Legal

Privacy Policy

Last Updated: March 2026

01

Our Commitment to Privacy

Citrus Peak Digital Pty Ltd (ABN: 64 667 208 415) is committed to protecting the privacy of our clients and website visitors. We manage personal information in accordance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and applicable privacy transparency reforms (including reforms commencing on 10 December 2026).

02

Information We Collect

We collect only the information reasonably necessary to provide our taxonomy mapping and related professional services, operate our website, and measure service quality and site performance through analytics reporting:

  • Identity & Contact Data: Name, email address, and company details provided via our secure forms.
  • Product Data: Product listings provided for taxonomy mapping.
  • Technical & Usage Data: IP address, browser and device metadata, page requests, interaction counts, language, screen resolution, timestamps, and referrer information used for security, operational monitoring, and website analytics.

Our website uses privacy-focused analytics tooling. We configure analytics to minimise cookie use. Where service-related cookies are used (for example, analytics ignore or operational controls), they are limited to those functions.

03

How We Store and Secure Your Data

We utilise a multi-layered, high-security infrastructure to protect your data:

  • Primary Infrastructure: Our core proprietary processing systems are hosted on managed infrastructure located in Sydney, Australia, ensuring local residency for primary data processing.
  • Traffic & File Storage: We utilise global security proxy services to manage web traffic and provide secure, encrypted object storage for project files. All traffic is protected by modern bot-detection and security verification technologies.
  • Business Operations: We utilise third-party cloud productivity suites and Customer Relationship Management (CRM) platforms to manage project artifacts and client communications.
  • Encryption: All data is encrypted at rest and in transit using industry-standard protocols.

04

Automated Processing & Operational Logic

In accordance with Australian transparency requirements for automated systems (APP 1.7), to deliver our taxonomy mapping services, we utilise a proprietary automated workflow:

  • The Process: This system uses a combination of algorithmic rules and Large Language Models (LLMs) to analyse product metadata and determine category placement for various marketplace taxonomies.
  • Integrity & Validation: Our process includes built-in validation stages and internal reviews to maintain high standards of reliability and mitigate automated errors.
  • Intellectual Property: While we are transparent regarding the types of technology used, we do not disclose the specific proprietary logic, internal prompts, or architectural details of our processing engine.
  • Inquiries: If you have concerns regarding the accuracy of a specific mapping result, you may request a review through our standard support channels.

05

Overseas Disclosure

As we utilise global cloud-based professional tools, some information may be processed by service providers located outside of Australia, typically in the United States or Europe. We ensure these third-party providers are contractually bound to data protection standards that meet or exceed Australian privacy requirements. This may include website analytics and infrastructure service providers used to operate, secure, and improve our online services.

06

Data Retention

We retain personal and project information only as long as necessary for service delivery or to comply with Australian legal and tax obligations, which typically require records to be kept for 5 to 7 years.

07

Contact and Complaints

To exercise your rights or make a privacy inquiry, please contact our Privacy Officer using our secure contact method:

  • Primary Contact: Please complete our secure contact form. This form is protected by advanced security verification to ensure your request is transmitted safely.

Unresolved complaints can be directed to the Office of the Australian Information Commissioner (OAIC).