Get started

Privacy Policy

Effective Date: 05 January, 2025
Last Updated: 11 May, 2025

This Privacy Policy (“Policy”) sets out how Fivegrid Pty Ltd, an Australian company (ABN 34 660 667 541) with operations in India through its wholly owned entity Brandwave Software Solutions Private Limited (GSTIN: 33AALCB6008P1ZE), (“Fivegrid”, “we”, “us”, or “our”) collects, uses, stores, discloses, and otherwise processes personal information in connection with the provision of its Services.

This Policy complies with the obligations set forth under:

  • The Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs);

  • The Digital Personal Data Protection Act, 2023 (India);

  • The General Data Protection Regulation (GDPR) (EU Regulation 2016/679).

By accessing or using our websites, software, or services (collectively, the “Services”), you consent to the practices described in this Privacy Policy.

 

1. Scope of This Policy

This Policy applies to all users of the Services, including customers, account holders, website visitors, and users interacting through integrations (e.g., WhatsApp, Meta, Google). It governs how personal data is handled, whether collected directly, automatically, or via third-party platforms.

 

2. Types of Personal Information Collected

2.1 Information You Provide to Us

We may collect and process the following personal information provided by you when using our Services:

  • Full name and contact details (including email address);

  • Business and platform account details (e.g., Google Ads ID, Meta Business credentials);

  • Messages submitted via chatbot or customer interactions;

  • User preferences and feedback submitted through support channels.

2.2 Information Collected Automatically

When you interact with our platform, we may automatically collect:

  • Internet Protocol (IP) address;

  • Browser type, device metadata, and operating system;

  • Usage data and interaction history;

  • Analytical information via third-party tools (e.g., Google Analytics, Meta Pixel).

We do not collect or process payment card information directly.

 

3. Purposes for Processing Personal Information

We process personal information for the following purposes:

  • To provide, operate, and maintain the Services;

  • To authenticate users and manage user accounts;

  • To deliver AI-generated marketing strategies and sales support functionality;

  • To facilitate integrations with platforms such as WhatsApp, Google Ads, Facebook, and Instagram;

  • To conduct internal research, product development, and usage analytics;

  • To communicate updates, service notices, and marketing materials (subject to applicable consent requirements);

  • To comply with applicable laws and regulatory obligations.

 

4. Legal Basis for Processing (GDPR Compliance)

Where the GDPR applies, we rely on the following legal bases:

  • Performance of a contract: for users who purchase and use the Services;

  • Legitimate interests: for internal development, analytics, and platform security;

  • Consent: for marketing communications and where required for platform integrations;

  • Legal obligation: where processing is required by applicable law.

 

5. Disclosure of Personal Information

We may disclose your personal information to:

  • Third-party service providers for AI processing (e.g., OpenAI, Vertex AI), analytics (e.g., Google, Meta), and marketing automation;

  • Platform providers (e.g., Meta, Google) for purposes of integration, advertising, and communication;

  • Affiliated entities and group companies for internal administration;

  • Regulatory authorities, courts, or law enforcement agencies when required to comply with legal obligations or enforce our rights.

We do not sell your personal information to third parties.

 

6. Cross-Border Data Transfers

Given the nature of our Services, your personal information may be stored and processed in Australia, India, or in jurisdictions where our third-party providers are located.

Where required by law (e.g., GDPR), appropriate safeguards such as Standard Contractual Clauses (SCCs) or data protection agreements are used to ensure that personal information transferred internationally is handled with a level of protection equivalent to that required under your jurisdiction’s law.

 

7. Data Security and Retention

We implement administrative, technical, and physical security measures designed to protect personal information from unauthorized access, loss, misuse, or alteration. This includes encryption, access control policies, and monitoring practices.

We retain personal information for as long as necessary to fulfil the purposes for which it was collected, or as required under applicable legal, tax, or regulatory requirements. When no longer needed, personal data is securely deleted or anonymised.

 

8. User Rights

Depending on your location, you may have rights including:

8.1 Under the Australian Privacy Act (APPs):

  • Right to access and correct your personal information;

  • Right to make a complaint to the Office of the Australian Information Commissioner (OAIC).

8.2 Under the Digital Personal Data Protection Act, 2023 (India):

  • Right to access, correct, update, and delete personal data;

  • Right to withdraw consent for processing;

  • Right to register grievances through a designated contact.

8.3 Under the GDPR (European Union):

  • Right of access, rectification, and erasure (“right to be forgotten”);

  • Right to restrict or object to processing;

  • Right to data portability;

  • Right to lodge a complaint with a Data Protection Authority (DPA).

To exercise any of the above rights, you may contact us at info@fivegrid.tech.

 

9. Use of Third-Party Tools and Services

Our Services integrate with or rely on third-party tools for core functionality. These include:

  • Google Analytics, Google Search Console, Google Ads, and Google Merchant Center;

  • Meta Ads, Instagram, Facebook, and WhatsApp Business Cloud API;

  • OpenAI and Google Vertex AI for machine learning and natural language processing;

  • E-commerce platforms such as Shopify and Wix for lead tracking and data synchronization.

These third-party services may process personal data independently. We encourage users to review the privacy policies of those platforms to understand how your data is handled outside of our control.

 

10. Children’s Privacy

Our Services are not directed to individuals under the age of 16, and we do not knowingly collect data from minors. If we become aware that personal data has been collected from a child without verified parental consent, we will take immediate steps to delete such information.

 

11. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes to our business, technology, or legal obligations. Any material changes will be communicated via email or prominently displayed on our platform.

Continued use of the Services following such updates constitutes your acceptance of the revised Policy.

 

12. Contact Us

If you have questions, requests, or complaints regarding this Privacy Policy or your personal data, you may contact our designated Data Protection Officer at:

Email: info@fivegrid.tech
Australia Office: Fivegrid Pty Ltd, Sydney, Australia 2000
India Office: Brandwave Software Solutions Private Limited, Ramanathapuram, Coimbatore 641036, Tamil Nadu, India

We are committed to resolving privacy-related concerns in a timely and transparent manner.