top of page

Privacy Policy

Privacy Policy

Effective Date: 27.09.2025
Last Updated: 27.09.2025

1. Introduction

Small Solution Org (“we”, “us”, “our”) respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

We provide risk management, compliance, audit, and governance consulting services to small businesses, not-for-profit organisations, and arts enterprises across Australia and internationally.

By using our services or visiting our website, you consent to the collection and use of your personal information as described in this policy.

 

2. What Information We Collect

We may collect personal and business information that is reasonably necessary to deliver our services effectively. This may include:

Personal Information

  • Name, address, email, and phone number
     

  • Position or job title
     

  • Identification details (if required for verification or compliance)
     

Business Information

  • Business name and ABN/ACN
     

  • Financial information (as relevant to audits or reviews)
     

  • Risk management and compliance documentation
     

  • Operational data required for consulting purposes
     

Sensitive Information

We generally do not collect sensitive information (such as racial or ethnic origin, political opinions, or health data). Where sensitive information is required, we will only collect it with your consent and for purposes directly related to our services.

 

3. How We Collect Information

We may collect personal and business information through:

  • Direct communication (email, phone, online forms, meetings)
     

  • Client onboarding forms or engagement letters
     

  • Website enquiries or subscription forms
     

  • Third parties (with your consent), such as your accountant, legal advisor, or funding body
     

We take all reasonable steps to ensure that your personal information is collected fairly, lawfully, and securely.

 

4. Why We Collect Information

We collect personal and business information to:

  • Provide risk management, compliance, and audit consulting services
     

  • Develop and implement tailored frameworks, reviews, and policies
     

  • Communicate with you about projects, reports, and updates
     

  • Manage billing, payments, and administrative processes
     

  • Meet legal, regulatory, and contractual obligations
     

We will not use your information for any purpose other than that for which it was collected unless you have consented or it is required by law.

 

5. Disclosure of Information

We may disclose your personal or business information to:

  • Our professional advisers (e.g., legal, accounting, IT)
     

  • Regulatory bodies (if required by law)
     

  • Contractors or consultants engaged to deliver specific services (bound by confidentiality)
     

We will never sell or trade your personal information to third parties.

 

6. Storage and Security

Your information may be stored electronically and/or in hard copy. We take reasonable steps to protect it from misuse, interference, loss, unauthorised access, modification, or disclosure.

Security measures include:

  • Password-protected systems and devices
     

  • Encrypted cloud storage
     

  • Limited staff access based on role and necessity
     

  • Secure disposal of outdated records
     

 

7. Overseas Disclosure

As part of our operations, your data may be stored or processed using secure cloud-based services with servers located overseas. We ensure that any third-party provider meets comparable privacy and security standards.

 

8. Access and Correction

You may request access to your personal information or ask for corrections if you believe it is inaccurate, out-of-date, or incomplete.

To make a request, please contact us (see Section 11). We will respond within a reasonable timeframe and, where possible, provide access in your preferred format.

 

9. Website and Cookies

Our website may use cookies and analytics tools (such as Google Analytics) to improve your browsing experience and understand website usage patterns. You can disable cookies in your browser settings if you prefer.

Our website may contain links to third-party sites. We are not responsible for the privacy practices of those websites.

 

10. Complaints

If you believe we have breached the Australian Privacy Principles, you can lodge a complaint by contacting us (see Section 11). We take all complaints seriously and will investigate promptly.

If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC) via www.oaic.gov.au.

 

11. Contact Us

If you have any questions, requests, or complaints regarding this Privacy Policy or our data practices, please contact:

Privacy Officer
[Your Name / Business Name]
Email: [Your Email Address]
Phone: [Your Phone Number]
Postal Address: [Your Business Address]

 

12. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in legislation or our business practices. The updated version will be posted on our website with the effective date.

bottom of page