Privacy Policy

We collect minimal data. We don't sell it. We don't share it with advertisers. We use it to run the service and occasionally email you about your account. That's it.

serverless.au is operated by The IT Dept Pty Ltd (ABN 12 665 405 505), an Australian company. When we say "we", "us", or "our", that's who we mean.

We comply with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth). If you're into that sort of reading.

We collect:

• Account info — Your email address and name from GitHub when you sign in
• Repository data — Access to repositories you explicitly connect for deployment
• Usage data — Basic analytics about how you use the service (page views, feature usage)
• Payment info — Handled entirely by Stripe. We never see your card number
• Log data — Standard server logs (IP addresses, browser info, timestamps)

We don't collect sensitive information. We don't track you across the web. We don't build advertising profiles.

We use your information to:

• Run the service (obviously)
• Process payments
• Send you important account emails (build failures, billing issues)
• Improve the service based on usage patterns
• Respond when you contact us

We don't use your data for marketing unless you opt in. We don't sell it. We don't rent it. We don't "monetise" it.

Your data is stored on servers in Australia. That's kind of the whole point of the service.

Some data may be processed by third-party services (GitHub, Stripe) which have their own privacy policies. We've picked reputable providers, but you should review their policies if that matters to you.

Your data is accessible to you, and to us when necessary to operate the service or respond to support requests.

We won't share your data with third parties except:

• When required by law (court orders, legal obligations)
• To prevent fraud or security issues
• With your explicit consent

If we're ever required to hand over data to authorities, we'll tell you unless we're legally prevented from doing so.

We keep your data while your account is active. If you delete your account, we delete your data within 30 days, except:

• Payment records (we're legally required to keep these for 7 years)
• Anonymised analytics (can't be traced back to you)

Under Australian privacy law, you can:

• Access — Request a copy of your personal data
• Correct — Ask us to fix inaccurate information
• Delete — Request deletion of your account and data
• Complain — Lodge a complaint with the OAIC if you're unhappy with how we handle your data

To exercise these rights, email us at hello@theitdept.au.

We use cookies for authentication (so you stay logged in) and basic analytics. That's it. No tracking cookies. No advertising cookies. No cookie consent popup because we're not doing anything dodgy.

We take reasonable steps to protect your data. HTTPS everywhere. Encrypted at rest. Access controls. Regular security reviews. The usual stuff competent developers do.

No system is 100% secure. If we ever have a data breach, we'll notify affected users promptly.

We might update this policy occasionally. If we make significant changes, we'll email you. Minor tweaks won't get an announcement.

Questions? Complaints? Compliments?

Email us: hello@theitdept.au

The IT Dept Pty Ltd
ABN 12 665 405 505
Australia