Privacy Policy

RoxaIT Pty Ltd (RoxaIT, we) designs and operates SaaS, AI, and API products including Insurah.ai. This policy explains how we handle personal data when you visit roxait.com.au, use our APIs, engage our consulting services, or subscribe to content.

1. Data we collect

• Account and billing details provided when activating Stripe-powered subscriptions.
• Contact information and messages submitted via forms or email.
• Telemetry and usage metrics needed to secure and improve our APIs.
• Marketing preferences gathered for newsletters or event updates.

2. How we use data

We use personal data to deliver contracted services, provide customer support, improve platform reliability, and send product communications. Stripe processes payment data on our behalf. Email delivery is handled by Resend or SendGrid depending on the property.

3. Retention and security

Data is stored in Australian or US data centres with encryption at rest and in transit. We retain customer records while you maintain an active relationship and delete or anonymise as required by contract or law. We maintain SOC 2-aligned controls and conduct annual security reviews.

4. Your rights

You may access, correct, or request deletion of your data by contacting privacy@roxait.com.au. EU and UK residents can exercise GDPR rights, and Australian users retain Australian Privacy Principles protections.

5. Third parties

Key subprocessors include Stripe (payments), Vercel (hosting), Resend (transactional email), Mailchimp (email marketing), and Google/Calendly (meeting scheduling). We ensure appropriate data processing agreements are in place.

6. Contact

Questions about privacy can be directed to privacy@roxait.com.au or RoxaIT Pty Ltd, St. Georges Terrace, Perth 6000.