top of page
website privacy policy background.png

The legal stuff...
Our privacy policy.

Privacy Policy

 

SynAck Solutions Pty Ltd

Last Updated: September 9, 2025

This Privacy Policy outlines how SynAck Solutions Pty Ltd (“we”, “us”, or “our”) collects, uses, discloses, and manages personal information through our website, www. synack.com.au (“the Website”), and our services. We are committed to protecting your privacy in compliance with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth). If you are located in the European Union or other regions subject to the General Data Protection Regulation (GDPR), additional protections may apply as outlined below. By using our Website or services, you consent to the practices described in this policy.

 

This policy fulfills legal requirements to protect your privacy and is informed by best practices for transparency in data handling. Important: This Privacy Policy is provided for informational purposes only and does not constitute legal advice. We recommend consulting a legal professional to ensure compliance with applicable laws in your jurisdiction.

 

What is a Privacy Policy?

A privacy policy is a statement that discloses how we collect, use, disclose, and manage the personal data of our Website visitors and customers. It addresses legal requirements to safeguard privacy under relevant laws, including the Privacy Act 1988 in Australia and, where applicable, the GDPR for EU residents.

 

Information We Include in This Policy

 

This policy covers key aspects of our data practices, including the types of information collected, collection methods, purposes of collection, storage and usage, sharing and disclosure, communication methods, use of cookies and tracking tools, withdrawal of consent, policy updates, and contact information.

 

1. What Type of Information Do We Collect?

 

We collect personal information that identifies or could identify an individual. This may include: • Personal Details: Name, email address, phone number, postal address, and other contact information provided when you interact with our Website, submit inquiries, or engage our services. 

• Technical Data: IP address, browser type, device information, operating system, and usage data (e.g., pages visited, time spent) collected automatically.

• Service-Related Data: Information provided during cybersecurity consultations, such as business details, technical configurations, or vulnerability assessments, necessary for delivering offensive security, penetration testing, remediation, and other services.

• Billing Information: Payment details, billing address, and transaction history if you purchase services.

• Other Sensitive Data: In limited cases, we may collect sensitive information (e.g., related to security assessments) with your explicit consent, in compliance with APPs and GDPR where applicable.

We do not collect sensitive information unless it is necessary for our services and with your consent.

2. How Do We Collect Information?

 

We collect information through various methods:

 

• Directly from You: When you fill out contact forms, subscribe to newsletters, request consultations, purchase services, or communicate with us via email or phone.

• Automatically: Through cookies, web beacons, and analytics tools when you visit our Website, such as logging IP addresses or tracking navigation patterns.

• From Third Parties: From service providers (e.g., payment processors) or public sources, where permitted by law.

 

3. Why Do We Collect Personal Information?

 

We collect personal information for legitimate purposes, including:

• To provide and improve our cybersecurity services, such as offensive security testing and remediation.

To process transactions, respond to inquiries, and deliver tailored solutions.

• For marketing and promotional activities, such as sending newsletters (with opt-in consent).

• To analyze Website usage and enhance user experience.

• To comply with legal obligations, prevent fraud, and protect our rights.

 

Under GDPR, our legal bases for processing include consent, contract performance, legitimate interests, and legal compliance.

 

4. How Do We Store, Use, Share, and Disclose Personal Information?

 

We store personal information securely on servers in Australia or with trusted cloud providers complying with APPs and GDPR standards. We use it as described in Section 3.

We may share or disclose information:

 

• With third-party service providers (e.g., hosting, analytics like Google Analytics, payment processors) under strict confidentiality agreements.

• When required by law, such as to regulatory authorities or in response to legal processes. • In business transfers (e.g., mergers), where data is treated as an asset.

With your consent for specific purposes. We do not sell or rent personal information. International transfers (e.g., to EU or USbased providers) include safeguards like Standard Contractual Clauses under

 

GDPR. 5.  How Do We Communicate with Site Visitors?

 

We communicate via email, phone, or text message for service updates, inquiries, marketing (with opt-in), or promotions. You can opt out at any time by clicking unsubscribe links in emails or contacting us. We do not use automated decision-making that significantly affects you without consent.

6. How Do We Use Cookies and Other Tracking Tools?

 

Our Website uses cookies, web beacons, and similar technologies to enhance functionality, track usage, and personalize experiences. Cookies may collect data like IP addresses and browsing behavior. We use:

Essential cookies for site operation.

• Analytics cookies (e.g., Google Analytics) for performance insights.

• Marketing cookies for targeted ads.

 

Third-party services (e.g., Wix App Market apps) may have their own cookie policies, not covered here.

Manage preferences via browser settings; disabling cookies may limit site features. For more on Wix cookies, visit Wix’s privacy resources.

7. How Can Site Visitors Withdraw Consent?

 

You can withdraw consent, access, correct, or delete your personal information at any time by contacting us. Under APPs and GDPR, you have rights to:

 

• Access and correct data.

• Request deletion (“right to be forgotten” under GDPR), subject to legal retention requirements.

• Object to processing or restrict it.

• Data portability.

• Lodge a complaint with authorities (e.g., OAIC in Australia or your local GDPR supervisory authority).  We respond to requests within 30 days.

 

8. Privacy Policy Updates

 

We may update this policy to reflect changes in practices or laws. Updates will be posted here with a revised “Last Updated” date. We encourage periodic review.

 

9. Questions and Contact Information

 

For questions, concerns, or to exercise rights, contact: SynAck Solutions Pty Ltd

 

Physical Address: Level 23, 71 Eagle St, Brisbane, QLD 4000, Australia

Postal Address: PO Box 8, Cannon Hill, Brisbane QLD 4172

Email: info@synack.au

Phone: +61721412524

 

For complaints, contact the Office of the Australian Information Commissioner (OAIC) at https://www.oaic.gov.au or your local data protection authority.

bottom of page