Privacy Policy

Solodesk (“we”, “us”) is the provider of the Solodesk software product described at solodesk.com.au. We operate under Australian Privacy Principles set out in the Privacy Act 1988 (Cth).

We use what you provide to deliver the product: generate compliance documents, store your shifts and invoices, send transactional emails (trial warnings, password resets, receipts), and respond to support requests. We do not sell your data.

Application data is stored in Australia where practical. Authentication and session storage may use providers operating in or outside Australia (current providers documented below). When you cancel your account, your data is held for 30 days then permanently deleted.

We use the following providers to operate Solodesk. Each is bound by their own privacy obligations.

• Vercel — application hosting (US/AU edge regions)
• Railway — application database (region selectable, AU available)
• Stripe — payment processing (does not receive pack content)
• Resend — transactional email
• Anthropic (added when AI progress notes launch) — AI processing of shift descriptions you choose to convert. Only the text you submit for note generation is sent.

You can access, correct, or delete your data at any time by signing in and using the app, or by emailing privacy@solodesk.com.au. You can complain to the Office of the Australian Information Commissioner (oaic.gov.au) if you believe we have breached the Australian Privacy Principles.

Information about NDIS participants is sensitive. We protect it with industry-standard encryption-at-rest, encryption-in-transit, and strict access controls. We do not share participant information with anyone other than the subprocessors above strictly to operate the product.

We may update this Privacy Policy. Material changes will be notified at least 14 days in advance. Continued use after the effective date constitutes acceptance.