Privacy Policy

Payment Processing: To match incoming bank payments with payment intents using our Watcher Engine.

Mandate Management: To enable frictionless "Tap & Go" payments for trusted merchants using hashed identifiers.

Account Management: To provide merchants access to their dashboard, analytics, and settings.

Service Notifications: To send payment confirmations, webhook deliveries, and important service updates.

Security: To detect and prevent fraud, abuse, or unauthorized access.

Payment Intents: Pending intents expire after 15 minutes. Completed transaction records are retained for 90 days for merchant analytics, then purged.

Mandate Data: Customer mandates can be revoked at any time. Inactive mandates are automatically purged after 12 months.

Merchant Accounts: Account data is retained while the account is active. Upon account closure, data is deleted within 30 days, except as required for legal compliance.

Webhook Logs: Delivery logs are retained for 30 days for debugging purposes.

We implement industry-standard security measures including:

• TLS 1.3 encryption for all data in transit
• AES-256 encryption for sensitive data at rest
• HMAC-SHA256 signed webhooks for integrity verification
• Bcrypt hashing for all passwords
• Rate limiting and DDoS protection
• Regular security audits and penetration testing

We do NOT sell your data. We may share information only in the following circumstances:

• Service Providers: Trusted infrastructure providers for hosting, security, and analytics (under strict confidentiality agreements)
• Legal Requirements: When required by Australian law, court order, or regulatory authority
• Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to affected users)

Austipay acts as a stateless instruction layer. This means:

• We do not store customer PayIDs, bank account numbers, or banking credentials
• We do not store Personally Identifiable Information (PII) of consumers making payments
• Payment instructions are generated on-demand and not persisted after transaction completion
• We match transactions using references only, not account details

The Watcher Engine observes transaction confirmations without accessing or storing underlying bank account information.

Consumer Data Right (CDR) Scope:

The Austipay Watcher Engine requires "Read-Only" bank feed access for transaction matching. This access is strictly limited to:

Consent Management:

• CDR consent is provided through your banking institution's secure consent flow
• Consent can be revoked at any time via your bank's CDR management portal
• Upon revocation, all associated data is purged within 24 hours
• Austipay complies with all Consumer Data Right rules and ACCC guidelines

Under Australian Privacy Principles, you have the right to:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal retention requirements)
• Complaint: Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)

We use minimal, essential cookies for:

• Authentication and session management
• Security and fraud prevention
• Basic analytics to improve our service (no personal tracking)

We do not use third-party advertising cookies or cross-site tracking.

For privacy inquiries, data requests, or complaints: