Neomeric Pty Ltd (ACN [LEGAL REVIEW REQUIRED]) handles personal information in accordance with the Australian Privacy Principles set out in the Privacy Act 1988 (Cth). This Policy explains what we collect, why, who we share it with, and the choices you have.
1. Information we collect
We collect personal information you provide directly, including:
- Account information — name, email address, organisation.
- Billing information — payment-card metadata (last 4 digits, expiry, brand) and tax identifiers; full card numbers are handled by our payment processor (Stripe) and never stored on Neomeric servers.
- Content you upload to ground your agents — documents, FAQs, website crawls (“Customer Data”).
- Operational metadata — IP address, browser, pages visited, actions performed inside the dashboard.
2. How we use it
We use personal information to:
- Provide and improve the Service;
- Process payments and provide receipts;
- Communicate with you about your account and the Service;
- Detect, investigate and prevent fraud, abuse and security incidents;
- Comply with legal obligations.
We do not sell personal information. We do not train foundation models on Customer Data. [LEGAL REVIEW REQUIRED] confirm the “no training” statement aligns with sub-processor terms (in particular, the model API provider’s zero-retention configuration).
3. Sub-processors
We engage a small number of sub-processors to provide the Service. At the date of this Policy, those include:
- Microsoft Azure (hosting; AU region).
- Stripe Payments Australia Pty Ltd (payment processing).
- The model API provider used by Simon and Maeve (zero-retention configured).
- Azure Communication Services (transactional email and voice calling).
[LEGAL REVIEW REQUIRED] full sub-processor list, including any analytics or error-reporting providers, must be current at the date of publication and updated when sub-processors change.
4. Storage and security
Customer Data is stored in Australia by default. We apply commercially reasonable technical and organisational measures (encryption in transit, encryption at rest, network isolation, least-privilege access) appropriate to the sensitivity of the information.
5. Disclosure
We disclose personal information only to: (a) sub-processors who need it to deliver the Service; (b) law-enforcement or regulators where required by law; and (c) acquirers in the event of a merger or sale, subject to equivalent privacy obligations.
6. Your rights
Under Australian law you may request access to, or correction of, the personal information we hold about you. Contact privacy@neomeric.com.
If you are an end user of a NeoMind-powered service (e.g. a customer of one of our tenants), your primary point of contact is the tenant operating that service. We act as their processor.
7. Retention
Customer Data is retained while your account is active and for up to ninety (90) days after closure, after which it is permanently deleted from primary systems and rotated out of backups in line with our backup cycle. [LEGAL REVIEW REQUIRED] confirm retention periods are appropriate for any regulated industry verticals we onboard (e.g. medical tenants under MyHealth Records / healthcare-identifier rules).
8. Cookies
See our Cookies notice for details about session cookies, analytics, and consent management.
9. Complaints
If you believe we have mishandled your personal information you may complain to privacy@neomeric.com. If unresolved, you may escalate to the Office of the Australian Information Commissioner (oaic.gov.au).
10. Changes
We may update this Policy from time to time. Material changes will be notified to the account owner at least fourteen (14) days in advance via email and a dashboard banner.