Privacy Policy

Last updated: August 1, 2025

1. Introduction
Pentacore Australia Private Limited (“Company”, “we”, “us”, “our”) is committed to protecting the privacy of individuals who use our services, including through our website at https://www.pentacoreaustralia.com (the “Service”). This Privacy Policy describes how we collect, use, disclose, transfer and protect your personal data; the legal bases for processing (where applicable); your rights; and how to exercise them. This Policy applies to all users globally. Specific additional rights and obligations apply to residents of Australia, the European Economic Area/UK, and California, and those are detailed in dedicated sections below.

2. Scope and Applicability

This Privacy Policy governs personal information we collect when you access or use the Service, communicate with us, or otherwise interact with us. It also describes how we handle transfers, international processing, and how we comply with:

• The Australian Privacy Act 1988 and the Australian Privacy Principles (APPs), including the Notifiable Data Breaches (NDB) scheme. OAICOAICDigital ID SystemFortinet

• The General Data Protection Regulation (GDPR) for individuals in the European Economic Area (EEA) and the UK, including lawful bases, rights, and international transfer safeguards. European Data Protection BoardGDPRICO

• The California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) for California residents. California Privacy Protection AgencyOneTrustTermlySecuriti

3. Definitions

• Account: A unique account created for you to access parts of the Service.

• Affiliate: An entity that controls, is controlled by, or is under common control with us.

• Company: Pentacore Australia Private Limited, located at 6 Network Drive, Truganina, Melbourne, Victoria 3029, Australia.

• Cookies: Small text files placed on your device to store preferences and other information.

• Device: Any device capable of accessing the Service (computer, mobile, tablet).

• Personal Data / Personal Information: Any information relating to an identified or identifiable natural person.

• Service Provider: Third parties who process data on our behalf (e.g., hosting, analytics, email delivery).

• Usage Data: Automatically collected information about how you use the Service (e.g., IP address, browser type, pages visited).

• You: The individual or legal entity using or accessing the Service.

4. Information We Collect

4.1 Personal Data You Provide Directly
Examples include:

• Name (first and last)

• Email address

• Phone number

• Account credentials and profile information

• Communications with us (e.g., support requests, inquiries)

4.2 Usage and Technical Data (Collected Automatically)

• IP address and device identifiers

• Browser type/version, operating system

• Pages visited, time and date of visit, time spent

• Referring/exit pages and clickstream data

• Mobile device information when accessed via mobile (device model, OS version, unique device IDs)

• Cookies and similar tracking data

5. Legal Bases for Processing (EEA/UK)
If you are located in the European Economic Area or the UK, we process your Personal Data only when we have a lawful basis: GDPREuropean Data Protection BoardGDPR

• Consent: Where you have explicitly given consent (e.g., for marketing emails).

• Contractual necessity: To perform or take steps to enter into a contract with you (e.g., account provisioning, service delivery).

• Legitimate interests: For purposes such as improving the Service, fraud prevention, and analytics, provided such interests do not override your rights.

• Legal obligation: To comply with applicable laws or respond to lawful requests.

You may withdraw consent at any time where consent is the basis, without affecting past processing. GDPR

6. How We Use Your Personal Data
We use Personal Data for:

• Providing, operating, maintaining, and improving the Service.

• Managing your Account and authentication.

• Performing contracts for products or services you request.

• Communicating with you (including updates, support, and security notices).

• Sending marketing or promotional communications (with opt-out available).

• Analyzing usage and trends to improve our offerings.

• Business transactions (e.g., mergers, asset sales).

• Compliance with legal obligations and protection of rights.

7. Disclosure of Personal Data
We may share your information in the following circumstances:

• Service Providers: Third-party vendors who perform functions on our behalf (e.g., hosting, analytics, email delivery). Contracts with processors include required data protection obligations. GDPR

• Affiliates: Entities under common control, which are contractually bound to adhere to this Policy.

• Business Transfers: In connection with or during negotiations of mergers, acquisitions, reorganizations, or asset sales.

• Legal Obligations: To comply with legal process or respond to lawful requests by public authorities (e.g., courts, regulators).

• Protection of Rights: To protect and defend our rights, property, users, or the public from harm.

• With Your Consent: For any other purpose you authorize.

8. International Transfers
Your personal data may be transferred to and processed in countries different from where you reside. When transfers involve the EEA/UK to countries without an adequacy decision, we rely on appropriate safeguards such as:

• Standard Contractual Clauses approved by the European Commission or relevant authority. European CommissionICO

• Adequacy decisions where applicable. European Data Protection Board

We take reasonable and lawful steps to ensure your data remains protected in accordance with this Policy. ICO

9. Australian Privacy Compliance
We are subject to the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs). We handle personal information in accordance with those principles, including:

• Being transparent about what we collect and why.

• Taking reasonable steps to ensure data accuracy and security.

• Providing mechanisms to access and correct your data.

• Notifiable Data Breaches (NDB) scheme: If a breach is likely to result in serious harm, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) in accordance with the scheme. OAICOAICDigital ID SystemFortinet

10. Your Rights

10.1 General / EU & UK Rights (where applicable):
Depending on your jurisdiction, you may have the right to: GDPREuropean Data Protection BoardICOGDPR

• Access the personal data we hold about you.

• Correct or update inaccurate information.

• Delete your personal data (“right to be forgotten”), subject to exceptions.

• Restrict or object to certain processing.

• Data portability (receive data in a structured, machine-readable format).

• Withdraw consent (if applicable) without affecting past processing.

• Lodge a complaint with a supervisory authority (e.g., your local data protection authority or the OAIC if in Australia).

10.2 California Residents (CCPA/CPRA):
If you are a California resident, you have additional rights under the CCPA/CPRA, including: California Privacy Protection AgencyOneTrustTermlySecuriti

• The right to know what personal information is collected, used, shared, or sold.

• The right to request deletion of your personal information.

• The right to opt out of the sale or sharing of your personal information via a clear and conspicuous “Do Not Sell or Share My Personal Information” link (e.g., [https://www.pentacoreaustralia.com/do-not-sell-or-share]). TermlyCookieYes

• The right to correct inaccurate personal information.

• The right to non-discrimination for exercising your rights.

10.3 How to Exercise Your Rights:
You can exercise any of the rights above by contacting us via the contact details in Section 17. We may require you to verify your identity before fulfilling requests. We aim to respond within timeframes required by applicable law.

11. Cookies and Tracking Technologies
We use cookies, web beacons, and similar technologies to collect information to operate and improve the Service, provide personalization, and support analytics. You will be presented with a cookie consent banner allowing you to accept, reject, or manage preferences for non-essential cookies. You can disable cookies via your browser settings, though some features may degrade.
We respect browser-based signals such as “Do Not Track,” but not all third parties honor these signals. Termly

12. Marketing and Opt-Out
You may opt out of receiving promotional communications by:

• Clicking the unsubscribe link in marketing emails.

• Adjusting your preferences in your account settings.

• Contacting us directly.

Opting out does not affect transactional or service-related messages necessary to provide the Service.

13. Data Retention
We retain Personal Data only as long as necessary for the purposes stated, including to:

• Fulfill contractual obligations and provide the Service (accounts remain until inactive, then retained for up to 2 years unless otherwise required).

• Comply with legal obligations, resolve disputes, and enforce agreements.

• Usage Data is retained for up to 12 months by default, except when needed longer for security, fraud prevention, or compliance. GDPR

14. Security
We implement administrative, technical, and physical safeguards (e.g., encryption in transit, access controls, regular security reviews, and staff training) to protect personal information. However, no system can be guaranteed completely secure. ICO

15. Children’s Privacy
Our Service is not directed to children under 13. We do not knowingly collect personal information from anyone under 13 without verified parental consent where required. If you become aware that your child has provided their personal information without consent, contact us and we will take steps to delete it.

16. Links to Other Websites
The Service may contain links to third-party websites. We are not responsible for their privacy practices. We encourage you to review their policies before providing personal information.

17. Changes to This Privacy Policy
We may update this Policy periodically. We will notify you by posting the updated Policy on this page and, where appropriate, via email or a prominent notice prior to material changes becoming effective. You are encouraged to review this Policy regularly.

18. Contact Us
For questions or to exercise rights:

• Email: info@pentacoreaustralia.com

• Postal address: Pentacore Australia Private Limited, 6 Network Drive, Truganina, Melbourne, Victoria 3029, Australia

• Contact page: https://www.pentacoreaustralia.com/contact-us/

19. Complaints and Supervisory Authorities

• Australia: You may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) if you believe we have breached the APPs or NDB obligations. OAICDigital ID System

• EEA/UK: You can contact your local data protection authority. European Data Protection Board

• California: You can refer to the California Privacy Protection Agency or submit requests via the mechanisms described above. California Privacy Protection Agency

20. Miscellaneous
If any provision of this Policy conflicts with applicable local law in a way that invalidates it, such provision will be interpreted to the maximum extent permissible to carry out its intent, and other provisions remain in full force.