§P  /  PRIVACY POLICY NSW, AUSTRALIA

Privacy policy.

Effective 16 April 2026

Plain English version

We collect the minimum we need to run the service. We don't sell your data. We don't do creepy tracking. Here's exactly what we collect and why.

Who we are

The IT Dept Pty Ltd (ABN 12 665 405 505), Central Coast, NSW, Australia. Contact us at hello@theitdept.au.

What we collect

Account information

When you sign up, we collect your name, email address, and a password. Your password is hashed with bcrypt — we can never see it in plain text.

Message data

When you send an SMS through our API, we store the recipient number, message text, delivery status, and timestamps. This is necessary to provide the service, show you delivery reports, and troubleshoot issues.

API keys

We store a cryptographic hash of your API keys, not the keys themselves. We also record which key was last used and when, so you can manage them.

Server logs

Our servers log IP addresses, request timestamps, and request paths for operational and security purposes. These logs are retained for a limited period and are not shared with third parties.

What we don't collect

  • We don't use analytics or tracking scripts on our website
  • We don't use advertising cookies or third-party trackers
  • We don't collect or store payment card details (we don't charge yet)
  • We don't buy data from third parties

How we use your data

Straightforward:

  • To run the service — send your messages, show you delivery reports, authenticate your API requests
  • To communicate with you — service updates, security notices, or if we need to contact you about your account
  • To keep things secure — detect abuse, prevent fraud, protect the service

Who we share data with

Message content and recipient numbers pass through carrier networks in order to deliver your SMS. That's the nature of SMS — there's no way around it.

Beyond that, we don't share your personal data with anyone unless:

  • You ask us to
  • We're legally required to (court order, law enforcement request, etc.)
  • It's necessary to protect our rights or safety

Where your data lives

Our servers are hosted in Sydney, Australia. Your data stays in Australia.

How long we keep data

Account data is kept while your account is active. Message data is retained for a reasonable period to provide delivery reports and support. If you close your account, we'll delete your data within 30 days, except where we're legally required to keep it.

Your rights

Under Australian privacy law, you have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Ask us to delete your account and data
  • Complain to the Office of the Australian Information Commissioner (OAIC) if you think we've mishandled your data

To exercise any of these rights, email hello@theitdept.au.

Changes to this policy

If we update this policy, we'll post the new version here and update the date at the top. For significant changes, we'll notify you via email.

Questions?

hello@theitdept.au — we're happy to answer anything.