Who We Are
Caltherion operates from our office at F111B 24/32 Lexington Dr, Bella Vista NSW 2153, Australia. We provide spreadsheet-based financial management tools that help individuals and businesses track their finances more effectively. When we say "we," "us," or "our" in this document, we're talking about Caltherion.
You can reach our privacy team at support@caltherion.eu or call us on +61755395185 if you have questions about how we handle your data.
Information We Collect
We collect different types of information depending on how you interact with our platform. Here's what that looks like in practice:
Account Information
When you sign up, we ask for your name, email address, and a password. Sometimes people also give us their phone number, but that's optional. We need this basic info to create your account and let you log in.
Financial Data
This is the stuff you put into your spreadsheets – transaction records, budget categories, expense tracking, income sources. It's your data, and you control what goes into the system. We store it securely so you can access your financial information whenever you need it.
Usage Information
We automatically collect some technical details when you use our service. This includes your IP address, browser type, device information, and how you navigate through our platform. We use this to spot technical problems and understand which features people actually use.
Communication Records
When you email us, use our support chat, or contact us through other channels, we keep records of those conversations. It helps us provide better support and remember context if you reach out again.
How We Use Your Information
We don't collect data just to have it sitting around. Here's what we actually do with it:
| Purpose | Description |
|---|---|
| Service Delivery | Running your account, processing your spreadsheet data, syncing across devices, and making sure everything works as expected |
| Platform Improvements | Analyzing usage patterns to fix bugs, improve performance, and build features people actually want |
| Customer Support | Responding to your questions, troubleshooting problems, and helping you get the most from our tools |
| Security Protection | Detecting fraud, preventing unauthorized access, and keeping your financial data safe from threats |
| Legal Compliance | Meeting our obligations under Australian law and responding to valid legal requests |
| Communication | Sending account updates, service notifications, and occasionally information about new features |
We never sell your financial data to third parties. That's a hard line for us.
Data Storage and Security
Your data lives on secure servers located in Australian data centres. We use industry-standard encryption (AES-256) for stored data and TLS 1.3 for data in transit. That means your information is scrambled both when it's sitting on our servers and when it's moving between your device and our platform.
Our Security Measures
- Regular security audits by external firms who specialize in finding vulnerabilities
- Multi-factor authentication options for your account (we strongly recommend turning this on)
- Automated backup systems that run daily, with encrypted backups stored separately
- Access controls that limit which team members can see user data (only those who need it for support)
- Continuous monitoring for unusual activity or potential security threats
- Regular staff training on data protection and privacy best practices
No system is completely bulletproof, but we take reasonable precautions to protect your information. If we ever experience a data breach that affects your personal information, we'll notify you within 72 hours as required by Australian privacy law.
Sharing Your Information
We keep your data pretty close to the chest. We only share it in specific situations:
Service Providers
Some specialized companies help us run our platform – cloud hosting providers, email services, payment processors. These providers only get access to the data they need to do their job, and they're bound by confidentiality agreements. We vet them carefully before signing contracts.
Legal Requirements
If Australian law enforcement or regulatory bodies make a valid legal request, we may need to provide information. We review each request to make sure it's legitimate and only hand over what's legally required.
Business Transfers
If Caltherion is acquired by another company or merges with one, your data would transfer to the new entity. We'd notify you before this happens and explain any changes to how your data is handled.
Third-Party Links
Our platform might include links to external websites or services. Once you click through to another site, their privacy policy applies instead of ours. We're not responsible for how other companies handle your data.
Your Privacy Rights
Under Australian privacy law, you have several rights when it comes to your personal data. Here's what you can do:
Access Your Data
Request a copy of all personal information we hold about you. We'll provide this in a readable format within 30 days.
Correct Inaccuracies
If your personal details are wrong or outdated, you can ask us to fix them. Most info can be updated directly in your account settings.
Delete Your Data
Request deletion of your account and associated data. We'll remove everything except what we're legally required to keep for tax or regulatory purposes.
Export Your Data
Download your financial data in standard formats (CSV, Excel) so you can move it to another service if you want.
Restrict Processing
Ask us to limit how we use your data in specific situations, like if you're disputing the accuracy of information.
Lodge a Complaint
If you're unhappy with how we've handled your data, you can complain to us directly or to the Office of the Australian Information Commissioner.
How to Exercise These Rights
Email us at support@caltherion.eu with "Privacy Request" in the subject line. Include your account email and specify which right you want to exercise. We'll verify your identity (usually by sending a confirmation link to your registered email) and process your request within 30 days.
Data Retention
We don't keep your data forever. Here's our retention schedule:
- Active account data: Stored as long as your account remains open
- Deleted account data: Purged from our systems within 90 days, except for financial records required by Australian tax law (kept for 7 years)
- Support communications: Retained for 3 years to help with ongoing service improvements
- Usage logs and analytics: Aggregated and anonymized after 12 months, with personally identifiable details removed
- Backup data: Encrypted backups are overwritten on a rolling 90-day cycle
After these periods, data is securely deleted using methods that make recovery impossible.
Cookies and Tracking
Like most websites, we use cookies – small text files stored on your device. They help us remember your login, keep track of your preferences, and understand how people use our platform.
Types of Cookies We Use
Essential Cookies: These make our platform work. They handle things like keeping you logged in and remembering your settings. You can't turn these off without breaking the service.
Analytics Cookies: These help us understand which features get used most, where people get stuck, and how we can improve things. We use aggregated, anonymized data for this.
Performance Cookies: These track loading times and technical performance so we can spot and fix problems quickly.
You can control cookie settings through your browser. Keep in mind that blocking certain cookies might affect how well our platform works for you.
International Data Transfers
Your data primarily stays within Australia. However, some of our service providers operate globally, which means your data might occasionally be processed on servers outside Australia.
When this happens, we ensure these transfers comply with Australian privacy standards. We use standard contractual clauses approved by the Office of the Australian Information Commissioner and only work with providers who meet strict data protection requirements.
If you're accessing our service from outside Australia, your data will be transferred to and processed in Australia under Australian privacy laws.
Children's Privacy
Our service isn't designed for anyone under 18. We don't knowingly collect personal information from children. If you're a parent and discover your child has created an account, contact us immediately and we'll delete their information.
If we learn we've accidentally collected data from someone under 18, we'll delete it as soon as possible.
Changes to This Policy
We update this policy occasionally to reflect changes in our practices or legal requirements. When we make significant changes, we'll email you at your registered address at least 30 days before the new policy takes effect.
The "Last Updated" date at the top shows when we most recently revised this document. Continuing to use our service after changes take effect means you accept the updated policy.
For minor changes (like fixing typos or clarifying existing practices), we'll update the document without individual notification, but we'll note the change date.
Questions About Your Privacy?
We're here to help if anything in this policy is unclear or if you want to discuss your data rights.
If you're not satisfied with our response to a privacy concern, you can contact the Office of the Australian Information Commissioner at oaic.gov.au or call 1300 363 992.