Privacy Policy
1. Introduction
The Progress Collective (“we”, “us”, “our”) respects your privacy and is committed to protecting personal information that we collect from or about you when you use our websites, applications, and services (collectively, the “Services”).
This Privacy Policy explains how we collect, use, disclose, and protect personal information and the choices you have in relation to that information.
2. Scope
This Privacy Policy applies to individuals who access or use the Services, including visitors, registered users, and customers.
This policy does not apply to third-party websites, applications, or services that may be linked from the Services.
3. Personal Information We Collect
3.1 Information You Provide
- Account information (such as name, email address, and organisation)
- Authentication information (such as login credentials)
- Payment and subscription information
- Content you submit, upload, or generate using the Services, including process descriptions, documents, diagrams, and related artefacts
- Communications you send to us (for example, support requests)
3.2 Information Collected Automatically
- IP address and general location information
- Browser type, device type, and operating system
- Usage and interaction data
- Cookies and similar technologies
4. How We Use Personal Information
We use personal information to:
- Provide, operate, and maintain the Services
- Authenticate users and manage accounts
- Generate AI-assisted outputs and artefacts
- Improve and develop the Services
- Communicate with you about the Services
- Detect, prevent, and address misuse, fraud, or security issues
- Comply with legal obligations
We may aggregate or de-identify information so that it can no longer be associated with you and use it for analytics, research, and service improvement purposes.
5. AI Processing and Accuracy
The Services use artificial intelligence to generate outputs based on the information you provide.
AI-generated outputs are probabilistic and may be incomplete, incorrect, or unsuitable for your specific use case. You should not rely on AI-generated outputs as a sole source of truth or as a substitute for professional judgement.
You are responsible for reviewing, validating, and approving outputs before use, particularly where outputs relate to operational, regulatory, safety, or compliance decisions.
6. Disclosure of Personal Information
We may disclose personal information in the following circumstances:
- Service providers: to trusted third parties who assist us with hosting, authentication, payments, analytics, AI processing, and customer support, acting under our instructions
- Legal and safety reasons: where required by law or to protect the rights, safety, and security of users, the platform, or others
- Business changes: in connection with a merger, acquisition, restructuring, or sale of assets
We do not sell personal information.
6A. Service Providers
We rely on trusted third-party service providers to operate and support the Services. These providers may process personal information on our behalf under contractual obligations to protect confidentiality and security.
These providers may include services for:
- cloud hosting infrastructure
- database and authentication services
- AI processing technologies
- payment processing
- email communications
- analytics and monitoring
Examples of technology infrastructure providers may include Render, Supabase, Stripe, and other service providers required to operate the platform.
7. Data Retention
We retain personal information only for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements.
Retention periods depend on the nature of the information, the purpose for which it is processed, and applicable legal requirements.
8. Your Rights
Depending on your location, you may have rights to access, correct, delete, or restrict the processing of your personal information, and to withdraw consent where applicable.
Requests can be made by contacting us using the details below.
9. International Data Transfers
Personal information may be processed or stored in jurisdictions outside your country of residence. We take reasonable steps to ensure appropriate safeguards are in place.
10. Security
We implement technical, administrative, and organisational safeguards designed to protect personal information and platform data.
Security measures include, but are not limited to:
- encrypted HTTPS communications
- secure authentication mechanisms
- access controls and permissions management
- infrastructure monitoring and security protections
- restricted access to production systems
While we take reasonable steps to protect information, no system can be guaranteed to be completely secure.
11. Children
The Services are not directed to children under 13. We do not knowingly collect personal information from children under 13.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Changes will be reflected by updating the version and effective date on this page.
13. Contact Us
For privacy-related enquiries, contact:
[email protected]