabase
• Service usage analytics

5. How We Use Your Information

5.1 Primary Service Purposes

We use your information to:

• Create and manage your account
• Provide bond recovery guidance and resources
• Generate state-specific documents and templates
• Analyze your evidence using AI technology
• Process your payment and maintain transaction records
• Communicate with you about your account and cases
• Provide customer support and respond to inquiries

5.2 Service Improvement

We may use aggregated, de-identified information to:

• Improve the Service and develop new features
• Understand how users interact with the Service
• Enhance the accuracy of our AI analysis
• Optimize user experience and interface design

5.3 Legal and Security Purposes

We may use your information to:

• Comply with legal obligations and court orders
• Enforce our Terms of Service
• Detect, prevent, and address fraud or security issues
• Protect the rights, property, and safety of Get My Bond and our users

5.4 Communications

We use your contact information to send:

• Transactional Communications: Account notifications, service updates, payment confirmations
• Service-Related Communications: Important updates about the Service or your cases
• Administrative Communications: Changes to policies or terms

We do not send marketing emails or promotional communications.

6. Legal Basis for Processing

Under Australian privacy law, we process your personal information based on:

Contract Performance: Processing necessary to provide the Service you have purchased and to fulfill our contractual obligations to you.

Legitimate Interests: Processing necessary for our legitimate business interests, such as improving the Service, preventing fraud, and ensuring security, provided these interests do not override your privacy rights.

Legal Compliance: Processing necessary to comply with legal obligations under Australian law.

Consent: Where required by law, we will obtain your explicit consent before processing certain types of personal information.

7. Data Storage and Security

7.1 Where Your Data is Stored

Your data is stored securely using Supabase infrastructure. Data is stored in secure data centers with appropriate physical and technical security measures.

7.2 Security Measures

We implement industry-standard security measures to protect your information:

Technical Safeguards:

• Encryption of data in transit using TLS/SSL
• Encryption of sensitive data at rest
• Secure authentication mechanisms
• Regular security updates and patches
• Access controls and authentication requirements

Organizational Safeguards:

• Limited access to personal information on a need-to-know basis
• Employee training on data protection
• Regular security audits and assessments
• Incident response procedures

7.3 Data Retention

We retain your personal information for as long as necessary to:

• Provide the Service to you
• Comply with legal obligations
• Resolve disputes and enforce agreements
• Maintain business records

When you delete your account, we will delete or de-identify your personal information in accordance with our data retention policies and legal requirements. Some information may be retained in backup systems for a limited period.

8. Data Sharing and Disclosure

8.1 Third-Party Service Providers

We share your information with trusted third-party service providers who assist us in operating the Service:

Stripe (Payment Processing)

• Purpose: Process payments securely
• Information Shared: Billing information, transaction details

Supabase (Data Storage and Authentication)

• Purpose: Store data securely and manage authentication
• Information Shared: Account information, service data

AI Service Providers

• Purpose: Provide evidence analysis and recommendations
• Information Shared: Evidence files, case details for analysis
• Safeguards: Data processing agreements, security measures

All third-party service providers are contractually obligated to protect your information and use it only for the purposes we specify.

8.2 Legal Requirements

We may disclose your information if required to do so by law or in response to:

• Court orders or legal processes
• Law enforcement requests
• Government investigations
• Protection of our legal rights

We will notify you of such requests unless prohibited by law.

8.3 Business Transfers

If Get My Bond is involved in a merger, acquisition, or sale of assets, your personal information may be transferred. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

8.4 What We Do NOT Do

9. Cookies and Tracking Technologies

9.1 Types of Cookies We Use

We use cookies and similar technologies for:

Essential Cookies (Required):

• Authentication and session management
• Security features
• Service functionality
• User preferences

Functional Cookies (Optional):

• Remember your settings and preferences
• Improve user experience

What We Don't Use:

• Advertising cookies
• Third-party tracking cookies
• Marketing or analytics cookies for profiling

9.2 Managing Cookies

You can control cookies through your browser settings. However, disabling essential cookies may affect your ability to use certain features of the Service.

Most browsers allow you to:

• View and delete cookies
• Block cookies from specific sites
• Block all cookies
• Delete all cookies when you close the browser

10. Your Privacy Rights

10.1 Rights Under Australian Privacy Law

Under the Australian Privacy Principles, you have the right to:

Access Your Information: You can request access to the personal information we hold about you.

Correct Your Information: You can request correction of inaccurate or incomplete information.

Delete Your Information: You can request deletion of your personal information, subject to legal retention requirements.

Object to Processing: You can object to certain types of processing of your information.

Data Portability: You can request a copy of your information in a portable format.

Lodge a Complaint: You can complain about our handling of your personal information.

10.2 How to Exercise Your Rights

To exercise your privacy rights:

Through Your Account Dashboard:

• Update your account information
• Manage communication preferences
• Download your data
• Delete your account

Contact Us: For other requests, contact us through your account dashboard. We will respond to your request within a reasonable timeframe, typically within 30 days.

Verification: To protect your privacy, we may need to verify your identity before processing certain requests.

11. Account Management

You have control over your account and information:

Updating Information: You can update your account information at any time through your account dashboard.

Downloading Your Data: You can download copies of your documents, case information, and other data through your account.

Deleting Your Account: You can delete your account at any time. Upon deletion:

• Your access to the Service will be terminated
• Your personal information will be deleted or de-identified
• You will retain any documents you have previously downloaded
• Some information may be retained for legal compliance

Note: Account deletion does not entitle you to a refund unless you meet the criteria in our refund policy.

12. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18.

If you are under 18, do not use the Service or provide any personal information.

If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly.

If you believe we have collected information from a child under 18, please contact us immediately through your account dashboard.

13. International Data Transfers

Your information is primarily stored in Australia. However, some of our third-party service providers may store or process data outside Australia.

When we transfer your information internationally, we ensure appropriate safeguards are in place, including:

• Data processing agreements with third parties
• Compliance with Australian privacy law
• Security measures to protect your information

By using the Service, you consent to the transfer of your information to countries outside Australia where our service providers operate.

14. AI and Automated Processing

We use artificial intelligence and automated systems to:

Evidence Analysis:

• Analyze photos and documents you upload
• Assess the strength of your case
• Generate recommendations and strategies

Document Generation:

• Create customized documents based on your information
• Provide state-specific guidance

Transparency:

• AI analysis is used to assist and guide you
• Final decisions about your case remain with you
• AI recommendations should be reviewed and verified
• We do not make automated decisions that significantly affect your legal rights

Limitations:

• AI analysis is not legal advice
• Results depend on the quality of information provided
• Human review is recommended for important decisions

15. Third-Party Links

The Service may contain links to third-party websites, including:

• State hearing body websites
• Government resources
• Legal information sites

We are not responsible for the privacy practices or content of third-party websites. We encourage you to review the privacy policies of any third-party sites you visit.

Clicking on third-party links is at your own risk. We do not endorse or make representations about third-party websites.

16. Changes to This Privacy Policy

We reserve the right to modify this Privacy Policy at any time. When we make changes, we will:

Notification Methods:

• Update the "Last Updated" date at the top of this policy
• Post the updated policy on the Service
• For material changes, send notice to your registered email address

Your Acceptance: Continued use of the Service after changes to this Privacy Policy constitutes your acceptance of the modified policy.

Review Responsibility: You are responsible for regularly reviewing this Privacy Policy to stay informed of any changes.

If you do not agree to the modified Privacy Policy, you must stop using the Service.

17. Data Breach Notification

In the event of a data breach that is likely to result in serious harm, we will:

Notification to Affected Users:

• Notify you as soon as practicable
• Explain the nature of the breach
• Describe the information involved
• Provide recommendations to protect yourself

Notification to Authorities: Report the breach to the Office of the Australian Information Commissioner (OAIC) as required by the Notifiable Data Breaches scheme.

Response Measures:

• Investigate the breach
• Take steps to contain and remediate the breach
• Implement additional security measures to prevent future breaches

18. Privacy by Design

We incorporate privacy considerations into the design and operation of the Service:

Data Minimization: We collect only the information necessary to provide the Service.

Purpose Limitation: We use your information only for the purposes disclosed in this Privacy Policy.

Transparency: We are open about our data practices and provide clear information about how we handle your data.

User Control: We provide you with tools to manage your information and privacy settings.

Security: We implement appropriate security measures from the outset.

19. Complaints and Disputes

19.1 Internal Complaints

If you have a complaint about our handling of your personal information:

How to Complain: Contact us through your account dashboard with details of your complaint.

Investigation: We will investigate your complaint and respond within a reasonable timeframe, typically within 30 days.

Resolution: We will work with you to resolve the complaint and, if necessary, take corrective action.

19.2 External Complaints

If you are not satisfied with our response to your complaint, you can lodge a complaint with:

Office of the Australian Information Commissioner (OAIC)

• Website: oaic.gov.au
• Phone: 1300 363 992
• Email: enquiries@oaic.gov.au
• Mail: GPO Box 5218, Sydney NSW 2001

The OAIC can investigate complaints about privacy breaches and provide guidance on privacy rights.

20. Compliance with Australian Law

This Privacy Policy and our data practices comply with:

Privacy Act 1988 (Cth): The primary legislation governing privacy in Australia.

Australian Privacy Principles (APPs): The 13 principles that regulate the handling of personal information.

Notifiable Data Breaches Scheme: Requirements for notifying individuals and the OAIC of eligible data breaches.

State and Territory Privacy Laws: Applicable privacy laws in Australian states and territories.

Consumer Protection Laws: Australian Consumer Law and other consumer protection legislation.

21. Contact Information

If you have questions about this Privacy Policy or our privacy practices, please contact us through:

Primary Contact Method: Your account dashboard (preferred method for privacy inquiries)

Alternative Contact: The contact form on our website

Response Time: We aim to respond to privacy inquiries within 5-10 business days.

Privacy Officer: For formal privacy complaints or requests, you may request to speak with our privacy officer through the contact methods above.

22. Acknowledgment

Get My Bond
Professional Bond Recovery Service
Last Updated: January 29, 2026