Privacy Policy

1. Privacy Commitment

Cloudly (operated by Teamwork Technology Pty Ltd) is privacy-first by design. Protecting customer data is a core security objective across CirrusAI and all Cloudly services.

This policy explains how we collect, use, store, and protect personal information in accordance with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth).

2. Australian Data Sovereignty

• All CirrusAI and Cloudly application data is stored and processed exclusively in Australia.
• Data is hosted in Cloudly-owned data centre space on Cloudly-owned hardware.
• Customer application data does not leave Australia or the Cloudly data centre network.
• No offshore replication, transfer, or processing is used for application data.

3. Information We Collect

• Account information — name, business details, email address, and phone number.
• Service data — call recordings, transcripts, analytics events, and operational metadata required to deliver the service.
• Support interactions — information you provide when requesting help.

4. Permitted Use of Data

We use data only to:

• Operate, secure, and improve Cloudly and CirrusAI services.
• Match PMS data to patient names and phone numbers strictly for application workflow and service functionality.
• Provide customer support and service communications.
• Meet legal and regulatory obligations.

5. Access Controls

• Internal access is restricted to authorised personnel under least-privilege access controls.
• Access is role-based, logged, monitored, and regularly reviewed.
• Administrative access requires strong authentication controls, including MFA.
• Personnel are bound by confidentiality obligations and security handling procedures.

6. Third-Party Access and Disclosure

Cloudly does not sell, rent, trade, or monetise your personal information.

• We do not provide third parties with access to customer application content for marketing or data brokerage purposes.
• Where third-party services are required for core business operations (for example, billing), data shared is limited to the minimum necessary and does not change our Australian-hosted application data controls.
• We only disclose data where required by law, or where you explicitly authorise us to do so.

7. Security Controls

• All customer data is encrypted at rest.
• Data in transit is protected with modern transport encryption.
• Infrastructure is segmented, monitored, and actively hardened.
• Security testing, vulnerability management, and patching are ongoing.
• Backups and recovery controls are maintained within Australian-controlled infrastructure.

8. Data Retention and Deletion

We retain personal information only for as long as needed to deliver services, meet contractual obligations, and comply with legal requirements. When data is no longer required, it is securely deleted or de-identified according to our data handling procedures.

9. Your Rights

Under the Australian Privacy Principles, you have the right to:

• Access the personal information we hold about you.
• Request correction of inaccurate or outdated information.
• Request deletion where legally and operationally appropriate.

To exercise any of these rights, contact us at privacy@cloudly.com.au.

10. Cookies

Our website uses cookies needed for core site functionality and service quality. Cookie usage is described in our Cookie Policy.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in legal, operational, or security requirements. Any updates will be published on this page with a revised “Last updated” date.