Search All
MIN
Lorem Company A
LOC: Sector A
Privacy Policy
Updated 14 May 2026
This Privacy Policy explains how Thesis Tracker collects, uses, discloses, and protects your personal information. The Operator is committed to handling personal information in accordance with the Australian Privacy Principles (APPs) set out in Schedule 1 of the Privacy Act 1988 (Cth).
1. About this Policy
This Privacy Policy applies to personal information collected, used, or disclosed by Thesis Tracker ("we", "our", "us") in connection with Thesis Tracker (the "Service"). By using the Service, you consent to the handling of your personal information in accordance with this Policy.
2. What personal information we collect
2.1 Information you provide
We collect personal information that you provide directly when you:
-
create an Account (email address, name, password, managed by security partner);
-
subscribe to a paid plan (billing details, processed by our payment processor);
-
contact us by email or through any contact form (the contents of your communication and your contact details); or
-
otherwise interact with the Service.
2.2 Information collected automatically
When you use the Service, we automatically collect limited technical information needed for login and platform operation, including login timestamps, IP address, browser type, and session identifiers. This information is collected through our hosting provider and is used solely for the purpose of providing the Service.
2.3 Information we do not collect
We do not collect: your investment holdings, your trading activity, your portfolio composition, your income or net assets, or any details of investments you make outside the Service. We do not require you to disclose this information to use the Service.
3. How we use your personal information
3.1 Primary purposes
We use your personal information only for the following purposes:
-
Account access — to enable you to log in to the Service and access Content;
-
Email communication — to send service-related communications, including account confirmations, password resets, billing notices, and material change notifications;
-
Billing — to process Subscription payments through our payment processor;
-
Compliance — to comply with legal and regulatory obligations and to maintain records as required by law; and
-
Service operation — to maintain, secure, and improve the Service.
3.2 No other use
We do not use your personal information for purposes other than those set out above. In particular, we do not:
-
sell or rent your personal information;
-
use your personal information for marketing or advertising (except service-related communications);
-
profile your behaviour for commercial purposes;
-
provide your information to data brokers or list aggregators; or
-
use your personal information to train artificial intelligence or machine learning models.
3.3 Marketing communications
If, in the future, we wish to send you marketing communications, we will do so only with your express opt-in consent, and you may withdraw that consent at any time using the unsubscribe link in any marketing email.
4. Who we share your information with
4.1 Service providers
We share limited personal information with the following service providers, solely for the purposes set out below:
-
Wix — our website and email service provider. Wix stores your email address and account credentials for the purpose of enabling Service access and email communication.
-
Stripe — our payment processor. Stripe processes Subscription payments and stores billing information directly. We do not store full payment card details on our systems.
4.2 Legal disclosure
We may disclose personal information where required or authorised by law, including in response to a court order, subpoena, or lawful regulatory request.
4.3 Business transfer
If the Operator's business is sold, merged, or otherwise transferred, personal information may be transferred to the acquiring entity as part of the transaction. Any such transfer will be subject to confidentiality obligations and consistent with this Policy.
4.4 No other sharing
We do not otherwise share your personal information with third parties.
5. Overseas disclosure
Some of our service providers store and process personal information outside Australia. In particular: Wix infrastructure may be located in the United States, Israel, and other jurisdictions where Wix operates; Stripe processes payment information through infrastructure located in the United States and other jurisdictions where Stripe operates. Where we transfer personal information overseas, we take reasonable steps to ensure that the overseas recipient handles the information consistently with the Australian Privacy Principles.
6. How we protect your information
6.1 Security measures
We take reasonable steps to protect personal information from misuse, interference, loss, and unauthorised access, modification, or disclosure, including using reputable third-party providers with established security practices, requiring secure authentication for account access, limiting internal access to personal information on a need-to-know basis, using encrypted connections (HTTPS) for all Service interactions, and regularly reviewing our security practices.
6.2 No absolute security
No method of internet transmission or electronic storage is completely secure. While we take reasonable steps to protect your personal information, we cannot guarantee absolute security.
6.3 Data breach notification
In the event of an eligible data breach (within the meaning of Part IIIC of the Privacy Act), we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) in accordance with the Notifiable Data Breaches scheme.
7. How long we keep your information
We retain personal information for as long as necessary to fulfil the purposes set out in clause 3, or for as long as required by law. Account information is retained for the duration of your Account and for a reasonable period after closure (typically 7 years) for compliance and audit purposes. Billing records are retained for at least 7 years to comply with tax law. Service-related correspondence is retained for as long as necessary to address the matter and for a reasonable period thereafter.
8. Your rights
8.1 Access
You have the right to request access to the personal information we hold about you. We will respond to access requests within 30 days.
8.2 Correction
You have the right to request correction of any personal information that is inaccurate, out of date, incomplete, irrelevant, or misleading.
8.3 Deletion
You may request deletion of your personal information at any time. We will delete personal information that is no longer required for the purposes set out in clause 3, subject to any legal obligation to retain it.
8.4 Withdrawal of consent
You may withdraw consent to our handling of your personal information at any time. Withdrawing consent may affect your ability to use the Service.
8.5 How to exercise your rights
To exercise any of these rights, contact us at tea,@thesis-tracker.com. We may need to verify your identity before responding to your request.
9. Cookies and tracking
The Service uses limited cookies and similar technologies for the purpose of enabling login sessions and basic Service operation. We do not use third-party advertising cookies or behavioural tracking.
10. Children
The Service is intended for users 18 years of age or older. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child, we will delete it promptly.
11. Complaints
If you have a complaint about our handling of your personal information, please contact our Privacy Officer at team@thesis-tracker.com. We will acknowledge your complaint within 5 business days.
12. Changes to this Policy
We may update this Policy from time to time. The current version is always published on the Service. We will notify you by email of any material changes.
13. Contact
For privacy enquiries, contact our Privacy Officer at team+privacy@thesis-tracker.com