Protein LinkAll Legal Documents

Privacy Policy

Version: 2026-06-legal-l1

1. Information We Collect

We collect the following categories of information:

  • Account information: name, email address, phone number, company name, ABN, company type, and password (stored as a one-way hash).
  • Transaction data: order requests, order history, pricing, and delivery details.
  • Usage data: pages visited, features used, and session information for platform improvement.
  • Legal acceptance records: timestamps, IP addresses, and user agent strings recorded when you accept platform agreements.

2. How We Use Your Information

  • To provide and operate the marketplace platform.
  • To process transactions and facilitate communication between buyers and suppliers.
  • To verify business identity and prevent fraud.
  • To send platform notifications and important service updates.
  • To comply with legal obligations, including food safety reporting.

3. Payment Information

Payment processing is handled by Stripe. Protein Link does not store credit card numbers, bank account details, or other sensitive payment credentials. Stripe’s privacy policy governs the handling of payment data.

4. Information Sharing

We share information only in the following circumstances:

  • Between transaction parties: Buyer and supplier company names and order details are shared to facilitate transactions.
  • Payment processing: Transaction details are shared with Stripe as required for payment processing.
  • Legal requirements: We may disclose information when required by law, including in response to food safety investigations or court orders.

5. Data Security

We implement reasonable security measures including encrypted connections (HTTPS), hashed passwords, role-based access controls, and structured audit logging. We do not store secrets, full cookies, authentication headers, or uploaded file contents in legal or audit metadata.

6. Data Retention

Account data is retained for the duration of your account and for a reasonable period thereafter to comply with legal and regulatory obligations. Transaction records are retained for a minimum of seven years as required by Australian tax law. Legal acceptance records are immutable and retained indefinitely.

7. Your Rights

You may request access to, correction of, or deletion of your personal information by contacting us. Deletion requests are subject to our legal retention obligations. We will respond to requests within 30 days.

8. Australian Privacy Act

This policy is drafted in accordance with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth). If you have a complaint about our handling of your personal information, you may contact us or lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

9. Changes to This Policy

We may update this policy from time to time. Material changes will be notified via email to registered users. The latest version is always available at this page.