PRIVACY POLICY

INTRIAL Pty Ltd ACN 689 160 281
Last updated: 24 July 2025

1. ABOUT THIS POLICY

This Privacy Policy explains how INTRIAL Pty Ltd ("InTrial", "we", "us", "our") handles personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles ("APPs"). It applies to all personal information we collect and hold in the course of operating our litigation‑support business, including via our website located at intrial.com.au ("Site") and through client engagements. By accessing the Site or engaging our services you acknowledge you have been informed of the terms of this Policy.

2. THE INFORMATION WE COLLECT

We may collect and hold the following categories of personal information:

  1. Identification and contact details – names, job titles, employer, postal address, telephone number, email address.

  2. Matter‑related information – documents, communications and evidence provided to us or generated by us while assisting clients with litigation or regulatory matters. This may contain sensitive information (e.g. health, criminal or financial data).

  3. Technical and usage information – IP address, browser type, device identifiers, referral URLs, pages viewed and events captured by cookies and Google Analytics.

  4. Any other information you choose to provide to us.

3. HOW WE COLLECT INFORMATION

We collect personal information:

  1. directly from you when you submit a web form, send us an email, call us or otherwise interact with us;

  2. from our clients, their legal representatives and other parties to a matter;

  3. automatically through cookies and similar technologies when you use our Site; and

  4. from publicly available sources or third parties where permitted by law.

4. WHY WE COLLECT, USE AND DISCLOSE INFORMATION

We collect, hold, use and disclose personal information for the following purposes:

  1. to provide litigation‑support and related services to our clients;

  2. to respond to enquiries and manage our relationship with clients and prospective clients;

  3. to operate, monitor and improve our Site, including through analytics;

  4. to comply with court orders, discovery obligations and other legal or regulatory requirements;

  5. to defend or enforce our legal rights; and

  6. for any purpose to which you have consented or that is otherwise authorised or required by law.

5. ANONYMITY AND PSEUDONYMITY

If you choose not to provide requested information we may be unable to respond to your enquiry or supply our services.

We do not use personal information to send marketing communications without explicit prior consent.

6. DISCLOSURE TO THIRD PARTIES

We may disclose personal information to:

  1. our trusted service providers who assist us to operate our business, including:

    • Australian hosted cloud‑infrastructure providers;

    • Microsoft 365 for email and productivity (servers located in Australia);

    • Google Analytics for website statistics (data processed primarily in the United States);

  2. courts, tribunals, regulators, law‑enforcement agencies or opposing parties when legally compelled; and

  3. advisers or insurers where reasonably necessary for the purposes set out above.

  4. We do not sell or rent personal information to third parties.

7. OVERSEAS DISCLOSURE

Some personal information may be stored or processed outside Australia (e.g. by Google Analytics in the United States or other regions). Where this occurs, we take reasonable steps to ensure that the overseas recipient will handle the information in a manner consistent with the APPs.

8. COOKIES & ANALYTICS

The Site uses cookies and Google Analytics to collect aggregated usage statistics. Google Analytics retains user‑level data for a maximum of 14 months. You may disable cookies via your browser; however this may affect Site functionality.

9. DATA SECURITY

We maintain appropriate technical and organisational measures to protect personal information, including:

  1. hosting in ISO 27001‑certified Australian data centres;

  2. encryption in transit and at rest for client data;

  3. multi‑factor authentication for staff accounts;

  4. role‑based, need‑to‑know access controls;

  5. regular security monitoring and incident‑response procedures.

10. DATA BREACH NOTIFICATION 

We maintain an incident-response plan aligned with the Notifiable Data Breaches scheme. If we have reasonable grounds to believe an eligible data breach has occurred, we will notify affected individuals and the Office of the Australian Information Commissioner as soon as practicable, including recommended protective steps.

11. RETENTION & DESTRUCTION

Client‑matter data is retained for seven (7) years after the matter closes unless a longer period is required by law or agreed with the client. Contact‑form information is retained for up to 12 months after the enquiry is finalised. Google Analytics data is retained for up to 14 months. When personal information is no longer required we take reasonable steps to securely destroy or de‑identify it.

12. UNSOLICITED PERSONAL INFORMATION

If we receive personal information that we did not request and which is not reasonably necessary for our functions, we will, if lawful, destroy or de-identify it as soon as practicable.

13. DATA QUALITY

We take reasonable steps to ensure that personal information we collect, hold, use and disclose is accurate, up-to-date and complete. You can help us by letting us know promptly if your details change.

14. ACCESS & CORRECTION

You may request access to, or correction of, the personal information we hold about you by contacting us using the details below. We may require verification of your identity and, where permitted by law, charge a reasonable fee for providing access.

15. COMPLAINTS

If you have concerns about our handling of your personal information, please contact us using the details below. We will respond within a reasonable time (usually 30 days). If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner.

16. CHANGES TO THIS POLICY

We may amend this Policy from time to time. The updated version will be posted on our Site and will be effective from the date of posting.

17. CONTACT US

Privacy Officer InTrial Pty Ltd Email: contact@intrial.com.au

This Policy is intended as a general statement and does not constitute legal advice. Nothing in this Policy limits your rights under the Privacy Act 1988 (Cth).