Bizzie

Legal

Privacy Policy

Effective from launch. Last reviewed: 2026-05-11.

This Privacy Policy explains how Bizzie (“we”, “us”) collects, uses, stores, and discloses personal information in accordance with the Australian Privacy Act 1988 (Cth) and the 13 Australian Privacy Principles (APPs). Bizzie is built for Australian home-service operators and their customers; all data is hosted in Sydney, Australia.

1. What we collect (APP 3)

When you use Bizzie we collect:

  • Account information: name, email address, phone number, ABN, business name, and business address.
  • Operational data: clients, jobs, time entries, estimates, invoices, expenses, equipment, employees, and any files you upload as part of running your business.
  • Billing information: payment method details are processed by Stripe. Bizzie stores Stripe customer and subscription identifiers but does not store full card numbers.
  • Technical metadata: IP address, browser user-agent, and activity logs used for security, abuse prevention, and troubleshooting.

2. Why we collect it (APP 6)

We use this information to:

  • Provide and maintain the Bizzie service.
  • Process subscription payments via Stripe.
  • Send operational notifications (e.g. job assignment emails).
  • Meet Australian tax recordkeeping obligations (invoices, GST, BAS).
  • Prevent fraud and abuse, and respond to security incidents.

3. How we notify you (APP 5)

We collect personal information directly when you sign up, configure your business profile, or use the product. If we ever need to collect personal information from a third party on your behalf, we will tell you who, what, and why.

4. Who we share with (APP 6, APP 8)

We share the minimum personal information required with the following sub-processors. Each provider has its own privacy practices; we select providers that meet Australian data-protection expectations.

  • Supabase (database, authentication, file storage) — region ap-southeast-2 (Sydney).
  • Vercel (application hosting) — region syd1(Sydney).
  • Stripe (subscription billing).
  • Resend (transactional email delivery).
  • Upstash (rate limiting metadata).
  • Google Maps (address geocoding) — requests are proxied server-side so no Bizzie cookies reach Google.
  • Sentry (error reporting) — authentication cookies, sensitive headers, and request bodies on auth/billing routes are scrubbed before any event leaves our servers.

Some of these providers process data outside Australia. Where that happens we rely on contractual safeguards equivalent to APP 8 requirements.

5. Where we store it (APP 11)

Bizzie’s primary database runs in ap-southeast-2 (Sydney, Supabase) and the application is deployed to syd1(Sydney, Vercel). All traffic is TLS-encrypted in transit. Data is encrypted at rest. Row-Level Security policies ensure one business cannot read or modify another business’s data. File uploads are stored in a private bucket and served via short-lived signed URLs.

6. How long we keep it

Operational data (clients, jobs, invoices, time entries) is retained for 7 years to meet Australian Taxation Office recordkeeping obligations. Other personal information is retained for up to 90 days after account closure, after which it is purged from production systems and (within 30 further days) from backups.

7. Accessing and correcting your information (APP 12, APP 13)

You can view and edit most personal information directly in the Bizzie settings. For requests we can’t satisfy in-app — data exports, deletion of a closed account, corrections to information held about you — contact us at privacy@bizzieapp.com. We respond within 30 days.

8. Data quality (APP 10)

You’re the authoritative source for your business information. We don’t modify records you’ve created except to enforce tenant isolation or to remove clearly malicious content (e.g. virus sentinels in uploaded files).

9. Complaints and escalation

If you believe we’ve mishandled your personal information, please contact privacy@bizzieapp.com first. If the outcome doesn’t satisfy you, you can escalate to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

10. Changes to this policy (APP 1)

If we materially change how we handle personal information, we’ll update this page and notify account owners by email at least 14 days before the change takes effect.

Contact

Bizzie — privacy@bizzieapp.com