Privacy policy

Effective Date: 06 April 2025
RedFlag ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you use our platform, in accordance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and relevant data protection laws.
If you do not agree with the terms of this Privacy Policy, please do not use the app or services.
1. What We Collect
We collect personal and sensitive information strictly necessary for providing our services, including:
  • Text content and screenshots you upload for AI analysis.
  • Metadata such as timestamps, browser type, and device identifiers.
  • Non-identifiable usage statistics (e.g., page views, session length).
  • Optional user-provided information (e.g., feedback, contact details if reaching out for help or partnerships).
We do not knowingly collect information from users under 16 without parental or guardian consent.
2. Use of AI and Sensitive Data
RedFlag uses AI-powered tools to detect signs of coercive control and abuse based on uploaded text and images.
We do not:
  • Use your data to train public AI models.
  • Sell, share, or license your data to third parties for marketing or commercial gain.
We do:
  • Process data using secure, private AI models hosted on Australian-based or GDPR-compliant infrastructure.
  • Automatically anonymise or de-identify data before AI processing where technically feasible.
  • Apply internal safeguards against algorithmic bias or harm through regular audits and human oversight.
All sensitive content is handled with the highest level of confidentiality.
3. How We Use Your Information
We use your information to:
  • Provide tailored insights and educational support.
  • Improve the safety and accuracy of our services.
  • Conduct de-identified analytics to improve product performance.
  • Comply with legal and ethical obligations.
You will not receive any unsolicited marketing.
4. Data Storage and Security
We store your data securely in compliance with:
  • The Privacy Act 1988 (Cth)
  • Australian Signals Directorate (ASD) Essential Eight baseline controls
  • ISO 27001-aligned policies where applicable
Key Security Practices:
  • Data encryption at rest and in transit.
  • Role-based access control (RBAC) and strict internal access logging.
  • Auto-deletion of uploaded content after [e.g. 7 days], unless otherwise consented.
If we use third-party cloud providers, we ensure they meet Australian Government hosting requirements or GDPR-equivalent standards.
5. Disclosure of Personal Information
We may disclose personal information:
  • If legally required (e.g., court orders or imminent threats of serious harm).
  • To trusted service providers under strict confidentiality agreements.
  • To partners only with explicit user consent and data anonymisation.
We will never share your information without a lawful basis or without your consent.
6. Your Rights
You have the right to:
  • Access or request a copy of your personal data.
  • Correct inaccurate personal information.
  • Withdraw consent at any time.
  • Request deletion of your data (unless retention is required by law).
  • Make a complaint with the Office of the Australian Information Commissioner (OAIC).
To exercise these rights, contact: privacy@redflagapp.au
7. International Users
Our services are designed for use in Australia. If you are located outside Australia, please be aware your data may be transferred to and processed in Australia, subject to Australian privacy laws.
8. Data Breaches
In the unlikely event of a data breach that may result in serious harm, we will:
  • Notify affected users as soon as practicable.
  • Notify the OAIC under the Notifiable Data Breaches (NDB) scheme.
  • Take immediate remedial actions to mitigate risks.
9. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will:
  • Publish the revised version on our website and app.
  • Clearly indicate the revision date.
  • Notify users of any material changes via email or in-app alerts.
10. Contact Us
If you have questions, concerns, or feedback about your privacy or this policy, contact:
Email: hello@redflag.community