FeaturesPricingBlog

Privacy Policy

Last updated: 1 January 2025

1. Introduction

TenderFeed Pty Ltd ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information in accordance with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs), as well as the EU General Data Protection Regulation (GDPR) where applicable.

2. Information We Collect

We collect the following types of information:

  • Account information: email address, name, business name, ABN, and contact details
  • Business profile data: business description, location, size, certifications, and industry information
  • Usage data: tender interactions, saved tenders, alert preferences, and feature usage
  • Payment information: processed securely by Stripe; we do not store credit card details
  • Technical data: IP address, browser type, device information, and cookies

3. How We Use Your Information

  • To provide and improve the TenderFeed service
  • To match your business profile with relevant government tenders
  • To generate eligibility assessments and bid templates
  • To send you tender alerts via email or SMS
  • To process payments and manage your subscription
  • To provide customer support
  • To generate aggregated, anonymised analytics and benchmarks
  • To comply with legal obligations

4. AI Processing

We use artificial intelligence services (including Anthropic Claude) to process your business description for matching, eligibility analysis, and bid template generation. Your business profile data is sent to these AI services solely for the purpose of providing the Service. We do not use your data to train AI models. AI service providers are bound by data processing agreements that prohibit them from using your data for their own purposes.

5. Data Sharing

We share your personal information only with:

  • Service providers: Supabase (database), Stripe (payments), Resend (email), Twilio (SMS), Anthropic (AI) -- all bound by data processing agreements
  • Legal requirements: when required by law, regulation, or legal process

We do not sell your personal information to third parties.

6. Data Storage and Security

Your data is stored on servers located in Australia (Sydney region) via Supabase. We implement industry-standard security measures including encryption at rest and in transit, access controls, and regular security audits. Despite these measures, no system is 100% secure, and we cannot guarantee absolute security.

7. Your Rights

Under the Australian Privacy Act and GDPR, you have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your personal information
  • Object to or restrict processing of your information
  • Request data portability (receive your data in a structured format)
  • Withdraw consent at any time
  • Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)

8. Cookies

We use essential cookies for authentication and session management. We use analytics cookies to understand how the Service is used. You can control cookie preferences through your browser settings.

9. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. After account deletion, we retain anonymised data for analytics purposes. We delete personal data within 30 days of a deletion request, except where retention is required by law.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through the Service. Your continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

For privacy-related inquiries, contact our Privacy Officer at privacy@tenderfeed.com.au.