Features Frameworks Pricing About Contact Login

Privacy Policy

Last updated: January 12, 2026

Contents

1. Introduction

Risk Ninja Pty Ltd ("Risk Ninja", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website (riskninja.co), our application (app.riskninja.co), and any related services (collectively, the "Service").

By accessing or using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not access the Service.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly to us, including:

  • Account Information: Name, email address, company name, job title, phone number, and password when you register for an account.
  • Profile Information: Any additional information you add to your profile.
  • Customer Data: Information you input into the Service, including risk assessments, compliance data, organisational information, and any documents you upload.
  • Communications: Information you provide when you contact us for support, send feedback, or participate in surveys.
  • Payment Information: Billing address and payment method details (note: payment card details are processed by our secure payment processor and are not stored on our systems).

2.2 Information We Collect Automatically

When you access our Service, we automatically collect:

  • Log Data: IP address, browser type, operating system, referring URLs, pages viewed, and access times.
  • Device Information: Device type, unique device identifiers, and mobile network information.
  • Usage Data: Features used, actions taken, and time spent on the Service.
  • Cookies and Similar Technologies: See our Cookies section below.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Process transactions and send related information
  • Send technical notices, updates, security alerts, and support messages
  • Respond to your comments, questions, and requests
  • Communicate about products, services, offers, and events
  • Monitor and analyse trends, usage, and activities
  • Detect, investigate, and prevent fraudulent transactions and abuse
  • Personalise and improve your experience
  • Comply with legal obligations

4. Information Sharing

We do not sell your personal information. We may share your information in the following circumstances:

  • Service Providers: With third-party vendors who perform services on our behalf (hosting, analytics, payment processing, customer support).
  • Legal Compliance: When required by law, regulation, or legal process.
  • Protection of Rights: To protect our rights, privacy, safety, or property, or that of our users or the public.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets.
  • With Consent: With your consent or at your direction.

5. Data Security

We implement appropriate technical and organisational measures to protect your information, including:

  • Encryption of data in transit (TLS) and at rest (AES-256)
  • Regular security assessments and penetration testing
  • Access controls and authentication requirements
  • Employee security training and background checks
  • Incident response procedures

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide you with the Service. We will also retain and use your information as necessary to:

  • Comply with legal obligations
  • Resolve disputes
  • Enforce our agreements

Upon account termination, your data will be retained for 30 days before permanent deletion, unless longer retention is required by law.

7. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request correction of inaccurate or incomplete information.
  • Deletion: Request deletion of your personal information.
  • Portability: Request a copy of your data in a portable format.
  • Objection: Object to certain processing of your information.
  • Restriction: Request restriction of processing in certain circumstances.

To exercise these rights, please contact us at privacy@riskninja.co.

Australian Privacy Act

If you are an Australian resident, you have rights under the Privacy Act 1988 (Cth), including the right to access and correct your personal information. You may also lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

GDPR (European Users)

If you are in the European Economic Area, you have additional rights under the General Data Protection Regulation, including the right to lodge a complaint with your local supervisory authority.

8. Cookies

We use cookies and similar tracking technologies to collect information and improve the Service. Types of cookies we use:

  • Essential Cookies: Required for the Service to function properly.
  • Analytics Cookies: Help us understand how visitors interact with the Service.
  • Functional Cookies: Remember your preferences and settings.

You can control cookies through your browser settings. Disabling certain cookies may affect your ability to use some features of the Service.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

10. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Risk Ninja Pty Ltd
Email: privacy@riskninja.co
Address: Sydney, NSW, Australia