Privacy Policy

Last updated: 14 February 2025

1. Introduction

NextPoint IT Pty Ltd (ABN 44 692 718 988) ("NextPoint IT", "we", "us", or "our") is committed to protecting the privacy of your personal information. This Privacy Policy explains how we collect, hold, use, and disclose personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

NextPoint IT also operates platforms and services under the domain identitylink.ai. This Privacy Policy applies to all platforms and services operated by NextPoint IT across both the nextpointit.com.au and identitylink.ai domains.

By using our websites, platforms, or client portal, you acknowledge that you have read and understood this Privacy Policy.

2. What personal information we collect

We may collect the following types of personal information:

  • Name, email address, phone number, and postal address
  • Business name, ABN, and job title
  • Account credentials (email and hashed password) for our client portal
  • Information you provide when submitting a contact form, support ticket, or enquiry
  • Technical data such as IP address, browser type, device information, and pages visited (collected via cookies and analytics tools)
  • Payment and billing information where applicable (processed by third-party payment providers)
  • Any other information you voluntarily provide to us in the course of our business relationship

3. How we collect personal information

We collect personal information:

  • Directly from you — when you contact us, register for an account, submit a form, or engage our services
  • Through our website — via cookies, analytics, and similar technologies
  • From third parties — such as referral partners, publicly available sources, or your authorised representatives

Where reasonable and practicable, we collect personal information directly from you. We will not collect sensitive information unless you consent or it is required or authorised by law.

4. Why we collect, hold, and use personal information

We collect and use your personal information for the following purposes:

  • To provide, manage, and improve our IT consulting, web development, and related services
  • To create and manage your account on our client portal
  • To communicate with you about your projects, support requests, and service updates
  • To process invoices and payments
  • To respond to your enquiries and provide customer support
  • To comply with our legal and regulatory obligations
  • To protect our legitimate business interests, including security and fraud prevention
  • For internal business operations, analytics, and service improvement

5. Disclosure of personal information

We may disclose your personal information to:

  • Our employees, contractors, and service providers who assist in delivering our services (e.g., hosting providers, payment processors, email service providers)
  • Professional advisors such as accountants, auditors, and lawyers
  • Government agencies or regulatory bodies where required by law
  • Any other third parties with your consent or as permitted under the Privacy Act

We will not sell, rent, or trade your personal information to third parties for marketing purposes.

6. Overseas disclosure

Some of our service providers (such as cloud hosting and software platforms) may store data on servers located outside Australia. Where we disclose personal information to overseas recipients, we take reasonable steps to ensure those recipients comply with the APPs or are subject to a substantially similar privacy regime. Our primary hosting infrastructure is provided by services with data centres in Australia and the United States.

7. Cookies and tracking technologies

Our website uses cookies and similar technologies to enhance your experience and collect analytical data. Cookies are small text files stored on your device. We use:

  • Essential cookies — required for the website and client portal to function correctly (e.g., authentication session cookies)
  • Analytics cookies — to understand how visitors interact with our website and to improve our services

You can manage or disable cookies through your browser settings. Disabling essential cookies may affect your ability to use the client portal.

8. Data security

We take reasonable steps to protect your personal information from misuse, interference, loss, and unauthorised access, modification, or disclosure. Our security measures include:

  • Encryption of data in transit (TLS/SSL) and at rest
  • Secure authentication mechanisms for our client portal
  • Access controls limiting who can view personal data
  • Regular security reviews and updates

No method of electronic storage or transmission is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security.

9. Data retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. When personal information is no longer needed, we will take reasonable steps to destroy or de-identify it.

10. Your rights under the Privacy Act

Under the Australian Privacy Principles, you have the right to:

  • Access — request access to the personal information we hold about you
  • Correction — request that we correct any inaccurate, out-of-date, incomplete, or misleading personal information
  • Complaint — make a complaint if you believe we have breached your privacy

To exercise any of these rights, please contact us using the details below. We will respond to your request within 30 days. We may need to verify your identity before processing your request.

11. Complaints

If you believe we have breached your privacy or handled your personal information inappropriately, you may lodge a complaint with us by contacting us at the details below. We will investigate your complaint and respond within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will post the updated policy on our website with a revised "Last updated" date. We encourage you to review this page periodically.

13. Contact us

If you have any questions about this Privacy Policy, wish to make a complaint, or would like to access or correct your personal information, please contact us: