VoCo Logo
VoCo Connect
Back to Home

Privacy Policy

Effective Date: March, 2025

Last Updated: August, 2025

1. Introduction

VoCo Connect Pty Ltd (ABN: 87 688 761 015) ("VoCo", "we", "us", or "our") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and manage your personal information when you use our digital voucher management platform and related services.

This policy applies to all users of our platform, including merchants who create vouchers and customers who redeem them. By using our services, you consent to the collection and use of your information as described in this policy.

2. Information We Collect

2.1 Personal Information

We collect the following types of personal information:

  • Account Information: Name, email address, phone number, business name, and Australian Business Number (ABN) for merchant accounts
  • Contact Information: Email address and phone number for customer voucher redemption and notifications
  • Business Information: Company details, business address, payment information, and business verification documents
  • Transaction Data: Voucher creation, redemption history, billing information, and usage analytics
  • Profile Information: User preferences, merchant branding settings, and account customizations

2.2 Technical Information

  • Device Information: IP address, browser type, device type, and operating system
  • Usage Data: Pages visited, features used, time spent on platform, and interaction patterns
  • Cookies and Tracking: Session data, authentication tokens, and user preferences
  • Log Data: System logs, error reports, and security monitoring data

2.3 Third-Party Information

We may collect information from third-party services including the Australian Business Register (ABR) for ABN verification, payment processors for subscription management, and cloud service providers for platform operations.

3. How We Use Your Information

We use your personal information for the following purposes:

3.1 Service Provision

  • Creating and managing your account
  • Processing voucher creation, distribution, and redemption
  • Facilitating merchant-customer transactions
  • Providing customer support and responding to inquiries
  • Processing payments and managing subscriptions

3.2 Business Operations

  • Verifying business credentials through ABN lookup services
  • Preventing fraud and ensuring platform security
  • Generating analytics and usage reports for merchants
  • Improving our services and developing new features
  • Complying with legal and regulatory requirements

3.3 Communications

  • Sending transactional notifications about voucher activities
  • Providing account updates and security alerts
  • Sharing important service announcements
  • Delivering marketing communications (with your consent)

4. How We Share Your Information

We may share your personal information in the following circumstances:

4.1 Service Providers

We work with trusted third-party service providers who assist us in operating our platform, including:

  • Cloud hosting and infrastructure providers (Digital Ocean)
  • Payment processing services (GoCardless)
  • Email service providers for transactional communications
  • Analytics and monitoring services
  • Customer support tools

4.2 Business Partners

  • Australian Business Register for ABN verification services
  • Apple and Google for mobile wallet integration
  • Integration partners for enhanced platform functionality

4.3 Legal Requirements

We may disclose your information if required by law, legal process, or to protect our rights, users, or the public from harm.

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections.

5. Data Security

We implement comprehensive security measures to protect your personal information:

  • Encryption: All data is encrypted in transit and at rest using industry-standard protocols
  • Access Controls: Strict role-based access controls and authentication requirements
  • Monitoring: Continuous security monitoring and threat detection systems
  • Infrastructure: Secure cloud infrastructure with regular security audits
  • Staff Training: Regular security training for all team members
  • Incident Response: Established procedures for handling security incidents

While we take extensive precautions, no method of transmission over the Internet is 100% secure. We encourage users to protect their account credentials and report any suspicious activity immediately.

6. Data Retention

We retain your personal information for as long as necessary to provide our services and comply with legal obligations:

  • Account Data: Retained while your account is active and for 7 years after closure for business records
  • Transaction Records: Kept for 7 years as required by Australian tax and business laws
  • Usage Logs: Typically retained for 2 years for security and analytics purposes
  • Marketing Data: Retained until you withdraw consent or for 3 years of inactivity

After the retention period expires, we securely delete or anonymize your personal information unless longer retention is required by law.

7. Your Privacy Rights

Under Australian privacy law, you have the following rights regarding your personal information:

7.1 Access and Correction

  • Request access to the personal information we hold about you
  • Request correction of inaccurate or incomplete information
  • Update your account information through your user dashboard

7.2 Consent Management

  • Withdraw consent for marketing communications at any time
  • Opt out of non-essential data collection where technically feasible
  • Request deletion of your account and associated data

7.3 Complaints

If you believe we have not handled your personal information in accordance with privacy laws, you can:

  • Contact our Privacy Officer directly using the details below
  • Lodge a complaint with the Australian Privacy Commissioner

7.4 Exercising Your Rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days and may require verification of your identity.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

8.1 Types of Cookies

  • Essential Cookies: Required for platform functionality, authentication, and security
  • Performance Cookies: Help us understand how users interact with our platform
  • Preference Cookies: Remember your settings and customizations
  • Analytics Cookies: Provide insights into platform usage and performance

8.2 Cookie Management

You can control cookies through your browser settings. Note that disabling essential cookies may impact platform functionality. We do not use cookies for third-party advertising or cross-site tracking.

9. International Data Transfers

Our primary data processing occurs within Australia. However, some of our service providers may process data internationally:

  • Cloud hosting services with data centers in Singapore and the United States
  • Payment processing through providers with global operations
  • Support services that may involve international teams

We ensure all international transfers comply with Australian privacy law and include appropriate safeguards to protect your information.

10. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, technology, or legal requirements. When we make significant changes, we will:

  • Notify you via email or platform notification
  • Update the "Last Updated" date at the top of this policy
  • Provide a summary of key changes where appropriate
  • Obtain new consent where required by law

We encourage you to review this policy periodically to stay informed about how we protect your information.

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Privacy Officer

Company: VoCo Connect Pty Ltd

ABN: 87 688 761 015

Email: [email protected]

General Support: [email protected]

Website: https://voco.net.au

We aim to respond to all privacy inquiries within 30 days. For urgent security concerns, please contact us immediately.

12. Compliance with Australian Privacy Principles

This Privacy Policy is designed to comply with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth). We are committed to:

  • Transparent and fair handling of personal information
  • Collecting only information necessary for our business purposes
  • Implementing reasonable security measures
  • Providing access to and correction of personal information
  • Responsible disclosure and use of personal information

For more information about privacy rights in Australia, visit the Office of the Australian Information Commissioner (OAIC) website at www.oaic.gov.au.