Privacy Policy

Sudanim Pty Ltd ("we", "us", "our") operates Smart Pager, an after-hours messaging service. This Privacy Policy explains how we collect, use, and protect your personal information.

Information We Collect

We collect the following information:

• Account information: Your name, email address, and phone number when you sign up.
• Call recordings: Audio recordings of messages left by callers.
• Transcriptions: Text transcriptions of recorded messages.
• Caller information: Phone numbers of people who call your Smart Pager line.
• Usage data: Information about how you use our service.
• Photos: Images shared by callers when requested by you, along with any optional text note they provide.
• Payment information: Processed securely by Stripe; we do not store card details.

How We Use Your Information

We use your information to:

• Provide and operate the Smart Pager service
• Send you push and SMS notifications when you receive messages
• Process payments for your subscription
• Communicate with you about your account
• Improve our service and develop new features
• Comply with legal obligations

Data Storage and Security

All data is stored on secure servers located in Australia (AWS Sydney region). We use encryption in transit (TLS) and at rest to protect your information. Access to data is restricted to authorised personnel only.

Data Retention

Call recordings and transcriptions are retained for 7 years to meet Australian record-keeping requirements. You may request deletion of your account and associated data at any time, subject to legal retention requirements.

Photo Sharing

When you request a photo from your client through Smart Pager, the following information is collected:

• Photos: Images your client uploads (JPEG, PNG, or HEIC format, up to 5 MB each).
• Optional note: Any text note your client includes with their photos (up to 500 characters).

Before uploading, your client is asked to confirm consent via a checkbox on the upload page. All location data and other metadata (EXIF) is automatically stripped from photos before storage.

Photos are encrypted at rest using AES-256 server-side encryption and stored exclusively on servers in Sydney, Australia (AWS ap-southeast-2 region). Photos are retained for 7 years in line with Australian record-keeping requirements, after which they are securely deleted.

Photos are securely transported and stored only. They are not processed, analysed, or used for any automated decision-making.

You or your client may request access to or deletion of photos by contacting us at hello@smartpager.com.au, subject to legal retention requirements.

Third-Party Services

We use the following third-party services:

• Twilio: For phone and SMS services
• Stripe: For payment processing
• Amazon Web Services: For hosting and storage

Each of these providers has their own privacy policies and security measures.

Your Rights

Under Australian privacy law, you have the right to:

• Access your personal information
• Correct inaccurate information
• Request deletion of your information (subject to legal requirements)
• Complain to the Office of the Australian Information Commissioner

Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us at hello@smartpager.com.au.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through the service.