1. About This Policy
This Privacy Policy explains how Crashify ("we", "us", "our") collects, uses, discloses, and protects personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
Contact Details:
Crashify ABN: 82676363116
Address: 81-83 Campbell St, Surry Hills NSW 2010, Australia
Email: info@crashify.com.au
Phone: 0426 000 910
We are committed to protecting your privacy and handling your personal information in a responsible manner.
2. What Personal Information We Collect
Contact Information:
Full name, email address, mobile phone number, business/home address (for onsite assessments)
Vehicle Information:
Vehicle registration number, VIN, make, model, year, and photos (which may incidentally contain faces, other license plates, or location information)
Insurance Information:
Insurance company name, policy number or claim reference, insurance value type, insurance amount, claim details and incident information
Assessment Information:
Date and location of incident, description of damage, repairer details, assessment reports and recommendations, communication records
We do not intentionally collect sensitive information unless necessary for the assessment and with your consent.
3. How We Collect Personal Information
Directly From You:
Through our website at crashify.com.au, via email, by telephone, through SMS communications, and from photos you submit for assessment
From Third Parties:
From insurance companies who engage our services, from repairers or panel beaters (with your consent), from your representatives (with appropriate authority)
4. Why We Collect Personal Information
We collect personal information for the following primary purposes:
To conduct vehicle damage assessments, provide reports to insurance companies, coordinate onsite inspections, communicate with you about your assessment, process and fulfill our contractual obligations, maintain business records, comply with legal obligations, and improve our services.
We will not use or disclose personal information for purposes other than those for which it was collected unless you consent or we are required or authorized by law.
5. How We Use Your Personal Information
Assessment Services:
Analyze vehicle damage using AI-powered technology, generate assessment reports, coordinate onsite inspections, communicate assessment results, provide professional opinions on repair vs. replacement
Business Operations:
Maintain assessment records, process payments and invoicing, comply with legal requirements, respond to inquiries and complaints, improve our services and technology
Communications:
Send confirmation emails, SMS notifications for appointments, assessment updates and reports, appointment reminders, responses to your questions
We do not use your personal information for direct marketing purposes unless you have consented to receive such communications.
6. Disclosure of Personal Information
We may disclose your personal information to:
Insurance Companies: The insurer or insurance company that engaged our services and related entities as directed
Service Providers: IT service providers, AI technology providers, SMS and email services, cloud hosting providers, payment processors
Repairers: Panel beaters or repair shops (only for onsite assessment coordination and with your knowledge)
Professional Advisors: Legal, accounting, or other professional advisors when necessary
Law Enforcement/Regulators: Government agencies when required or authorized by law
We do not sell, rent, or trade your personal information to third parties for their marketing purposes.
7. Overseas Disclosure of Personal Information
⚠️ IMPORTANT:
Your personal information may be disclosed to, or stored on servers located in, countries outside of Australia.
Countries Your Data May Be Sent To:
United States (AI processing, SMS services, cloud storage), European Union (workflow automation services), and other countries where our cloud service providers operate
Specific Overseas Recipients:
- • Anthropic Inc. (United States) - AI-powered photo analysis
- • Google LLC (United States/Global) - email and file storage
- • Make.com (Czech Republic/EU) - workflow automation
- • Twilio Inc. (United States) - SMS services
- • Vercel Inc. (United States/Global) - website hosting
Privacy Protections:
We take reasonable steps to ensure overseas recipients handle your personal information in a manner consistent with the APPs, including using service providers with strong privacy policies, entering into contracts requiring privacy protection, and implementing technical security measures.
Understanding Your Consent:
By providing your personal information to us, you consent to the disclosure of your information to these overseas recipients. You acknowledge that Australian Privacy Principle 8.1 will not apply to such disclosures and you may not be able to seek redress under the Privacy Act or in the overseas jurisdiction. You have the right to refuse consent to overseas disclosure, but this may prevent us from providing our services to you.
8. Data Security
We take reasonable steps to protect personal information from misuse, interference, loss, unauthorized access, modification, or disclosure.
Security Measures Include:
Password-protected systems with two-factor authentication, encryption of data in transit (TLS/SSL), restricted access to personal information, secure cloud storage with reputable providers, regular security updates and monitoring, staff training on privacy obligations, and secure deletion procedures
No method of electronic transmission or storage is 100% secure. While we implement reasonable security measures, we cannot guarantee absolute security.
9. Data Quality and Accuracy
We take reasonable steps to ensure personal information we collect, use, or disclose is accurate, complete, and up-to-date.
You can help by providing accurate information when submitting assessments, notifying us promptly of any changes to your details, and reviewing information we send you for accuracy.
If you believe any information we hold about you is inaccurate, incomplete, or out of date, please contact us and we will take reasonable steps to correct it.
10. Data Retention
We retain personal information for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention period is required or permitted by law.
Retention Periods:
- • Assessment records: 7 years from assessment date
- • Photos: 7 years from assessment date
- • Email communications: 7 years from date sent
- • SMS records: 1 year from date sent
- • Financial records: 7 years (Australian tax law requirement)
The 7-year retention period is required by Australian Taxation Office record-keeping requirements and because insurance claims may be disputed for many years.
11. Access to Your Personal Information
Under APP 12, you have the right to request access to personal information we hold about you.
To Request Access:
- 1. Email info@crashify.com.au with subject "Privacy Access Request"
- 2. Provide sufficient details to identify you (name, assessment number, date)
- 3. Specify what information you wish to access
We will respond to your request within 30 days.
We do not charge for making an access request, but may charge a reasonable fee for the cost of providing access to large volumes of information. We will advise you of any fees before processing your request.
12. Correction of Personal Information
Under APP 13, you have the right to request correction of personal information we hold about you if it is inaccurate, out of date, incomplete, irrelevant, or misleading.
To Request Correction:
- 1. Email info@crashify.com.au with subject "Privacy Correction Request"
- 2. Specify what information is incorrect
- 3. Provide correct information
We will respond within 30 days and take reasonable steps to correct the information.
13. Deletion of Personal Information
You may request deletion of your personal information, subject to legal retention requirements.
To request deletion, email info@crashify.com.au with subject "Privacy Deletion Request"
Understanding Deletion Limitations:
- • We must retain records for 7 years under Australian tax law
- • Insurance claims may require records for future disputes
- • We cannot delete information already provided to insurers
- • Some information may be retained in de-identified form
14. Electronic Communications (Email & SMS)
By providing your email address and/or mobile number, you consent to receive electronic communications from us related to your assessment, including email confirmations, assessment reports, SMS notifications for appointments, and SMS reminders.
Opt-Out Rights:
You can opt out of SMS notifications at any time by replying "STOP" to any SMS from us or emailing info@crashify.com.au requesting SMS opt-out. Note: We may still need to contact you via email or phone for essential assessment-related communications.
Our electronic communications comply with the Spam Act 2003. We do not send marketing communications unless you have opted in to receive them.
15. Cookies and Website Tracking
Our website (crashify.com.au) may use cookies and similar technologies to ensure website functionality, remember your preferences, and analyze website usage.
You can control cookies through your browser settings, though refusing cookies may affect website functionality.
16. Children's Privacy
Our services are not directed at children under 18. We do not knowingly collect personal information from children.
If you believe we have collected information from a child, please contact us immediately.
17. Notifiable Data Breaches
We have procedures in place to detect, respond to, and notify you of data breaches in accordance with the Notifiable Data Breaches (NDB) scheme.
If a data breach occurs that is likely to result in serious harm to you, we will notify the Office of the Australian Information Commissioner (OAIC) and affected individuals as soon as practicable, provide information about the breach and steps you can take, and take steps to remediate and prevent future breaches.
18. Complaints Process
If you believe we have breached the Privacy Act or APPs, you have the right to make a complaint.
Step 1 - Contact Us:
Email info@crashify.com.au with subject "Privacy Complaint" and include your contact details, details of the alleged breach, and any supporting information.
Step 2 - We Will Investigate:
We will acknowledge your complaint within 7 days, investigate thoroughly, and respond within 30 days with our findings.
Step 3 - If Not Satisfied:
Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)
- • Phone: 1300 363 992
- • Email: enquiries@oaic.gov.au
- • Website: www.oaic.gov.au
19. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.
When we update, we will update the "Last Updated" date at the top of this policy. For material changes, we will notify you via email or prominent notice on our website. The current version will always be available at crashify.com.au/privacy
Your continued use of our services after changes indicates your acceptance of the updated Privacy Policy.
20. Contact Information
For privacy-related inquiries, requests, or complaints:
Crashify Pty Ltd
ABN: 82676363116
Privacy Officer: Fady Tadros
Email: info@crashify.com.au
Phone: 0426 000 910
Address: 81-83 Campbell St, Surry Hills NSW 2010
We are committed to protecting your privacy and will respond to all inquiries promptly and professionally.
21. Acknowledgment
By using our services, you acknowledge that you have read, understood, and agree to this Privacy Policy, including:
- ✓ Collection of your personal information as described
- ✓ Use of your information for assessment purposes
- ✓ Disclosure to insurers and service providers
- ✓ Overseas transfer of information to US and EU
- ✓ AI-powered processing of your photos and data
- ✓ Electronic communications (email and SMS)
- ✓ 7-year retention of assessment records
If you do not agree, please do not use our services or provide your personal information to us.
