Privacy Policy

Ctrack Australia Pty Ltd (ABN 15 107 350 671) operates as part of the global Ctrack network, with over 40 years of experience in fleet management and telematics solutions. We are committed to the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth) and maintain ISO 27001 Stage 1 approval for information security management.

This Ctrack privacy policy applies to all personal information collected through our website, Ctrack platform, mobile applications, hardware devices, and customer interactions.

Information We Collect

Personal Information You Provide

We collect information that you voluntarily provide when you:

• Request a demo or contact us for information
• Create an account or register for our services
• Subscribe to newsletters or marketing communications
• Complete surveys or provide feedback
• Apply for employment opportunities

This may include your name, email address, phone number, company name, job title, postal address, and any other information you choose to provide.

Information Automatically Collected

When you access our website or use our services, we automatically collect:

• Device Information: IP address, browser type, operating system, device identifiers
• Usage Data: Pages viewed, time spent on pages, links clicked, referring URLs
• Location Data: General geographic location based on IP address
• Cookies and Tracking Technologies: As detailed in our cookie policy below

Fleet Telematics Data

For customers using our fleet management solutions, we collect:

• Vehicle Data: GPS location, speed, distance travelled, engine diagnostics, fuel consumption
• Driver Data: Driver identification, driving hours, fatigue management records (where applicable)
• Video Data: Dash cam footage and AI-powered driver monitoring data (where video telematics is deployed)
• Compliance Data: Electronic work diary records, chain of responsibility documentation

How We Use Your Information

We use the information we collect for the following purposes:

Service Delivery

• Provide, operate, and maintain our fleet management platform and services
• Process transactions and send related information
• Provide customer support and respond to inquiries
• Send technical notices, updates, and security alerts
• Generate analytics and reports as requested by customers

Business Operations

• Improve and develop our products and services
• Conduct research and analysis to better understand user needs
• Detect, prevent, and address technical issues or security threats
• Comply with legal obligations and regulatory requirements
• Enforce our terms and conditions

Marketing and Communications

• Send promotional materials and newsletters (with your consent)
• Provide information about products, services, and industry insights
• Conduct surveys and gather feedback
• Personalize your experience on our website and platforms

Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

Service Providers

We engage trusted third-party service providers to perform functions on our behalf, such as hosting services, data analytics, customer relationship management, email delivery, and payment processing. These providers have access only to information needed to perform their functions and are contractually obligated to maintain confidentiality.

Business Customers

For fleet telematics customers, vehicle and driver data is accessible to authorized personnel within your organization as determined by your account settings and permissions.

Legal Requirements

We may disclose your information where required by law or in response to valid legal processes, including:

• Compliance with court orders, subpoenas, or government requests
• Protection of our rights, property, or safety
• Investigation of fraud, security issues, or illegal activities
• Enforcement of our terms and policies

Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the acquiring entity, subject to this privacy policy.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Our security practices include:

ISO 27001 Stage 1 Approval

Ctrack Australia maintains ISO 27001 Stage 1 approval, demonstrating our commitment to information security management best practices. This internationally recognised standard validates our systematic approach to managing sensitive information.

Technical Safeguards

• Encryption of data in transit and at rest
• Secure access controls and authentication mechanisms
• Regular security assessments and penetration testing
• Intrusion detection and monitoring systems
• Secure data center facilities with physical access controls

Australian Data Hosting

All customer data is hosted in Australian data centers, providing additional security and compliance with local data sovereignty requirements.

Note: While we take extensive measures to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but commit to promptly notifying affected parties in the event of a data breach as required by law.

Your Rights and Choices

Under Australian privacy law, you have the following rights regarding your personal information:

Access and Correction

You have the right to request access to the personal information we hold about you and to request correction of any inaccurate or incomplete information. We will respond to your request within 30 days.

Marketing Opt-Out

You can opt out of receiving marketing communications at any time by clicking the unsubscribe link in our emails, updating your account preferences, or contacting us directly at [email protected].

Data Deletion

You may request deletion of your personal information, subject to legal and contractual retention requirements. Some information may need to be retained for compliance, legal, or legitimate business purposes.

Account Deactivation

Active service customers can request account deactivation by contacting their account manager or customer support. Deactivation procedures will follow your service agreement terms.

Complaints

If you have concerns about how we handle your personal information, please contact our Privacy Officer at [email protected]. We will investigate and respond to your complaint within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect information about your browsing activities and to provide you with a better experience.

What Are Cookies?

Cookies are small text files placed on your device when you visit a website. They help websites remember your preferences and improve functionality.

Types of Cookies We Use

Managing Cookies

Most web browsers allow you to control cookies through settings. You can usually set your browser to refuse cookies or alert you when cookies are being sent. Note that disabling cookies may affect website functionality.

Third-Party Services

Our website and services may contain links to third-party websites, plugins, and integrations. We use trusted third-party services for specific functions:

Analytics

We use Google Analytics to understand how visitors use our website. Google Analytics collects information anonymously and reports website trends without identifying individual visitors. View Google's privacy policy at policies.google.com/privacy.

Email and Marketing

We use email service providers and marketing platforms to send communications. These providers are contractually bound to protect your information and use it only for authorized purposes.

Payment Processing

Payment transactions are processed through secure third-party payment gateways. We do not store complete credit card information on our servers.

Important: We are not responsible for the privacy practices of third-party websites or services. We encourage you to review their privacy policies before providing personal information.

Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this privacy policy, unless a longer retention period is required or permitted by law.

Retention Criteria

• Active Accounts: Retained for the duration of your service agreement plus applicable record-keeping requirements
• Fleet Telematics Data: Typically retained for 12 months for operational purposes, longer if required for compliance or legal obligations
• Marketing Data: Retained until you opt out or request deletion
• Financial Records: Retained for 7 years as required by Australian tax and accounting laws
• Compliance Records: Retained as required by transport and workplace safety regulations

Secure Deletion

When information is no longer required, we securely delete or anonymize it using industry-standard data destruction methods.

Children's Privacy

Our services are designed for businesses and are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children.

If we become aware that we have inadvertently collected information from a child under 18, we will take steps to delete that information as soon as possible. If you believe we have collected information from a child, please contact us at [email protected].

Changes to This Privacy Policy

We may update this Ctrack privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

We will notify you of any material changes by posting the updated policy on our website with a revised "Last updated" date. For significant changes, we may provide additional notice, such as email notification to account holders.

Your continued use of our services after changes become effective constitutes acceptance of the updated privacy policy. We encourage you to review this page periodically.

Contact Information

If you have questions, concerns, or requests regarding this Ctrack privacy policy or our data practices, please contact our Privacy Officer:

We aim to respond to all privacy inquiries within 30 days. For urgent matters, please indicate the urgency in your communication.