Privacy Policy

WEBFAST

Privacy Policy

WEBFAST PTY LIMITED   ABN 14 169 229 985

AT A GLANCE

This Privacy Policy explains how WEBFAST PTY LIMITED collects, uses, discloses, stores and protects personal information.

WEBFAST handles personal information in accordance with the Privacy Act 1988 (Cth), as amended (including by the Privacy and Other Legislation Amendment Act 2024 (Cth)), the Australian Privacy Principles (APPs), the Spam Act 2003 (Cth) and other applicable Australian laws.

If you are a Customer who runs a website on WEBFAST hosting, your end-users’ personal information remains under your control – see Section 19.

WEBFAST PTY LIMITED (ABN-registered, NSW, Australia) (“WEBFAST”, “we”, “us”, “our”) respects the privacy of the individuals it deals with. This Privacy Policy is our principal document under Australian Privacy Principle 1 (“APP 1”) and applies to all personal information that WEBFAST collects, holds, uses or discloses. It should be read together with the WEBFAST Terms of Service and Acceptable Use Policy.

CONTENTS

  1. Introduction & Scope
  2. Definitions
  3. Australian Privacy Principles & Legal Framework
  4. Personal Information We Collect
  5. Sensitive Information
  6. How We Collect Personal Information
  7. Why We Collect, Hold, Use & Disclose Personal Information
  8. Disclosure of Personal Information
  9. Cross-Border (Overseas) Disclosure – APP 8
  10. Direct Marketing & Spam Act 2003
  11. Cookies, Analytics & Online Tracking
  12. Data Security
  13. Notifiable Data Breaches Scheme
  14. Data Retention & Deletion
  15. Substantially Automated Decision-Making
  16. Children’s Online Privacy
  17. Anonymity & Pseudonymity
  18. Access, Correction & Other Individual Rights
  19. Hosting, Reseller & Agency Customers – Your End-Users’ Data
  20. Serious Invasions of Privacy & Doxxing
  21. Complaints
  22. Contact – Privacy Officer
  23. Changes to This Privacy Policy

1. INTRODUCTION & SCOPE

1.1 Our commitment – WEBFAST is committed to protecting the privacy of every individual whose personal information we handle. We treat privacy compliance as a core business obligation, not a tick-box exercise.

1.2 Who this policy applies to – This policy applies to all individuals whose personal information we collect in the course of running our business, including visitors to webfast.au, prospects, customers, end-users of customers’ websites (where we host that data on the customer’s behalf), resellers, sub-account holders, affiliates, suppliers, job candidates, referees and visitors to our premises.

1.3 What this policy covers – This policy covers how we collect, hold, use, disclose, store, protect, retain and dispose of personal information. It also explains the rights you have in relation to your personal information and how you can contact us.

1.4 What this policy does not cover – This policy does not apply to acts and practices in relation to employee records that are directly related to a current or former employment relationship, where the Privacy Act employee records exemption applies. We still treat employee records with care and in accordance with separate internal HR confidentiality standards. This policy also does not govern personal information collected by Customers through their own websites hosted with WEBFAST – see Section 19.

2. DEFINITIONS

2.1 Personal information – Information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether the information or opinion is true or not, and whether recorded in a material form or not.

2.2 Sensitive information – A sub-set of personal information that includes information or opinion about racial or ethnic origin, political opinions or membership, religious beliefs, philosophical beliefs, trade union membership, sexual orientation or practices, criminal record, health information, genetic information and biometric information.

2.3 APPs – The 13 Australian Privacy Principles contained in Schedule 1 to the Privacy Act 1988 (Cth).

2.4 Privacy Act – The Privacy Act 1988 (Cth), as amended (including by the Privacy and Other Legislation Amendment Act 2024 (Cth)).

2.5 OAIC – The Office of the Australian Information Commissioner.

2.6 NDB Scheme – The Notifiable Data Breaches scheme under Part IIIC of the Privacy Act.

2.7 Customer – A person or organisation that has purchased a WEBFAST service. “Customer Data” means data the Customer stores, transmits or processes through a WEBFAST service, including personal information of the Customer’s own end-users.

3. AUSTRALIAN PRIVACY PRINCIPLES & LEGAL FRAMEWORK

3.1 Australian Privacy Principles – WEBFAST handles personal information in accordance with the 13 APPs, which regulate the collection, use, disclosure, quality, security, access and correction of personal information.

3.2 2024 Privacy reforms – WEBFAST has updated its practices to reflect the Privacy and Other Legislation Amendment Act 2024 (Cth), including the introduction of a statutory tort for serious invasions of privacy, new criminal offences for doxxing, enhanced OAIC enforcement powers, the Children’s Online Privacy Code framework, and the new obligation (commencing 10 December 2026) to disclose substantially automated decision-making in privacy policies.

3.3 Other relevant laws – Depending on the activity, we also comply with other Australian laws, including:

  • The Spam Act 2003 (Cth) – electronic marketing messages;
  • The Telecommunications Act 1997 (Cth) – telecommunications data and lawful access;
  • The Competition and Consumer Act 2010 (Cth) and the Australian Consumer Law – misleading or deceptive conduct relating to privacy claims;
  • The Notifiable Data Breaches scheme under Part IIIC of the Privacy Act;
  • The Criminal Code Act 1995 (Cth) – including the new doxxing offences;
  • Industry rules published by .au Domain Administration Limited (auDA) for domain registrant data.

4. PERSONAL INFORMATION WE COLLECT

4.1 Collection principle – We only collect personal information that is reasonably necessary for, or directly related to, one or more of our functions or activities. The type of information we collect depends on your relationship with us. The table below summarises the categories of individuals whose personal information we typically collect, and the main types of information collected for each.

 

Category of Individual

Information We Typically Collect

Primary Purpose

Visitor (Website)

IP address, device & browser type, pages visited, referring URL, session timestamps, cookie identifiers, analytics events, form submissions.

Operating and securing the website, analytics, troubleshooting, fraud prevention.

Prospect / Enquirer

Name, email, phone, business name, enquiry message, marketing preferences.

Responding to enquiries, sales follow-up, direct marketing (with consent).

Customer (Hosting / Domains)

Name, business name, ABN, billing address, email, phone, payment card token / direct debit details, hosting account credentials, domain WHOIS data, server access logs, support ticket content.

Provisioning and operating services, billing, support, fraud prevention, regulatory compliance.

Customer (Design / Marketing / Video)

Project briefs, brand assets, content materials, login credentials provided for the engagement, project communications, deliverables and approvals.

Delivering the engaged services, project communications, portfolio (only with consent).

End-User of a Hosted Website

Any personal information the Customer collects from their own end-users through a WEBFAST-hosted website (e.g. names, emails, orders).

Storing on behalf of the Customer; the Customer is the controller. See Section 19.

Reseller Sub-Account

Account name, contact details, reseller-set credentials, billing relationship via the Reseller.

Operating the reseller plan, billing, abuse monitoring, support escalation via the Reseller.

Affiliate / Referrer

Name, contact details, payment details for commissions, tax information where required.

Affiliate program administration and commission payment.

Supplier / Contractor

Name, contact details, business details, billing information, services provided.

Engaging suppliers, accounts payable, tax compliance.

Job Candidate

Name, contact details, resume, employment history, references, qualifications, right-to-work information.

Recruitment, assessment, on-boarding.

Referee

Name, contact details, current employment, professional opinion of candidate.

Verifying candidate suitability during recruitment.

Site Visitor (Premises)

CCTV recordings.

Premises security and safety.

 

4.2 Identifiers – Where you provide identifiers such as government-issued identifiers, ABN, ACN or business registration details, we collect and use these only where it is required or authorised by law (for example, ABN for tax invoicing).

4.3 Payment information – Payment card data is processed through PCI DSS-compliant third-party payment gateways. WEBFAST does not store full card numbers on its own systems; we hold only payment tokens, the last 4 digits, card type and expiry for billing reconciliation.

4.4 Domain WHOIS data – When you register or transfer a domain, certain registrant data is required by the relevant Domain Registrar and the policies of auDA, ICANN or the registry operator. Some of this data may be published in public WHOIS records in accordance with those policies. WEBFAST has no control over the publication and retention of WHOIS data by registries.

5. SENSITIVE INFORMATION

5.1 Limited collection – WEBFAST does not generally need to collect sensitive information about Customers, prospects or website visitors. Where it is necessary (for example, accessibility-related health information for a candidate during recruitment), we collect sensitive information only with your express consent and where the collection is reasonably necessary for our functions or activities, or otherwise permitted by the APPs.

5.2 Use & disclosure – Sensitive information will only be used or disclosed for the primary purpose it was collected, for a directly-related secondary purpose where you would reasonably expect it, with your consent, or as otherwise required or authorised by law.

6. HOW WE COLLECT PERSONAL INFORMATION

6.1 Direct collection – We collect personal information directly from you wherever it is reasonable and practicable to do so, including:

  • Through forms on the WEBFAST website (e.g. enquiry, sign-up, support);
  • Through the WEBFAST Members Portal during account creation, ordering and account management;
  • By email, phone (1300 883 582), live chat or in person;
  • Through transactions, invoices and support tickets;
  • Through CCTV at our premises (signage is displayed where CCTV is active).

6.2 Automated collection (website & infrastructure) – When you visit webfast.au or use a service, certain information is collected automatically by our infrastructure, including:

  • Server logs (IP address, request URL, user agent, timestamps);
  • Analytics events (page views, referring URL, device & browser information);
  • Security telemetry (firewall events, brute-force attempts, malware scan results);
  • Cookies and similar technologies (see Section 11).

6.3 From third parties – We may collect personal information from third parties where it is impracticable to collect directly from you, including:

  • Domain registries / registrars (for domain provisioning);
  • Payment gateways (for transaction verification);
  • Identity, fraud, AML/KYC and credit-check providers (only where reasonably necessary);
  • Marketing service providers and advertising platforms (subject to your consent);
  • Publicly available sources (e.g. professional directories, social media, ASIC company records);
  • Referees during recruitment;
  • Customers, where they engage us to deliver a service on their behalf (e.g. a referral lead, an employee delegated to manage the account).

6.4 Notification at collection (APP 5) – At or before the time we collect personal information from you (or as soon as practicable afterwards), we will take reasonable steps to notify you of, or otherwise make you aware of:

  • WEBFAST’s identity and contact details;
  • The fact and circumstances of collection (including whether collected from another source);
  • Whether the collection is required or authorised by Australian law;
  • The purposes for which we collect the information;
  • The main consequences if the information is not collected;
  • The third parties to which we usually disclose the information;
  • How you can access, correct or complain about your personal information; and
  • Whether we are likely to disclose the information overseas and, if so, the countries.

6.5 Unsolicited personal information – If we receive personal information that we did not solicit, we will, within a reasonable period, determine whether we could have collected it lawfully under the APPs. If not, and provided the information is not contained in a Commonwealth record or otherwise required to be retained by law, we will destroy or de-identify it.

7. WHY WE COLLECT, HOLD, USE & DISCLOSE PERSONAL INFORMATION

7.1 Primary purposes – We collect, hold, use and disclose personal information for the following primary purposes:

  • Providing and operating hosting, domain, design, ecommerce, marketing, SEO, video, content, security and related services;
  • Provisioning, billing and renewing services, including invoicing and payment processing;
  • Authentication and account management within the Members Portal;
  • Providing customer support, troubleshooting and incident response;
  • Network and platform security – fraud prevention, abuse detection, DDoS mitigation and malware monitoring;
  • Communicating about service changes, maintenance windows, security advisories and renewal reminders;
  • Recruitment and onboarding of staff;
  • Engaging and paying suppliers and contractors;
  • Premises security (CCTV); and
  • Meeting legal, tax, regulatory and audit obligations.

7.2 Secondary purposes – We may also use or disclose personal information for a secondary purpose where: (a) you have consented; (b) you would reasonably expect that use or disclosure and it is related (or, for sensitive information, directly related) to the primary purpose; or (c) the use or disclosure is required or authorised by Australian law or a court/tribunal order.

8. DISCLOSURE OF PERSONAL INFORMATION

8.1 Who we share personal information with – We may disclose personal information to:

  • Our employees, contractors and related entities who need it to perform their role;
  • Service providers acting on our behalf (e.g. data centres, payment gateways, email delivery, accounting, customer support tooling, security vendors);
  • Domain registries, registrars and auDA (for domain registration / transfer / renewal);
  • Advertising and analytics partners (only where we have a lawful basis, and only as described in Section 11);
  • Professional advisers (lawyers, accountants, auditors, insurers);
  • Law enforcement, regulators and other government agencies where required or authorised by law;
  • Any other party with your express consent;
  • Any purchaser, or proposed purchaser, of any part of our business (subject to confidentiality).

8.2 Service-provider safeguards – Before disclosing personal information to a service provider or contracted third party, we take reasonable steps to ensure the recipient is bound by contractual obligations consistent with the APPs.

8.3 No sale of personal information – WEBFAST does not sell personal information.

9. CROSS-BORDER (OVERSEAS) DISCLOSURE – APP 8

9.1 When this applies – Most of our processing happens in Australia. However, some of our service providers (for example, global CDN, anti-DDoS, email delivery, analytics and advertising platforms) operate infrastructure outside Australia, which may include the United States, the European Union, the United Kingdom, Canada, Singapore and other jurisdictions.

9.2 APP 8 reasonable steps – Before disclosing personal information to an overseas recipient, we take reasonable steps to ensure the recipient does not breach the APPs, including by entering into contracts that require the recipient to handle personal information consistent with the APPs.

9.3 Customer-directed transfers – Where you instruct us to host or transmit data via overseas infrastructure (e.g. configuring an overseas CDN edge or third-party email provider), that disclosure is made on your direction and may not be subject to the same APP 8 reasonable-steps obligation. You remain responsible for any such cross-border transfer you direct.

10. DIRECT MARKETING & SPAM ACT 2003

10.1 When we send marketing – We may send you direct marketing messages (email, SMS, phone or post) about WEBFAST products, services, offers and events where: (a) you are an existing customer and the marketing is related to services we provide to you and you would reasonably expect such communications; or (b) you have given us consent (express or inferred) to receive marketing communications.

10.2 Spam Act compliance – All commercial electronic messages sent by WEBFAST comply with the Spam Act 2003 (Cth). Every commercial electronic message will: (a) clearly identify WEBFAST as the sender; (b) include accurate sender contact information; and (c) provide a functional unsubscribe facility.

10.3 Opting out – You can opt out of direct marketing at any time by: (a) clicking the unsubscribe link in any marketing email; (b) replying STOP to any marketing SMS; (c) contacting the Privacy Officer in writing (see Section 22). We will process opt-out requests promptly and at no cost to you.

10.4 Sensitive information & marketing – We do not use sensitive information for direct marketing without your express consent.

11. COOKIES, ANALYTICS & ONLINE TRACKING

11.1 What are cookies – Cookies are small data files placed on your device when you visit a website. We also use similar technologies (such as pixels, local storage and SDKs). Some are essential for the website to function; others help us improve the website or measure marketing performance.

 

Cookie Type

What It Does

Can You Opt Out?

Strictly necessary

Required for the website to function (login, security, load balancing). These cannot be turned off.

No – required for the site.

Functional

Remembers preferences such as language, region, recently viewed plans.

Yes – via browser settings.

Analytics

Helps us understand how visitors use the website (e.g. Google Analytics) so we can improve content and speed.

Yes – via the cookie banner or browser settings.

Advertising / remarketing

Used by advertising networks (e.g. Google Ads, Meta) to deliver and measure ads. Set only with consent.

Yes – via the cookie banner. You can also opt out at the network level.

 

11.2 Consent – Where required by law, non-essential cookies (analytics, advertising) are only set after you have given consent through the cookie banner. You can change your cookie choices at any time through the cookie preference centre on the website or by clearing cookies in your browser.

11.3 Analytics & advertising partners – We currently use providers such as Google Analytics, Google Ads, Meta and LinkedIn for analytics and advertising. These providers may set their own cookies and act as separate data controllers for the information they collect. You can opt out of personalised advertising at the network level (for example, via Google’s Ads Settings and Meta’s Ad Preferences).

11.4 Do Not Track – Our website does not currently respond to “Do Not Track” browser signals; you can control tracking through our cookie banner instead.

12. DATA SECURITY

12.1 Security program – We take reasonable steps to protect the personal information we hold from misuse, interference, loss, and unauthorised access, modification or disclosure. Our security program includes:

  • Encryption in transit (TLS/HTTPS) for the Members Portal, hosted control panels and websites with SSL;
  • Encryption at rest for sensitive system credentials and payment tokens;
  • Role-based access controls and least-privilege principles for staff access;
  • Multi-factor authentication for administrative systems;
  • Network firewalls, intrusion detection, brute-force protection and DDoS mitigation;
  • Regular patching of operating systems and applications;
  • Off-server backups and disaster-recovery procedures;
  • Vendor risk reviews for material service providers; and
  • Staff training on privacy and security obligations.

12.2 Customer responsibilities – No system is perfectly secure. Customers must keep account passwords confidential, use strong unique passwords, enable multi-factor authentication where available, keep installed web applications patched and up to date, and notify us immediately if they suspect any unauthorised access.

13. NOTIFIABLE DATA BREACHES SCHEME

ELIGIBLE DATA BREACH NOTIFICATION

If WEBFAST experiences a data breach that is likely to result in serious harm to one or more individuals (an “Eligible Data Breach” under Part IIIC of the Privacy Act), we will notify the affected individuals and the Office of the Australian Information Commissioner (OAIC) as soon as practicable, in accordance with the NDB Scheme.

13.1 Assessment – Where we have reasonable grounds to suspect that an Eligible Data Breach may have occurred, we will carry out a reasonable and expeditious assessment within 30 days (or sooner where practicable).

13.2 Notification content – Where notification is required, we will include in the notification: a description of the breach, the kinds of information involved, and the steps individuals can take to reduce the risk of harm.

13.3 Customer-side breaches – Where a breach affects personal information that a Customer stores on a WEBFAST service but the Customer (not WEBFAST) is the entity that owes the notification obligation, we will provide reasonable assistance and notify the Customer as soon as practicable so the Customer can comply with its own NDB obligations.

14. DATA RETENTION & DELETION

14.1 Retention principle – We retain personal information only for as long as we need it for the purposes set out in this Privacy Policy, or for as long as we are required or authorised to retain it by law.

14.2 Hosting account & website data – Hosting account data, websites and Website Backup Files are retained in accordance with Section 6 of the WEBFAST Terms of Service. In particular, where a Web Hosting service is cancelled or unpaid and the Customer had a Website live online before termination, the Customer has 30 days to accept the Website Backup Files, after which those files are permanently deleted.

14.3 Billing records – We retain billing, tax and accounting records for at least 7 years to comply with Australian tax and corporate record-keeping obligations.

14.4 Marketing data – We retain marketing contact data while you remain subscribed, and for a reasonable period afterwards to honour opt-out requests and demonstrate compliance.

14.5 Other data – Once personal information is no longer needed and is not required to be retained by law, we take reasonable steps to destroy or de-identify it.

15. SUBSTANTIALLY AUTOMATED DECISION-MAKING

15.1 Our position – From 10 December 2026, organisations that use substantially automated decisions which significantly affect individuals must disclose that fact in their privacy policy.

15.2 Use at WEBFAST – WEBFAST uses substantially automated processes for limited purposes, including:

  • Automated fraud and abuse detection at sign-up and during transactions (e.g. risk scoring of new orders);
  • Automated network-security responses (e.g. blocking IP addresses showing brute-force or DDoS patterns);
  • Automated spam, malware and content-policy detection on hosted email and websites;
  • Automated billing actions (e.g. service suspension after a defined number of days past due).

15.3 Human review – Where an automated decision significantly affects you (for example, automated rejection of a new order or automatic suspension of an account), you have the right to request human review of that decision by contacting the Privacy Officer (see Section 22).

16. CHILDREN’S ONLINE PRIVACY

16.1 Not directed at children – WEBFAST’s services are directed at businesses and adult individuals. We do not knowingly collect personal information from children under the age of 16 without the consent of a parent or guardian.

16.2 Children’s Online Privacy Code – WEBFAST will comply with the Children’s Online Privacy Code being developed by the OAIC under the Privacy Act 2024 amendments once it is finalised and comes into force.

16.3 Customer responsibility – If you operate a website on WEBFAST hosting that is likely to be accessed by children, you (not WEBFAST) are responsible for complying with the Children’s Online Privacy Code in respect of personal information you collect from those children.

17. ANONYMITY & PSEUDONYMITY

17.1 Your option – Where practicable and lawful, you have the option of not identifying yourself, or of using a pseudonym, when dealing with WEBFAST about a particular matter (for example, a general enquiry).

17.2 Exceptions – This option does not apply where: (a) we are required or authorised by an Australian law or a court/tribunal order to deal with individuals who have identified themselves; or (b) it is impracticable for us to deal with you anonymously or under a pseudonym (for example, when provisioning a domain or hosting account, which requires verified registrant details).

18. ACCESS, CORRECTION & OTHER INDIVIDUAL RIGHTS

18.1 Access – You can request access to the personal information we hold about you by writing to the Privacy Officer (see Section 22). We will respond within a reasonable period (and in any event within 30 days) and provide access in the manner requested where reasonable and practicable. We may charge a reasonable cost-recovery fee for providing access to extensive records, but not for the request itself.

18.2 Correction – If you believe personal information we hold about you is inaccurate, out-of-date, incomplete, irrelevant or misleading, you may ask us to correct it. We will take reasonable steps to make the correction within 30 days. Where we have previously disclosed the information to a third party and you ask us to notify them of the correction, we will take reasonable steps to do so unless it is impracticable or unlawful.

18.3 Withdrawal of consent – Where we rely on your consent to process personal information, you may withdraw that consent at any time by contacting the Privacy Officer. Withdrawal of consent does not affect the lawfulness of processing carried out before withdrawal, and may affect our ability to provide certain services.

18.4 Refusal – We may decline an access or correction request where the Privacy Act permits us to do so (for example, where granting access would unreasonably impact the privacy of others). If we decline, we will provide written reasons and information about your right to complain.

19. HOSTING, RESELLER & AGENCY CUSTOMERS – YOUR END-USERS’ DATA

CUSTOMERS ARE CONTROLLERS OF THEIR END-USERS’ DATA

If you host a website, store a database, or operate an application on WEBFAST infrastructure, you are the controller of any personal information your end-users provide to your website or application.

WEBFAST acts as your service provider in respect of that data – we do not access or use it for our own purposes except as needed to provide the service, comply with law, or respond to a legitimate security incident.

19.1 Customer obligations – As the controller of your end-users’ personal information, you must:

  • Publish your own privacy policy on your website that meets your APP 1 obligations (where the Privacy Act applies to you);
  • Obtain valid consent from your end-users where required;
  • Respond to your end-users’ access, correction, deletion and complaint requests;
  • Comply with your own NDB obligations in respect of any breach affecting your end-users’ data;
  • Comply with the Spam Act 2003 (Cth) for any marketing you send;
  • Comply with the Children’s Online Privacy Code (once in force) where your service is likely to be accessed by children.

19.2 WEBFAST’s role – WEBFAST processes Customer Data only as reasonably necessary to provide the services, to maintain security and integrity of the platform, to comply with law, and as directed by the Customer. We do not use Customer Data for our own marketing or analytics purposes.

19.3 Government & law-enforcement requests – Where WEBFAST receives a valid law-enforcement or government request for Customer Data, we will (where lawful) notify the Customer so the Customer can respond. Where notice is prohibited by law, we will comply with the request without notice.

20. SERIOUS INVASIONS OF PRIVACY & DOXXING

20.1 Statutory tort – A statutory tort for serious invasions of privacy is in force in Australia from June 2025. Individuals who suffer a serious invasion of privacy may have a direct right of action. WEBFAST takes its obligations to avoid intentionally or recklessly invading individuals’ privacy very seriously.

20.2 Doxxing prohibition – The Criminal Code Act 1995 (Cth) makes it a criminal offence to use a carriage service to make available, publish or distribute personal data of an individual in a way that menaces or harasses, or that is motivated by hatred toward a group. WEBFAST prohibits any use of its services for doxxing, and reports of doxxing-related content will be investigated and may result in immediate suspension or termination under the Acceptable Use Policy, in addition to referral to law enforcement.

21. COMPLAINTS

21.1 How to complain to us – If you believe WEBFAST has breached the APPs or this Privacy Policy, please contact the Privacy Officer in writing (see Section 22). Please provide as much detail as practicable so we can investigate.

21.2 Our response – We will acknowledge your complaint promptly (typically within 5 business days) and aim to provide a substantive response within 30 days. If we need more time, we will tell you why and how long we expect to take.

21.3 Escalation to the OAIC – If you are not satisfied with our response, or if 30 days have passed without a response, you may refer your complaint to the Office of the Australian Information Commissioner:

  • Website: www.oaic.gov.au
  • Phone: 1300 363 992
  • Post: GPO Box 5288, Sydney NSW 2001

22. CONTACT – PRIVACY OFFICER

PRIVACY OFFICER

WEBFAST PTY LIMITED – Privacy Officer

Telephone: 1300 883 582

Email: legal@webfast.au

Postal: PO Box 1450, Double Bay NSW 1360, Australia

Hours: 9:00 AM – 5:00 PM Sydney time, business days

23. CHANGES TO THIS PRIVACY POLICY

We review and update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements and other factors. The current version is always published at https://webfast.au/privacy-policy/. Where a change is material, we will give reasonable advance notice by email to the primary contact address recorded on your account, by a notice on our website, or by other reasonable means.