Legal
Privacy Policy
Last updated: 15 July 2026
We are dedicated to empowering Small and Medium Enterprises (SMEs) with the right tools and knowledge to succeed in today's fast-paced environment. At SMEC AI, your privacy is our top priority, and we are committed to protecting the personal information you share with us as you explore our tailored training, consultation, and innovative AI products — including when you speak with our AI voice assistant.
SMEC AI offers a platform designed specifically for SMEs, featuring:
- Online Learning: Access expertly crafted video courses tailored to help your business thrive.
- AI Products and Consultations: Discover purpose-driven AI solutions that seamlessly integrate into your operations for enhanced efficiency.
- AI Studio: Learn how to effectively position and pitch your business for optimal performance and fundraising success.
This Privacy Policy outlines how we collect, use, and safeguard your personal information when you engage with SMEC AI.au. It details the types of information we gather, the purposes for which we use it, and how it ultimately benefits you as a valued user.
By using our website, you agree to the terms outlined in this Privacy Policy. If you do not agree with these terms, we kindly ask that you refrain from accessing, browsing, or creating an account on SMEC AI.au. Your trust is essential to us, and we want to ensure that you feel informed and secure in how we handle your information.
Information We Collect
At SMEC AI, we are committed to building trust and ensuring that you have a clear understanding of your personal data's role in your journey with us. Here's a breakdown of the types of personal information we collect and the methods we use to gather it.
Types of Personal Information Collected
1. Contact Data
When you create an account with us, we ask for your name, email address, phone number, and billing/mailing addresses. This information allows us to communicate effectively with you, process your orders, and provide timely support.
2. Demographic Data
We collect information about your location, age, and other demographic details. This helps us understand our audience better and tailor our services to meet your needs.
3. Profile Data
As part of the account creation process, you'll set up a username and password. This information is crucial for managing your account securely and ensuring only you have access to your data.
4. Communications Data
Any correspondence between you and SMEC AI.au, whether through our website, email, or social media, falls under this category. We gather this information to improve our services and respond to your inquiries.
5. User-Generated Content
We encourage you to share your thoughts and insights! Any materials you upload, such as documents, feedback, or course-related content, are considered user-generated content. This enriches our community and helps us improve our offerings based on your input.
6. Voice and Call Data
When you choose to speak with our AI voice assistant, we collect an audio recording of the call and a written transcript of what is said, along with related metadata such as the date, time and duration of the call. Voice calls are used to answer your enquiry and, as our consent prompt explains, may be recorded for quality and training purposes. Recording is optional: we ask for your consent before a call begins, and you can decline or end the call at any time. Please avoid sharing sensitive information (such as health, financial account or government identifier details) during a voice call, as it is not necessary for us to assist you.
7. Other Information
We may collect additional information that isn't explicitly listed here, which we will use as described in this Privacy Policy or otherwise disclosed at the time of collection.
Methods of Data Collection
To ensure a seamless experience on SMEC AI.au, we use several methods to collect your information:
1. Direct Collection
We collect information directly when you fill out forms, register for an account, or sign up for our services. This is your opportunity to provide us with accurate details that help us serve you better.
2. Automatic Collection
We also automatically gather information as you navigate our website. This includes:
- Device Data:Information about the device you're using, such as its operating system, browser type, and IP address.
- Online Activity Data: Insights into your interactions with our website, including pages viewed, time spent on pages, and navigation paths.
- Communication Interaction Data: Information about your interactions with our emails, such as whether you opened them or clicked on links.
3. Cookies
We utilise cookies and similar technologies to enhance your experience on our site. These small data files help us remember your preferences and analyse user behaviour. You can find more details about our use of cookies in our Cookie Notice.
4. Children's Information
We do not knowingly collect personal information from children under the age of 18. If we become aware that we have inadvertently collected such information, we will take steps to delete it promptly.
How We Use Your Information
At SMEC AI.au, the information you share with us is used to create a more personalised and effective experience tailored just for you. We are committed to using your personal information responsibly and transparently. Here's a closer look at how we utilise your data:
Purpose of Data Usage
1. To Provide and Improve Services
We use your information to operate and enhance our platform, ensuring that our courses and AI products are effective and user-friendly. This includes everything from developing new features to troubleshooting issues that may arise. By analysing your feedback and usage patterns, we continuously strive to improve our offerings and create an exceptional learning experience tailored to your needs.
2. To Create, Administer, and Teach Courses
Your data plays a crucial role in the development and delivery of our courses. We use the information collected to personalise your learning experience, assess your performance, and ensure you have access to all necessary materials. Whether you're engaging with course content or earning a certificate, your information helps us provide a seamless educational journey.
3. To Communicate with You
Staying connected is important! We use your contact details to send you important updates about our services, inform you of new courses, products, or features, and respond to any inquiries you may have. Whether it's a reminder about a course, a newsletter, or information about maintenance on our site, we aim to keep you informed and engaged.
4. To Personalise User Experiences
Every user is unique, and so are your preferences. We analyse your interactions with SMEC AI.au to tailor your experience to better suit your interests. From suggesting relevant courses to providing personalised recommendations, our goal is to make your time with us as enjoyable and beneficial as possible.
5. For Marketing Purposes
We may use your information to send you promotional communications about our services, upcoming events, and special offers that align with your interests. You can opt out of receiving these marketing emails at any time by clicking the “unsubscribe” link included in our messages. We want to ensure that you only receive information that you find valuable.
6. To Support Research and Development
Your participation in our courses helps us understand how learners engage with our content. Also, your request for consultation and productivity tools, help us to understand the pain points and major issues SMEs face. We use this information to conduct research and improve our offerings, ensuring that we continue to provide high-quality resources that meet the needs of SMEs.
7. To Maintain Security and Compliance
We take your privacy and security seriously. Your information helps us track and prevent fraudulent activities, ensure compliance with legal obligations, and maintain the integrity of our platform. We may use your data to investigate suspicious behaviour and protect both you and our services from potential threats.
8. With Your Consent
In certain situations, we may ask for your explicit consent to collect, use, or share your personal information for specific purposes. Your trust is important to us, and we will only proceed with your data as described at the time of collection.
Automated Decision-Making
From 10 December 2026, Australian privacy law requires us to tell you when we use computer programs to make, or to do something substantially and directly related to making, a decision that could significantly affect your rights or interests. We want to be upfront about where automation sits in our services.
1. How Our AI Voice Assistant Works
When you start a voice call, several automated systems work together, and personal information moves between them:
- You speak, and your speech becomes text. Our voice platform captures the call audio and converts what you say into a written transcript in close to real time.
- An AI language model interprets it. The transcript is processed by an AI model that works out what you are asking and decides how to reply.
- A recommendation engine selects what you are told. The assistant passes what you have told it to an internal recommendation service. That service — not a member of our team — determines which of our courses, AI products, consultations and next steps are surfaced back to you during the call.
- Automation routes the outcome to us. The call details, transcript and any enquiry you raise are passed through our workflow automation so that we can follow up with you.
The practical point is this: the information you provide during a call shapes what the assistant tells you, and that selection is made automatically.
2. What Information the Automated Systems Use
The recommendation engine acts on what you tell the assistant during the call — how you describe your business, its size and industry, the problems you are trying to solve, and the questions you ask — together with the contact details you provide and basic call metadata such as date, time and duration. It does not draw on credit reporting information, and we do not buy personal information about you from data brokers to feed it.
3. Where Else We Use Automated Processing
We also use automated processing to personalise course and product recommendations on our website, to analyse how our website is used, and to help detect fraudulent or suspicious activity that could threaten your account or our platform.
4. What These Decisions Do and Do Not Determine
These recommendations are informational. They exist to help you find services that are relevant to you. They are not used to decide whether you are eligible for a service, what you are charged, or whether we will work with you. We do not use automated decision-making to assess creditworthiness, employment suitability, or entitlement to any benefit. Decisions that carry a material commercial effect for you — engagement terms, scope and pricing — are made by our team, and a person is always involved before we enter into an arrangement with you.
5. AI Output Can Be Wrong
Our AI voice assistant can misunderstand you, and it can be confidently incorrect. What it tells you is general information about our services, not professional, legal, financial or technical advice, and you should not rely on it as the sole basis for a business decision. If something the assistant says matters to your decision, please confirm it with us before acting on it.
6. Human Review and Your Options
You can always speak to a person instead of relying on an automated recommendation. Before a call begins we ask for your consent, and you can decline, or end a call at any time — your consent choice is remembered in your browser, so clearing your browser storage will cause us to ask again. If you would like a human to review anything the AI voice assistant has told you, or if you object to your information being processed in this way, please contact our Privacy Officer at info@smecai.au. Choosing not to use the voice assistant does not affect your access to our services — you can reach us by email instead.
User Rights
At SMEC AI.au, we believe that you should have control over your personal information. We're committed to ensuring that you are aware of your rights regarding the data you share with us. Here's a breakdown of your rights and what they mean for you:
1. Right to Access Personal Information
You have the right to know what personal information we hold about you. This means you can request access to your data at any time. We want to be transparent, so if you want to see what information we have collected, just let us know, and we'll provide it to you in a clear and understandable format.
2. Right to Correct Inaccurate Information
If you find that any of the personal information, we have about you is incorrect or outdated, you have the right to request corrections. It's important to us that your data is accurate, so if something doesn't seem right, please reach out and we'll help you make the necessary updates.
3. Right to Delete Personal Information
If you no longer wish to have your personal information stored with us, you have the right to request its deletion. We respect your decision and will ensure that your data is removed from our records, as long as we are not required to keep it for legal or contractual reasons.
4. Right to Restrict or Object to Processing
You have the right to ask us to limit or stop processing your personal information. If you feel that your data is being used in a way that you don't agree with, or if you believe that we no longer need to process your information, you can express your objection, and we will take your concerns seriously.
5. Right to Data Portability
This right allows you to request a copy of your personal information in a structured, commonly used format. This can be useful if you want to transfer your data to another service provider. We want to make this process as easy as possible for you, so just let us know if you need your information in a portable format.
Data Sharing and Disclosure
At SMEC AI.au, we value your trust, and we want to be transparent about how your personal information may be shared. While we take great care to protect your data, there are certain circumstances where we may need to disclose your information. Here's a closer look at when and why we might share your information:
Circumstances Under Which Information May Be Shared
1. With Third-Party Service Providers
To provide you with the best possible experience, we work with trusted third-party service providers. This includes payment processors who handle your financial transactions securely, as well as IT support that helps us host, maintain, and improve our platform. These partners assist us in delivering our services, and while they have access to your information necessary for their roles, they are required to protect your data and use it only for the intended purposes.
2. For Legal Obligations
Sometimes, we may need to share your information to comply with legal requirements. This includes responding to subpoenas, court orders, or other legal processes. We also share information when necessary to protect our rights or the rights of others, or to investigate and prevent illegal activities. Ensuring compliance with laws is essential, and we take these responsibilities seriously.
3. With Business Partners and Affiliates
We may have the need to collaborate with business partners and affiliates for co-marketing initiatives or events that may benefit our users. When this happens, we might share your information with them to enhance your experience, such as informing you about new courses or special product offers. Rest assured; we only work with partners who share our commitment to protecting your data.
4. In the Context of Business Transactions
If we undergo any significant business changes, like mergers, acquisitions, or reorganizations, your information may be shared as part of that process. In these situations, your data could be transferred to the new entity or partner, but we will ensure that any successor continues to protect your information in accordance with this Privacy Policy.
While we may share your information in these circumstances, we always strive to do so responsibly and in a way that respects your privacy.
Overseas Disclosure (Cross-Border)
Some of the service providers we rely on to run SMEC AI.au — in particular our AI voice assistant, workflow automation, hosting, analytics and communications tools — store or process personal information outside Australia. Where practicable we keep your information in Australia, but the providers that power these features are likely to process it in the United States, the European Union and the United Kingdom, and potentially other countries where those providers or their sub-processors operate.
Before disclosing your information to an overseas recipient, we take reasonable steps to ensure they handle it consistently with the Australian Privacy Principles, including through contractual data-protection commitments. Where you provide personal information through our AI voice assistant, you consent to that information being disclosed to and processed by our overseas providers for the purposes described in this policy. You should be aware that, where you consent to an overseas disclosure, we may not be accountable under the Privacy Act 1988 (Cth) if the overseas recipient handles your information in a way that breaches the Australian Privacy Principles, and you may not be able to seek redress under that Act.
Data Retention
We keep your personal information only for as long as it is reasonably necessary for the purposes described in this policy, or as required by law. In particular, voice call recordings and transcripts are retained for up to 24 months, after which they are deleted or de-identified unless we are required to retain them to meet a legal or contractual obligation. When information is no longer needed, we take reasonable steps to destroy it or ensure it is de-identified.
Data Security
At SMEC AI.au, we understand that your personal information is sensitive, and we take its security seriously. Protecting your data is our top priority, and we are committed to implementing robust measures to safeguard it. Here's how we work to keep your information secure:
1. Technical Safeguards
We use advanced technology to protect your personal information. This includes encryption methods that ensure your data is secure when transmitted over the internet. Firewalls are also employed to create barriers between our internal systems and potential external threats. These technical measures are designed to prevent unauthorised access and keep your information safe.
2. Organizational Safeguards
Our team is trained to prioritise data security. We have strict internal policies and procedures in place that govern how personal information is handled. Access to your data is limited to only those who need it to perform their job functions. Regular training sessions ensure that our employees are aware of best practices in data protection and how to respond to potential security threats.
3. Physical Safeguards
We also take physical security seriously. Our servers and data storage locations are protected by various security measures, including controlled access to facilities and surveillance systems. These measures help to ensure that only authorised personnel can access sensitive information and infrastructure.
4. Commitment to Monitoring and Auditing
Security is an ongoing process, not a one-time effort. We regularly monitor and audit our security practices to identify any potential vulnerabilities. This proactive approach allows us to address issues before they become problems, ensuring that your data remains protected over time. We continuously evaluate and enhance our security measures to stay ahead of emerging threats.
5. Acknowledgment of Inherent Risks
While we do everything, we can to protect your information, it's important to acknowledge that no system is entirely foolproof. There are inherent risks associated with any online service, including the possibility of cyberattacks or data breaches. We want you to be aware of these risks and assure you that we are continuously working to mitigate them through our security practices and by staying informed about the latest threats.
Data Breaches and Notification
Because we hold personal information — including voice recordings and transcripts processed through our AI voice assistant and the automation systems behind it — we maintain a data breach response plan aligned with the Notifiable Data Breaches (NDB) scheme under the Privacy Act 1988 (Cth). If a system that holds your information were compromised, this is how we respond.
1. Contain
As soon as we become aware of a suspected breach, we act quickly to contain it — for example, by shutting down or isolating the affected system, revoking compromised credentials, and taking steps to recover or secure the data and prevent any further unauthorised access.
2. Assess
We promptly assess what happened, what personal information was involved, and whether the breach is likely to result in serious harm to any affected individuals. We take all reasonable steps to complete this assessment within 30 days of becoming aware of the grounds for suspecting a breach, and sooner wherever possible.
3. Notify
If we determine that an eligible data breach has occurred — one likely to result in serious harm that we cannot prevent through remedial action — we will notify the affected individuals and the Office of the Australian Information Commissioner (OAIC) as soon as practicable. Our notification will describe the nature of the breach, the kinds of information involved, and the steps you can take to protect yourself, along with the steps we have taken in response.
4. Review
After responding to a breach, we conduct a review — including a root-cause analysis — and update our systems, policies and staff training to reduce the likelihood of a similar breach happening again.
If you believe your information may have been affected by a data breach, please contact our Privacy Officer at info@smecai.au. You can also learn more about the NDB scheme and your rights at the OAIC's website, oaic.gov.au.
Changes to This Privacy Policy
At SMEC AI.au, we understand that privacy is an evolving matter. As we continue to grow and adapt, our Privacy Policy may need to change to reflect new practices or comply with laws. We want you to be fully informed about how we handle your personal information, so here's how we'll communicate any changes to this policy:
1. Procedure for Updating the Privacy Policy
Whenever we make updates to our Privacy Policy, we'll take the necessary steps to review and revise the document carefully. We aim to ensure that any changes are clear, transparent, and beneficial for our users. Our goal is to keep the policy up-to- date with the latest practices and legal requirements.
2. Methods of Notifying Users About Significant Changes
We believe in keeping you in the loop! If there are significant changes to our Privacy Policy that might impact how we handle your personal information, we'll make sure to notify you in a timely manner. Here's how we'll do it:
- Website Notices:You'll see a prominent notice on our website, alerting you to the changes. We want to ensure you have easy access to the updated policy whenever you visit SMEC AI.au.
- Emails:For those subscribed to our newsletters or other communications, we'll send out an email detailing the updates. This way, you'll receive direct information about what's changed and how it might affect you.
3. Date of Last Update for Transparency
To maintain transparency, we will always include the date of the last update at the top of the Privacy Policy. This way, you can easily see when the document was last reviewed or modified. We encourage you to check back regularly to stay informed about our practices.
Contact Information
If you have any questions, concerns, or feedback regarding our Privacy Policy or how we handle your personal information, please don't hesitate to reach out. Your thoughts are important to us, and we want to ensure you feel supported and informed.
For general inquiries or specific questions about your personal data — or to access or correct your information — you can reach our Privacy Officer by email at info@smecai.au. We strive to respond promptly to all messages.
If you wish to make a complaint about how we have handled your personal information, please email us at info@smecai.au with the details of your concern. We will acknowledge your complaint, investigate it, and aim to respond within a reasonable time. If you are not satisfied with our response, you can escalate your complaint to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.