Privacy Policy

Cloud Start Solutions ("we", "us", "our") is an Australian-based managed services provider. We are committed to protecting your personal information and complying with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

This policy explains what personal information we collect, why we collect it, how we use and disclose it, and how you can access or correct it.

1. Information we collect

We collect personal information through two main channels on this website:

Contact form

When you send us a message via the contact form we collect your name, business name, email address, phone number, and the content of your message. This information is used solely to respond to your enquiry.

Free domain security check

When you use our free security scan tool we collect your domain name and email address. We use your email address to deliver the scan results to you. Your domain name is submitted to the following third-party services as part of the scan:

• Public DNS resolvers (to check SPF, DKIM, DMARC, and MX records)
• Your domain's web server (to check TLS configuration and HTTP security headers)
• Have I Been Pwned (haveibeenpwned.com): to check whether email addresses from your domain appear in known data breaches. Only the domain name is sent; individual email addresses from your domain are not sent.

Scan results are processed to generate your report and are not retained beyond what is necessary to deliver that report.

Automatically collected information

Like most websites, our hosting provider (Vercel) automatically logs certain technical information when you visit our site, including your IP address, browser type, referring URL, and pages visited. This information is used for security and performance monitoring and is subject to Vercel's privacy policy.

2. How we use your information

We use the personal information we collect to:

• Respond to your contact form enquiries
• Deliver your domain security scan results by email
• Follow up with you if you have expressed interest in our services (you can opt out at any time)
• Comply with legal obligations

We do not use your personal information for any purpose that you would not reasonably expect given the context in which it was collected. We do not sell, rent, or trade your personal information to third parties for marketing purposes.

3. Disclosure of your information

We may share your information with third-party service providers who assist us in operating our website and delivering our services. These providers are required to handle your information in accordance with applicable privacy laws and our instructions.

Current service providers include:

• Resend: email delivery service used to send scan results and contact form acknowledgements
• Vercel: website hosting and serverless function infrastructure
• Have I Been Pwned: breach data lookup (domain name only, as described above)

We may also disclose your information where required or authorised by Australian law, including to law enforcement agencies or courts.

4. Storage and security

Your personal information is stored on servers located in Australia and/or the United States (via our service providers). We take reasonable steps to protect your information from misuse, interference, loss, and unauthorised access, modification, or disclosure. These steps include encrypted data transmission (HTTPS), access controls, and working only with reputable service providers.

We retain your personal information only for as long as necessary to fulfil the purpose for which it was collected, or as required by law.

5. Your rights

Under the Australian Privacy Principles you have the right to:

• Access: request a copy of the personal information we hold about you
• Correction: request that we correct information that is inaccurate, out of date, incomplete, irrelevant, or misleading
• Anonymity: where practicable, interact with us without identifying yourself (however, this may limit our ability to provide services)
• Opt out: opt out of any marketing communications at any time by contacting us or using the unsubscribe link in any email

To exercise any of these rights, contact us at hello@cloudstartsolutions.com.au. We will respond within a reasonable time (generally within 30 days).

6. Cookies

Our website does not currently use advertising or tracking cookies. We may use functional cookies (such as session cookies) where necessary for the website to operate. No third-party advertising networks are used.

7. Third-party links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to read their privacy policies.

8. Changes to this policy

We may update this privacy policy from time to time. The current version will always be available at https://cloudstartsolutions.com.au/privacy. Material changes will be noted with an updated “Last updated” date.

9. Complaints

If you believe we have breached your privacy or have a concern about how we have handled your personal information, please contact us in the first instance at hello@cloudstartsolutions.com.au. We will investigate and respond to your complaint within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

10. Contact us

For any privacy-related questions or requests, contact the Cloud Start Solutions privacy contact at: