Privacy Policy

1. Our Commitment to Privacy

GOODWIN SYSTEM PTY LTD ("Goodwin System", "we", "us", or "our") is committed to protecting your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs) contained in Schedule 1 of that Act.

This Privacy Policy describes how we collect, use, disclose, store, and protect personal information obtained through our website at goodwinsys.com.au and through our service delivery activities.

2. What Personal Information We Collect

We may collect the following types of personal information:

• Identity and contact details — name, job title, company name, email address, and phone number submitted via our contact or inquiry forms.
• Enquiry content — messages, project descriptions, or requirements you provide when contacting us.
• Website usage data — IP address, browser type, pages visited, and referral source, collected automatically via server logs and analytics.
• Cookies and similar technologies — session identifiers and preference data stored locally in your browser. See Section 7 for details.

We do not intentionally collect sensitive information as defined in the Privacy Act (e.g., health information, racial or ethnic origin, financial account numbers) through our website.

3. How We Collect Personal Information

We collect personal information:

• Directly from you when you complete an inquiry form, book a strategy call, or email us.
• Automatically when you browse our website through server logs and first-party analytics.
• From third-party platforms you use to contact us (e.g., LinkedIn, email providers), subject to their privacy policies.

Where practicable, we collect personal information directly from you. If we collect information from third parties, we will take reasonable steps to notify you.

4. Why We Collect Personal Information

We collect and use personal information for the following primary purposes:

• To respond to your enquiries and provide information about our services.
• To assess your requirements and deliver software engineering and consulting services.
• To schedule and conduct strategy calls, meetings, and workshops.
• To manage our business relationship with you or your organisation.
• To improve our website and service delivery through aggregated analytics.
• To comply with our legal and contractual obligations.

We will not use your personal information for a secondary purpose unless that purpose is related to the primary purpose and you would reasonably expect such use, or you have consented, or the use is required or permitted by law.

5. Disclosure of Personal Information

We do not sell, rent, or trade your personal information. We may disclose your information to:

• Service providers — trusted third-party providers who assist us in operating our website or delivering services (e.g., email platforms, CRM tools, cloud hosting providers), under confidentiality obligations.
• Professional advisers — lawyers, accountants, and auditors who are subject to professional secrecy obligations.
• Government and regulatory bodies — where required or authorised by Australian law.

Where we disclose personal information to overseas recipients (e.g., cloud infrastructure providers hosted outside Australia), we take reasonable steps to ensure those recipients handle information consistently with the APPs or an equivalent standard.

6. Data Security and Retention

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification, and disclosure. These steps include access controls, encrypted data transmission (TLS), and secure cloud storage.

We retain personal information for as long as necessary to fulfil the purpose for which it was collected, or as required by law. When personal information is no longer needed, we take reasonable steps to destroy or de-identify it.

7. Cookies

Our website may use cookies and similar technologies to improve user experience and gather aggregated analytics. Cookies used on our site are:

• Strictly necessary cookies — required for core website functionality. These cannot be disabled.
• Analytics cookies — used in an aggregated, anonymised form to understand how visitors use our site. No personally identifiable information is sent to third-party analytics services.

You can control cookies through your browser settings. Disabling cookies may affect some website functionality.

8. Access and Correction

Under the Privacy Act 1988, you have the right to request access to personal information we hold about you, and to request correction of any information that is inaccurate, out of date, incomplete, irrelevant, or misleading.

To make an access or correction request, please contact us using the details in Section 10. We will respond within a reasonable time (generally within 30 days). We may need to verify your identity before processing your request. In some circumstances we may refuse access or correction; if so, we will provide written reasons.

9. Complaints

If you believe we have handled your personal information in a way that does not comply with the Privacy Act 1988, you may lodge a complaint with us by contacting us using the details in Section 10. We will investigate your complaint and respond within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.

10. Contact Us

For privacy-related enquiries, access requests, or complaints, please contact:

11. Changes to this Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal obligations. The "Last updated" date at the top of this page indicates when the policy was most recently revised. We encourage you to review this page periodically.