Privacy Policy

1. Introduction

Predelo Holdings Pty Ltd (ACN 659 288 776) ("Predelo," "we," "us," or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, store, and share information when you use our website (predelo.com), our AI-powered workforce optimization platform, and related services (collectively, "Services").

This policy applies to all visitors to our website, customers using our platform, and employees of customer organizations whose data may be processed through our Services.

2. Information We Collect

2.1 Information You Provide

• Contact information: name, email address, phone number, company name, and job title when you request a demo, contact us, or create an account
• Business information: company size, number of locations, industry, and operational details shared during sales conversations or onboarding
• Communication records: emails, chat messages, and support requests

2.2 Information Collected Through Our Platform

When customers use Predelo through their Deputy integration, we process workforce data including:

• Employee names, roles, qualifications, and availability (synced from Deputy)
• Scheduling data: shift times, break allocations, and timesheet records
• Demand data: transaction volumes, sales figures, and other operational metrics from POS and business systems
• Forecast outputs: demand predictions and staffing recommendations generated by our platform

2.3 Information Collected Automatically

• Website usage data: pages visited, time on site, referral sources, and click patterns
• Device information: browser type, operating system, IP address, and device identifiers
• Cookies and similar technologies: as described in Section 7

3. How We Use Information

We use collected information to:

• Provide, operate, and improve our Services
• Generate demand forecasts and staffing recommendations for customers
• Communicate with you about our Services, including responding to inquiries and providing support
• Process and fulfill demo requests
• Analyze platform performance and improve our algorithms
• Comply with legal obligations
• Protect the security and integrity of our platform

We process workforce data solely to deliver our Services to the customer organization that authorized the integration. We do not use individual employee data for marketing, advertising, or any purpose unrelated to the workforce optimization services contracted by the customer.

4. Data Sharing

We share information only in the following circumstances:

4.1 With Deputy

As part of our partnership integration, scheduling outputs and recommendations are shared with Deputy's platform as directed by the customer.

4.2 With Service Providers

We use third-party service providers for infrastructure hosting (Amazon Web Services), analytics, and operational support. These providers process data only on our instructions and are bound by contractual obligations to protect your information.

4.3 With Customer Organizations

Workforce analytics, reports, and scheduling outputs are shared with the customer organization that authorized the platform integration.

4.4 As Required by Law

We may disclose information when required by applicable law, regulation, or legal process.

4.5 Business Transfers

In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

We do not sell personal information. We do not share personal information with third parties for their marketing purposes.

5. Data Security

We maintain comprehensive security measures to protect your information, including:

• Encryption of data in transit (TLS) and at rest
• Access controls and authentication requirements
• Regular security assessments and vulnerability testing
• Employee security training and access management
• Incident response procedures

Our security practices are independently validated through our ISO 27001:2022 certification and SOC 2 Type 2 audit. Infrastructure is hosted on Amazon Web Services with enterprise-grade physical and network security controls. For more details, see our Security page.

6. Data Retention

We retain personal information for as long as necessary to provide our Services, comply with legal obligations, resolve disputes, and enforce agreements. When a customer relationship ends, we follow our data retention policy which includes:

• Customer data deletion or return upon contract termination, in accordance with contractual terms
• Website visitor data retained for analytics purposes in anonymized form
• Communication records retained as required for legal and compliance purposes

7. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to:

• Maintain website functionality and session management
• Analyze website traffic and usage patterns
• Improve user experience

Essential Cookies: Required for website functionality. Cannot be disabled.

Analytics Cookies: Help us understand how visitors interact with our website. These cookies can be disabled through your browser settings or our cookie preferences.

Marketing Cookies: Used to track the effectiveness of our marketing efforts. These cookies can be disabled through your browser settings or our cookie preferences.

You can manage cookie preferences through your browser settings. Disabling certain cookies may affect website functionality.

8. Your Rights

Depending on your jurisdiction, you may have rights including:

• Access to your personal information
• Correction of inaccurate information
• Deletion of your personal information
• Restriction of processing
• Data portability
• Objection to processing

To exercise these rights, contact us at privacy@predelo.com. We will respond to requests within the timeframe required by applicable law.

9. International Data Transfers

Predelo is headquartered in Australia. Your information may be processed in Australia, the United States, or other jurisdictions where our service providers operate. We implement appropriate safeguards for international data transfers, including contractual protections consistent with applicable data protection laws.

10. Children's Privacy

Our Services are not directed to individuals under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us at privacy@predelo.com.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the "Last Updated" date. Your continued use of our Services after changes constitutes acceptance of the updated policy.

12. Contact Us

For privacy-related inquiries: