Back
NetRidePRO
Legal

Privacy Policy

Last updated: April 2026  ·  Privacy Act 1988 (Australia) Compliant

Your privacy matters. This policy explains what information NetRidePRO collects, how it is used, who it is shared with, and the rights you have over your data.

1. Information We Collect

Account Information

  • Full name and email address
  • Passwords stored using industry-standard one-way hashing — not stored in recoverable form
  • Authentication method (email/password or Google account sign-in)

Business and Tax Information

  • Australian Business Number (ABN)
  • GST registration status and registration date
  • Preferred tax method and BAS reporting cycle
  • State and suburb (for regional context)

Financial Records

  • Income records (platform earnings from rideshare and delivery services)
  • Expense records (categories, amounts, dates, GST amounts)
  • Mileage and trip logs
  • Vehicle details (make, model, year, purchase price, business use percentage)
  • Uploaded receipts, invoices, and bank statements

Billing Information

  • Subscription plan and billing status
  • Payment method details — processed by our payment processor; we do not store card numbers, expiry dates, or CVVs on our systems

Usage Information

  • Device type and browser (security and compatibility)
  • IP address (fraud prevention and security logging)
  • Feature usage patterns (in aggregate, to improve the product)

We do not collect or store Tax File Numbers (TFNs). You must not upload documents containing TFNs. See Section 5 for details.

2. How We Use Your Information

  • To create and manage your account and authenticate your identity
  • To provide income tracking, expense management, mileage logging, BAS estimation, and report generation
  • To process AI-assisted categorisation of uploaded receipts and bank statements
  • To process subscription payments and manage your billing relationship
  • To send transactional emails required for your account — including email verification, password resets, payment confirmations, and account notifications
  • To send marketing and product update emails only where you have provided explicit consent. You may withdraw consent at any time.
  • To detect and prevent fraud, abuse, and security incidents
  • To comply with our legal obligations under Australian law
  • To improve the platform based on aggregate usage data
  • We do not sell, rent, or trade your personal information to third parties for their own marketing purposes

3. Third-Party Service Providers

We engage reputable third-party service providers. We take reasonable steps to ensure these providers handle your information appropriately and process it only as directed by us.

Database and Authentication

Secure cloud database provider. Your data is stored in Australia (Sydney region). Strict user-level access controls ensure each user can only access their own data.

Hosting and Delivery

Cloud hosting provider serving the NetRidePRO web application. All connections are encrypted using HTTPS (TLS 1.2+).

Payment Processing

Third-party payment processor handling subscription billing. Your payment card details are processed and stored by the payment processor — never on our systems. Our payment processor maintains industry-standard security certifications for payment card data.

AI Document Processing

When you upload receipts or bank statements for AI-assisted categorisation, content is temporarily transmitted to an AI service provider operating in the United States. Documents are processed in-session only and not retained beyond the duration of processing. We do not use your financial data to train third-party AI models. We do not transmit your ABN or TFN alongside document content.

Transactional Email

Email service provider used to send account and billing emails. Your email address is shared solely for delivering emails you have requested or that are required for service operation.

We do not share your financial records, income data, expense records, or mileage logs with any provider for any purpose other than delivering the service. A list of our current sub-processors is available on request at privacy@netridepro.com.au.

4. Automated Processing

NetRidePRO uses automated systems to assist in the categorisation of data from documents you upload, including receipts and bank statements.

  • Automated categorisation is designed to assist, not replace, your own decision-making
  • All AI-parsed results are presented to you for review and confirmation before being saved — you are the final decision-maker
  • The system uses document content (transaction descriptions, amounts, dates, merchant names) to suggest categories and extract data. It does not access any external data source about you.
  • We do not use your financial data to train AI models operated by us or any third party
  • Automated categorisation may produce errors. You are responsible for reviewing all outputs before treating them as accurate.
  • This section is provided in anticipation of transparency requirements under the Privacy and Other Legislation Amendment Act 2024 (effective December 2026)

5. Tax File Numbers

NetRidePRO is not authorised to collect or store Tax File Numbers (TFNs) under the Tax File Number Rule 2015.

  • You must not upload any document containing your TFN or the TFN of any other person — including ATO correspondence, payment summaries, group certificates, or any document on which a TFN appears
  • You must redact or black out any TFN before uploading a document
  • If a TFN is inadvertently included in an upload, it has been provided in breach of our Terms of Service
  • We accept no responsibility for consequences arising from a user's failure to redact TFNs from uploaded documents
  • Any TFN discovered in our systems will be deleted
  • NetRidePRO does not request, require, or use TFNs for any purpose

6. Data Retention and Deletion

Active Accounts

  • Data retained for the duration of your active account and as long as necessary to provide the service.

Paid Subscriptions — Cancellation

  • On cancellation, account enters a 30-day grace period.
  • Data accessible in read-only mode. Export available at any time.
  • Reactivation restores full access with no data loss.
  • After 30 days, data is deleted from active systems and queued for removal from backup systems in accordance with our backup retention schedule.

Account Deletion on Request

  • Via Settings → Account → Delete my account. Permanent.
  • We recommend exporting data before deletion.
  • We are not responsible for data loss after deletion is confirmed.

ATO Record-Keeping Obligation

  • The ATO requires you to retain tax records for 5 years from the relevant transaction or lodgement date.
  • This obligation rests with you as the taxpayer.
  • We strongly recommend exporting your data before account closure.

Following deletion, we retain only an anonymised audit record (no personal information — only a deletion timestamp and record count), and your email and name if you explicitly consented to marketing communications at closure.

7. Your Rights

  • Access: Request personal information we hold — we aim to respond within 30 days. Most data is directly exportable from the platform.
  • Correction: Request correction of inaccurate information via Settings or by contacting privacy@netridepro.com.au
  • Deletion: Via Settings → Account or by contacting us. See Section 6.
  • Data Export: Download a full ZIP export at any time via Settings → Account → Download my data
  • Withdrawal of Marketing Consent: Click unsubscribe in any marketing email or contact privacy@netridepro.com.au
  • Complaints: Contact us at privacy@netridepro.com.au first. If not satisfied, lodge a complaint with the OAIC at oaic.gov.au

8. Data Security

  • All data transmitted between your device and our platform is encrypted using HTTPS (TLS 1.2 or higher)
  • Passwords stored using industry-standard one-way hashing — not recoverable by us
  • Strict access controls ensure each user can only access their own data
  • Access to production systems is restricted to authorised personnel only
  • Our security measures focus on data resilience through regular backups and restricted administrative access

Multi-Factor Authentication

NetRidePRO does not currently mandate end-user Multi-Factor Authentication (MFA). By using the Service, you acknowledge that you are responsible for maintaining a strong, unique password. We accept no responsibility for unauthorised account access resulting from weak, reused, or compromised passwords.

In the event of an eligible data breach under the Notifiable Data Breaches (NDB) scheme (Privacy Act Part IIIC), we will notify the OAIC and affected individuals as required by law.

9. Changes to This Policy

  • We may update this policy to reflect changes to our practices or legal obligations
  • Where changes are material, we will notify you via email or in-app notification at least 14 days before changes take effect
  • The current policy is always available at netridepro.com.au/privacy
  • Continued use after the effective date constitutes acceptance of the revised policy

10. Contact

For privacy enquiries, access requests, or complaints, email privacy@netridepro.com.au with subject line: Privacy Enquiry. We aim to respond within 30 days.

NetRidePRO — ABN 67 560 831 468, Brisbane QLD 4161, Australia.

Privacy enquiries? privacy@netridepro.com.au · Terms of Service · Disclaimer