Privacy Policy

 Effective date: 1 January 2025 Last updated: 1 January 2025 Governed by Australian law (Privacy Act 1988)

This policy explains how CYM Solar, operating the Solar Tech website, collects, uses, and protects your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

1. Who we are

The data controller responsible for your personal data is:

• Company: CYM Solar
• Website: Solar Tech
• Address: 56b Brighton Rd, Glenelg East SA 5045
• Phone: 0421843440
• Email: [email protected]

When this policy refers to "we", "us", or "our", it means CYM Solar. When it refers to "you", it means any individual who visits our website or submits an enquiry through it.

2. Data we collect

We collect personal data only when you actively provide it to us, or when it is generated automatically by your use of our website.

Data you provide directly

• Full name
• Phone number
• Email address
• Property type (home, business, or other)
• Any information you include in a free-text message

Data collected automatically

• IP address and approximate geographic location
• Browser type and version
• Pages visited and time spent on each
• Referring URL (the page that brought you to our site)
• Device type and operating system

We do not collect special categories of personal data (e.g. health data, financial records) and do not knowingly collect data from individuals under the age of 16.

3. How we use your data

We use the personal data we collect for the following purposes:

• To respond to your quote request or enquiry
• To assess your energy situation and prepare a relevant recommendation
• To contact you by phone or email within one business day of your submission
• To improve the performance and content of our website
• To comply with legal obligations under Australian federal and state law

We do not use your data for automated decision-making or profiling that produces legal or similarly significant effects.

4. Grounds for collecting personal information

Under the Australian Privacy Principles, we collect personal information on the following grounds:

• Primary purpose: we collect information directly related to delivering the service you have requested — assessing your energy situation and providing a quote
• Legal obligation: compliance with applicable Australian tax, commercial, and consumer law
• Consent: for optional marketing communications, where you have explicitly opted in

Where we rely on your consent, you may withdraw it at any time. Withdrawal does not affect anything we have already done based on that consent.

We collect personal information only by lawful and fair means, and only where it is reasonably necessary for our functions and activities (APP 3).

5. Sharing your data

We do not sell your personal data. We do not share it with third parties for their own marketing purposes.

We may share your data with:

• Service providers: companies that help us operate our website and manage enquiries (e.g. email delivery, CRM platforms), bound by data processing agreements
• Legal authorities: where required by law, court order, or regulatory obligation
• Business successors: in the event of a merger, acquisition, or sale of our business, subject to equivalent privacy protections

Any third-party service providers we engage are required to handle your information in accordance with the Australian Privacy Act and to implement appropriate security measures.

6. How long we keep your data

We retain personal data only for as long as necessary to fulfil the purpose for which it was collected:

• Enquiry and quote data: up to 3 years from the date of last contact, or as required by applicable law
• Customer records (if a project proceeds): up to 7 years in line with Australian taxation and commercial record-keeping requirements
• Website analytics data: up to 13 months in aggregated or anonymised form

After these periods, data is securely deleted or anonymised.

7. Your rights under the Privacy Act

Under the Privacy Act 1988 (Cth) and the Australian Privacy Principles, you have the following rights:

• Right of access : request access to the personal information we hold about you
• Right to correction: request correction of personal information that is inaccurate, out of date, incomplete, irrelevant, or misleading
• Right to anonymity: where practicable, you may deal with us anonymously or under a pseudonym
• Right to opt out of direct marketing:you may request at any time that we stop using your information for direct marketing
• Right to complain: you may lodge a complaint with us or directly with the OAIC

8. Cookies

Our website uses cookies — small text files stored on your device — to help the site function and to understand how visitors use it.

Essential cookies

Required for the website to operate. They cannot be disabled. No personal data is stored in these cookies beyond what is technically necessary.

Analytics cookies

Used to understand aggregate traffic patterns and improve the website. These cookies do not identify you personally. You may opt out via your browser settings or a cookie management tool.

We do not use advertising or tracking cookies. You can control cookie settings through your browser preferences at any time.

9. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure. These include:

• Encrypted data transmission (TLS/HTTPS)
• Access controls limiting data to authorised personnel only
• Regular review of data handling practices

No internet transmission is completely secure. In the event of an eligible data breach under the Notifiable Data Breaches (NDB) scheme, we will notify the OAIC and affected individuals as required by law.

10. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or website functionality. When we make material changes, we will update the "Last updated" date at the top of this page.

We encourage you to review this policy periodically. Continued use of the website after an update constitutes acceptance of the revised policy.

11. Contact & data protection enquiries

For any questions about this policy, to exercise your rights, or to raise a concern about how we handle your data, please contact us:

• Company: CYM Solar
• Website: Solar Tech
• Address: 56b Brighton Rd, Glenelg East SA 5045
• Phone: 0421843440
• Email: [email protected]