Legal

Privacy Policy

This policy explains how Popurise handles personal information and Customer Data, and the choices available to you.

Last updated 21 May 2026

Page noteThese documents are provided for general information and should be reviewed by a qualified lawyer before being relied on.

1. Who this policy applies to

This Privacy Policy applies to Popurise Pty Ltd (“Popurise”, “we”, “us”, “our”) and to popurise.com, the Popurise application and related services (the “Service”). It should be read together with our Terms of Service and Disclaimer.

Popurise complies with the Australian Privacy Principles in the Privacy Act 1988 (Cth) where applicable. Capitalised terms used and not defined here have the meaning given in our Terms of Service.

2. What this policy covers

This policy covers personal information about visitors, customers, users, prospects and other individuals that we collect through the Service, including:

  • account and profile information;
  • information you submit through forms, demos, billing, support and communications;
  • device, log and analytics information generated through use of the Service; and
  • any personal information contained in Customer Data submitted by you or your users to the Service.

Where you upload Customer Data that contains personal information about third parties, you are responsible for ensuring you have the rights, consents and authority to do so under applicable law.

3. Information we collect

  • Account and profile information. Name, email address, password (hashed), company or organisation, role, phone number where provided, profile preferences and account settings.
  • Customer Data. The data, content, files, inputs, assumptions, projects, scenarios, sites, addresses, land values, construction costs, revenue assumptions, financing assumptions, cashflows, returns, notes, documents, company details and any other materials you or your users submit, upload, generate or store through the Service. Customer Data may contain personal information about you, your team and third parties.
  • Billing information. Payment method, billing address, ABN and invoice records. Card details are collected and processed by our payment processor and are not stored by Popurise.
  • Usage, device and log data. IP address, browser type, operating system, device identifiers, language, time zone, referring and exit pages, pages visited, features used, clicks, sessions, performance metrics, error logs and similar technical and behavioural data, collected through cookies, pixels, SDKs, server logs and analytics tools.
  • Communications. Records of correspondence with Popurise, including support tickets, emails, demo and sales conversations, feedback and survey responses.
  • Cookies and similar technologies. Essential cookies for sign-in and session management, and optional analytics and product cookies for measurement and improvement. You can manage cookies through your browser; disabling essential cookies may affect functionality.
  • Information from third parties. We may receive information from authentication providers, payment processors, analytics providers, business contact databases and referrals, where you have authorised such sharing or it is lawful to do so.

4. How we use information

We use the information we collect to:

  • provide, operate, maintain, monitor, secure and support the Service;
  • authenticate users, manage accounts and process payments;
  • respond to enquiries, requests and support tickets;
  • troubleshoot issues, debug, prevent and respond to security incidents, fraud and abuse;
  • improve, develop and test new and existing features, models, defaults, templates, calculations, integrations and products;
  • conduct analytics, benchmarking, research, reporting, market intelligence and product development;
  • train, evaluate and improve algorithms, models and tooling that power the Service;
  • send service communications, including account, billing, security and policy notices;
  • send product updates, newsletters, surveys and marketing communications where permitted, with the ability to opt out at any time;
  • comply with law, regulation, lawful requests and court orders;
  • enforce our Terms of Service and protect the rights, property, safety or security of Popurise, our users and the public; and
  • any other purpose disclosed to you at the time of collection or for which you provide consent.

5. Aggregated, de-identified, usage and derived data

We collect, generate, use, retain and disclose Aggregated Data, De-identified Data, Usage Data and Derived Data for any lawful business purpose, including operating, improving and securing the Service, research and product development, analytics, benchmarking, market intelligence, reporting, model training and the creation, licensing, sale and commercialisation of data and analytics products. Aggregated Data and De-identified Data do not identify you, any user or any specific project.

6. Service providers and processors

We use third-party service providers and processors to deliver the Service, including for hosting, infrastructure, storage, database, computation, email and messaging, analytics, error and performance monitoring, customer support, payments and security. These providers access personal information only to the extent necessary to perform their services and are bound by confidentiality and data protection obligations.

Some service providers may store or process information outside Australia. Where this occurs, we take reasonable steps to ensure the recipient handles the information consistently with this policy and applicable law.

7. When we disclose information

We may disclose personal information and Customer Data where reasonably necessary or appropriate to:

  • provide, operate, secure, support or troubleshoot the Service;
  • engage service providers, sub-processors, contractors and advisers;
  • enforce our Terms of Service, any order form, or any right of Popurise;
  • comply with law, regulation, lawful request, subpoena, warrant or court order;
  • protect the rights, property, safety or security of Popurise, our users, the public or any third party;
  • investigate, prevent or respond to suspected fraud, security incidents, breach of our terms or unlawful conduct;
  • complete a corporate transaction, including a merger, acquisition, financing, restructure, insolvency or sale of all or part of the business or assets, in which case information may be transferred as part of that transaction;
  • act on your written consent or instruction; or
  • operate sharing, collaboration, export, integration or invitation features that you or your users enable.

We do not sell personal information for the purpose of advertising in the way that term is commonly understood.

8. Marketing and your choices

We may send marketing communications about Popurise products and services where permitted by law. You can opt out at any time by following the unsubscribe link in any marketing email or by contacting us at dan@popurise.com. Service and transactional communications are not optional while you have an account.

9. Retention

We retain personal information and Customer Data for as long as necessary to provide the Service, comply with our legal, regulatory, tax, accounting and reporting obligations, resolve disputes, enforce our agreements, and for the legitimate purposes set out in this policy. Backups, archives, audit logs, Aggregated Data, De-identified Data and Derived Data may be retained for longer.

10. Security

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification and disclosure, including access controls, authentication, encryption in transit, logging and supplier diligence. No system is completely secure. We cannot guarantee absolute security, and any transmission of information is at your own risk.

You are responsible for keeping your credentials confidential and for the security of any device or system you use to access the Service.

11. Your rights

Subject to applicable law, you may request to access, correct or update the personal information we hold about you, request that we delete information, withdraw consent where consent is the basis for processing, or object to a particular use. To make a request, email dan@popurise.com. We may need to verify your identity and may decline a request where permitted or required by law.

Where personal information is contained in Customer Data, the customer that submitted the data is responsible for responding to requests from individuals in the first instance. We will assist that customer as reasonably required.

12. Children

The Service is intended for business users and is not directed at children. We do not knowingly collect personal information from children under 18. If you believe a child has provided us with personal information, contact us so we can delete it.

13. Third-party links and integrations

The Service may contain links to or integrations with third-party websites, products or services. Their handling of information is governed by their own privacy practices, not this policy. Popurise is not responsible for the privacy practices of third parties.

14. Changes to this policy

We may update this policy from time to time. The current version is published at popurise.com/privacy. For material changes, we will use reasonable efforts to notify you, including by email or in-product notice.

15. Contact and complaints

Questions, requests or privacy complaints can be sent to dan@popurise.com. We will respond within a reasonable time. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner at oaic.gov.au.