Privacy Policy

1. About This Policy

AYE TECHNOLOGIES PTY LTD (ABN: 70643554438, ACN: 643 554 438), trading as AyeTech, is committed to protecting your privacy and handling your personal information in accordance with Australian privacy laws. This privacy policy explains how we collect, use, disclose, and store your personal information when you use our IT services, visit our website, or interact with us.

This privacy policy should be read in conjunction with our Terms of Service, which govern your use of our services and contain additional important information about your rights and obligations.

2. What Personal Information We Collect

We may collect the following types of personal information:

2.1 Information You Provide

• Contact Information: Name, email address, phone number, business address
• Business Information: Company name, job title, industry, business requirements
• Account Information: Username, password, preferences for our client portal and helpdesk system
• Support Information: Technical issues, support tickets, communication records
• Payment Information: Billing address, payment method details (processed securely through third-party payment processors)

2.2 Information We Collect Automatically

• Technical Information: IP address, device information, browser type, operating system
• Usage Information: Pages visited, time spent on our website, click patterns
• Service Data: System logs, performance metrics, network monitoring data (where we provide managed IT services)
• Security Information: Threat monitoring data, security incident reports (where we provide cyber security services)

2.3 Information from Third Parties

• Information from technology vendors and partners for service delivery
• Domain registration information from registrars
• Business information from publicly available sources

3. How We Use Your Personal Information

We use your personal information for the following purposes:

3.1 Service Delivery

• Providing managed IT services, cyber security monitoring, and IT consulting
• Managing your internet and voice services
• Maintaining and monitoring your servers and IT infrastructure
• Providing technical support and helpdesk services
• Managing domain names and DNS services

3.2 Business Operations

• Processing payments and managing billing
• Communicating about our services, updates, and maintenance
• Scheduling appointments and managing client relationships
• Compliance with legal and regulatory requirements

3.3 Security and Monitoring

• Detecting and preventing cyber security threats
• Monitoring network performance and system health
• Investigating security incidents and breaches
• Ensuring compliance with ACSC Essential 8 guidelines

3.4 Website and Marketing

• Improving our website functionality and user experience
• Sending relevant service communications (with your consent)
• Analytics and reporting for business improvement

4. How We Disclose Your Personal Information

We may disclose your personal information in the following circumstances:

4.1 Service Providers

• Technology Partners: Microsoft, telecommunications carriers, domain registrars, and other technology vendors for service delivery
• Payment Processors: Secure payment processing services for billing
• Cloud Services: Hosting and cloud infrastructure providers (with appropriate data protection agreements)
• Support Tools: Helpdesk and customer management platforms

4.2 Legal Requirements

• When required by Australian law or court order
• To law enforcement agencies for criminal investigations
• To regulatory authorities when required for compliance
• To protect the rights, property, or safety of AyeTech, our clients, or others

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, personal information may be transferred as part of the business transaction, subject to appropriate privacy protections.

5. Data Security

We implement comprehensive security measures to protect your personal information:

• Technical Safeguards: Encryption, secure networks, access controls, and regular security assessments
• Physical Security: Secure data centers and controlled access to our facilities
• Administrative Controls: Staff training, privacy policies, and incident response procedures
• Monitoring: 24/7 security monitoring and threat detection systems
• Compliance: Regular audits and compliance with Australian cyber security frameworks

6. Data Retention

We retain your personal information for as long as necessary to:

• Provide our services to you
• Comply with legal and regulatory requirements
• Resolve disputes and enforce our agreements
• Meet our business and operational needs

Typically, we retain personal information for 7 years after the end of our service relationship, unless longer retention is required by law or for legitimate business purposes.

7. Your Privacy Rights

Under Australian privacy law, you have the following rights:

7.1 Access and Correction

• Request access to the personal information we hold about you
• Request correction of inaccurate or outdated information
• Receive information about how we collect, use, and disclose your personal information

7.2 Complaints

• Make a complaint about our handling of your personal information
• Request investigation of privacy concerns
• Escalate complaints to the Office of the Australian Information Commissioner (OAIC)

7.3 Opt-out Rights

• Opt-out of direct marketing communications
• Request restrictions on certain uses of your information (where practical)

8. Overseas Disclosure

Some of your personal information may be disclosed to overseas recipients in the following countries:

• United States: Microsoft cloud services, technology vendors
• European Union: Technology partners and service providers
• Singapore: Regional IT service providers

When we disclose personal information overseas, we ensure appropriate privacy protections are in place through contractual arrangements and compliance with Australian privacy laws.

9. Website Analytics and Cookies

Our website uses cookies, local storage, and similar technologies to improve functionality, remember preferences, and understand how visitors use the site. We use the following analytics service:

• PostHog (EU region) — product analytics. Hosted in the European Union, all requests routed through our own domain (ayetech.au/ingest) so the data path stays on infrastructure we control. We honour the Do Not Track browser setting and offer a per-device opt-out at /?posthog=opt-out. See PostHog's Privacy Policy. What we collect:
  • Page views and interactions: URLs visited, clicks, scroll depth, time on page, referral source. IP addresses are anonymised at capture (last octet stripped).
  • Session replays: mouse movement, clicks, scrolling, and page navigation are recorded to help us debug user-experience issues. All <input> values are masked at capture, and our contact-form regions are entirely blocked from replay — your name, email, phone, company, and message contents are never recorded. Browser console messages produced by our website's own JavaScript are captured alongside replays for debugging.
  • Performance metrics: Core Web Vitals (LCP, CLS, INP) and network timings, used to monitor and improve site performance.
  • Persistent visitor profile: we store an anonymous device-scoped identifier in your browser so we can recognise return visits and understand visitor journeys across sessions. Your real identity is only attached when you submit our contact form (we associate your email so we can attribute the lead correctly).
  • Server-side conversion events: when our contact form is successfully delivered to our inbox, our server logs the event (page submitted from, service interest, country, delivery confirmation) so we can verify lead capture independently of the browser.
  • Automated-agent (bot) traffic: our server records visits from web crawlers and AI-related agents — including search-engine bots and large-language-model crawlers (OpenAI, Anthropic, Perplexity, Google-Extended, Common Crawl, and others) — so we can understand how AI tools and search engines discover our content. These records contain no personal information about human visitors.

Personally identifying information is only linked to your analytics profile when you submit our contact form (we associate your email address so we can attribute the lead correctly).

You can opt out of analytics at any time by:

• Enabling Do Not Track in your browser (we respect this signal automatically)
• Using an ad blocker or privacy-focused browser extension
• Visiting /?posthog=opt-out to disable PostHog tracking on this device
• Clearing cookies and site data in your browser preferences

10. Third-Party Services

Our website and services may contain links to third-party websites or integrate with third-party services (such as Microsoft Teams, domain registrars, or payment processors). This privacy policy does not apply to third-party services, and we recommend reviewing their privacy policies.

11. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices, services, or legal requirements. We will notify you of significant changes by:

• Posting the updated policy on our website
• Sending email notifications to registered clients
• Providing notice through our client portal

12. Contact Us

13. Complaints Process

If you wish to make a complaint about our handling of your personal information:

1. Contact us directly using the details above
2. We will acknowledge your complaint within 5 business days
3. We will investigate and respond within 30 days
4. If unsatisfied, you may contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au