Privacy Policy

1. Our Commitment

AndCap is committed to protecting your personal information. We comply with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

2. What We Collect

Name and email on signup; financial information you choose to enter; payment information (processed via Stripe — we do not store card details); basic usage data.

3. How We Use Your Information

Solely to provide and improve our services, process payments, send account communications, and comply with Australian law. We do not sell your personal information — ever.

4. How We Share Your Information

Service providers only: Supabase (database/auth), Stripe (payments), Netlify (hosting). We may disclose information if required by law. No other third parties.

5. Data Security

Your data is stored on Supabase's infrastructure using AES-256 encryption at rest and TLS in transit. No other user can access your data.

6. Your Rights

You have the right to access, correct, delete, and export your data. Contact info@andcap.com.au — we respond within 30 days.

7. Data Breach Notification

In the event of a breach likely to cause serious harm, we will notify you and the OAIC per the Notifiable Data Breaches scheme.

8. Complaints

Contact us first at info@andcap.com.au. If unsatisfied: oaic.gov.au · 1300 363 992.

9. Contact

AndCap · info@andcap.com.au · andcap.com.au