Curki.ai
Effective Date: 12 July 20205

This Privacy Policy outlines how Curki Pty Ltd (referred to as “Curki.ai”, “we”, “us”, or “our”) collects, uses, discloses, and protects your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

By accessing or using our website, platform, and consultancy services, you agree to the terms of this Privacy Policy.

1. What Information We Collect

We may collect the following types of personal information:

• Identifying information: Name, email address, job title, organisation.

• Technical data: IP address, browser type, device information, cookies.

• Usage data: Interactions with our website or platform features.

• Uploaded content: Files, documents, or data you voluntarily provide for analysis or processing.

• Consultancy information: Information shared during workshops, training, or strategy sessions.

We do not intentionally collect sensitive health information unless explicitly provided by you for platform functionality or consultancy, and such information is handled with additional security safeguards.

2. How We Collect Your Information

We collect personal information through:

• Direct interactions (e.g. sign-up forms, email enquiries, bookings)

• Use of the platform and associated tools

• Participation in AI consultancy services

• Cookies and similar tracking technologies

3. How We Use Your Information

Your information is used solely for the purposes of:

• Providing and improving our platform and services

• Responding to your enquiries or support requests

• Delivering consultancy engagements

• Sending updates, service notices, or legal communications

• Ensuring security, system integrity, and compliance

We do not sell, rent, or trade your personal information under any circumstances.

4. Data Retention & Deletion

We operate a zero data retention model:

• Files and user-uploaded content are processed in-memory only

• Uploaded data is automatically deleted upon logout or after 24 hours of inactivity

• We do not permanently store your data unless you explicitly request us to retain it for consultancy deliverables or follow-up services

Consultancy-related information may be retained for contractual and legal obligations unless requested otherwise in writing.

5. Disclosure of Information

We may disclose personal information:

• To our staff, contractors, or consultants for service delivery

• As required by law, regulation, or court order

• To third-party service providers (e.g., cloud infrastructure, analytics), strictly under confidentiality agreements

All systems are hosted in Australia. No personal information is transferred overseas unless expressly consented to by you.

6. Data Security

We use industry-standard security safeguards:

• Encryption: TLS 1.3 for data in transit; AES-256 for data at rest

• Access Controls: Role-based access (e.g., PRODA compliance for healthcare services)

• Infrastructure: Hosted in-region on secure, monitored servers

• Regular audits and security assessments

However, no method of electronic transmission or storage is 100% secure. You acknowledge and accept this residual risk.

7. Your Rights

Under the Privacy Act, you have the right to:

• Access personal information we hold about you

• Request corrections to inaccurate or outdated information

• Withdraw consent (where applicable)

• Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)

To exercise these rights, email: [Insert your privacy contact email]

8. Cookies and Analytics

We may use cookies to improve user experience and collect anonymous usage statistics. You can manage or block cookies via your browser settings.

9. Changes to This Policy

We reserve the right to update this Privacy Policy at any time. Changes will be effective upon posting to our website with an updated “Effective Date”. We recommend reviewing this policy periodically.

10. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your personal information, contact:

Privacy Officer
Curki AI Pty Ltd
Email: kris@curki.ai
Website: https://www.curki.ai

✅ Fully Compliant With:

• Privacy Act 1988 (Cth)

• Australian Privacy Principles (APPs)

• My Health Records Act 2012 (if applicable)

• ISO 27001 (infrastructure aligned)