Privacy Policy

1.1 Account information

When you create an account, we collect your name, email address, and password. Passwords are cryptographically hashed and never stored in plain text.

1.2 Organisation data

Information you provide about your organisation, including organisation name, logo, billing contact details, tax identifiers (such as ABN), and member details.

1.3 Billing and payment information

If you subscribe to a paid plan, payment information (such as credit or debit card details) is collected and processed directly by our payment processor, Stripe. We do not store your full card number, CVV, or other sensitive payment credentials on our servers. We receive from Stripe a limited set of billing details, including card type, last four digits, expiry date, billing address, and transaction history, for the purpose of displaying billing information and managing your subscription.

1.4 Event and sign data

Event details, sign types, sign placements, custom field values, status updates, assignment information, comments, and announcements you enter into the platform.

1.5 Photos and files

Installation photos uploaded by contractors, map images, PDF site plans, artwork files, and reference documents uploaded by organisers. Photos may be compressed client-side before upload.

1.6 Map and location data

Site plan images and PDF files you upload, as well as geographic coordinates (latitude and longitude) for sign placements on geo-maps.

1.7 Device and usage data

When you use the Service, we may automatically collect:

• Device type and operating system
• Browser type and version
• IP address (anonymised for analytics purposes)
• Pages visited and features used (in aggregate, not individually identifiable)

We use Plausible Analytics, a privacy-focused analytics service that does not use cookies and does not collect personal data. Plausible provides aggregate usage statistics only and is compliant with GDPR, PECR, and other privacy regulations without requiring a cookie consent banner.

1.8 Transactional email data

When we send you emails (such as account verification, password resets, invitations, or billing notifications), our email delivery provider processes your email address and message content for the purpose of delivering those emails.

1.9 Information from third parties

If you are invited to the platform by another user (via an organisation invitation, event invitation, or access code), we receive your email address from the inviting user for the sole purpose of facilitating the invitation.

3.1 Infrastructure

All structured data (accounts, events, signs, status history) is stored in a PostgreSQL database managed by Supabase. Data is encrypted at rest (AES-256) and in transit (TLS 1.2+).

Photos, maps, and uploaded files are stored in Supabase Storage with access controls ensuring only authorised users can view or download files belonging to their organisation.

Application hosting and delivery is provided by Vercel.

Our infrastructure providers maintain SOC 2 Type II compliance and implement industry-standard security practices.

3.2 Multi-tenant data isolation

Signplanr is a multi-tenant application. All organisations share the same infrastructure, but data is strictly isolated at the database level using row-level security (RLS) policies. Every database query is scoped to the authenticated user's organisation. There is no mechanism for one tenant to query, view, or modify another tenant's data through the application.

3.3 Cross-border data transfers

Our infrastructure providers (Supabase, Vercel, Stripe, and Resend) operate servers primarily in the United States and other countries outside Australia. By using the Service, you acknowledge and consent to your personal information being transferred to and processed in countries outside Australia. We take reasonable steps to ensure that overseas recipients of personal information comply with the APPs, and our agreements with these providers include data protection obligations consistent with Australian privacy standards.

For users in the European Economic Area (EEA) or United Kingdom: transfers are made under Standard Contractual Clauses or other lawful transfer mechanisms as maintained by our infrastructure providers.

4.1 Active accounts

Your data is retained for as long as your account is active. Archived events and their associated data (signs, photos, maps) remain accessible to you until you choose to delete them.

4.2 Event deletion

When you delete an event, all associated signs, photos, maps, reference documents, and status history are permanently removed after a 30-day retention window. This action cannot be undone after the retention period.

4.3 Organisation deletion

When an organisation is deleted, all associated data (events, signs, photos, maps, sign types, member records) is retained for 30 days before permanent deletion. Audit log records are retained permanently for security and accountability purposes.

4.4 Account termination

Upon account termination (whether by you or by us), we retain your data for 30 days to allow for data export, after which it is permanently deleted. Audit log entries referencing your account are retained for security purposes but personal identifiers are anonymised.

4.5 Invitation records

Contractor and organisation invitation records are retained for audit purposes even after an invitation expires or is revoked.

4.6 Billing records

Transaction and invoice records are retained for the period required by applicable Australian tax law (currently 5 years from the date of the transaction) and by our payment processor's data retention policies.

8.1 Additional rights for EEA/UK residents

If you are located in the European Economic Area or United Kingdom, you may also have the right to:

• Request restriction of processing
• Object to processing
• Data portability (receive your data in a structured, machine-readable format)
• Withdraw consent at any time where processing is based on consent