1. Open and Transparent Management of Information
CatchmentFlow is committed to protecting your privacy and complying with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). This policy outlines how we collect, handle, and secure B2B information.
2. What We Collect
We only collect information reasonably necessary to provide our SaaS product. This includes account creation data (name, business email, ABN), billing information (processed securely via our payment gateway), and basic platform usage analytics to improve our service.
3. Level 3 CRM Integration (Transient Processing)
For users on the "Hunter" tier utilizing CRM integrations (e.g., ServiceM8), CatchmentFlow acts strictly as a data processor, not a data controller.
Zero Retention: We employ "in-memory" processing. Your CRM data is accessed securely via API solely for the purpose of real-time spatial filtering during your active session. We do not permanently store, copy, or retain your customer lists, thereby neutralizing cross-border data disclosure risks under APP 8.
4. Cross-Border Disclosures
CatchmentFlow is operated and supported by a solo founder based in the Philippines. By using our service, you consent to the processing of your basic account and billing information offshore. We enforce strict technical safeguards, including encryption in transit and at rest, to ensure your data is handled to the standard required by the APPs.
5. Data Security and Destruction
We take all reasonable technical and administrative steps to protect your account information from unauthorized access or misuse. In accordance with APP 11, if you cancel your subscription, any personal account data that is no longer required for legal or accounting purposes will be securely destroyed or permanently de-identified.