Privacy Policy

1. Introduction

SecureMatch ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our platform, in compliance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

By using SecureMatch, you consent to the collection and use of your information as described in this policy. If you do not agree with this policy, please do not use our services.

2. Information We Collect

2.1 For Job Seekers (Candidates)

We collect the following personal information:

• Account Information: Email address, password (encrypted)
• Profile Information: First name, last name, phone number, location (state/territory)
• Professional Information: Job category, skills, licenses/certifications, years of experience, work availability, current employer (optional)
• Documents: Resume/CV, Unique Student Identifier (USI) number (optional)
• Premium Content: Profile photo, video introduction, work portfolio images (if applicable)
• Usage Data: Profile views, connection requests, messaging activity

2.2 For Employers

We collect the following business information:

• Account Information: Email address, password (encrypted)
• Business Information: Company name, ABN/ACN, industry, company size, location
• Contact Information: Business contact name, business phone number
• Optional Content: Company logo, company description
• Usage Data: Candidate searches, connection requests, messaging activity

2.3 Automatically Collected Information

• IP address and device information
• Browser type and version
• Pages visited and time spent on the platform
• Referring website addresses

3. How We Use Your Information

We use your personal information for the following purposes:

• Platform Services: To facilitate connections between job seekers and employers
• Account Management: To create and manage your account, verify your identity
• Communication: To send connection requests, messages, and platform notifications
• Service Improvement: To analyse usage patterns and improve our platform
• Security: To detect and prevent fraud, abuse, and security incidents
• Legal Compliance: To comply with applicable laws and regulations
• Premium Features: To provide analytics and insights to premium subscribers

4. Privacy Protection Model

SecureMatch operates on a privacy-first model designed to protect job seekers:

4.1 Two-Layer Profile System

4.2 Connection Consent

Your private information is never shared with an employer unless you explicitly accept their connection request. You have full control over who can see your personal details.

5. Information Sharing and Disclosure

We may share your information in the following circumstances:

5.1 With Employers (Candidates Only)

• Before Connection: Only public profile information as described above
• After Connection Accepted: Full profile including private information

5.2 Service Providers

We use trusted third-party service providers for hosting (Firebase/Google Cloud), payment processing (for premium subscriptions), and analytics. These providers are bound by confidentiality agreements and may only use your data to perform services on our behalf.

5.3 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect our rights, privacy, safety, or property.

6. Data Security

We implement appropriate security measures including:

• Encryption of data in transit and at rest
• Secure password hashing
• Firebase Security Rules for database access control
• Regular security audits and monitoring
• Access controls limiting employee access to personal data

While we take reasonable precautions, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security of your data.

7. Data Retention

We retain your personal information:

• Active Accounts: For as long as your account remains active
• Deleted Accounts: For up to 30 days after account deletion, then permanently removed
• Connection Records: For the duration of the connection plus 12 months
• Analytics Data: Aggregated and anonymised data may be retained indefinitely

8. Your Rights Under the Privacy Act

Under the Australian Privacy Principles, you have the right to:

• Access: Request a copy of your personal information we hold
• Correction: Request correction of inaccurate or outdated information
• Deletion: Request deletion of your account and associated data
• Withdraw Consent: Withdraw consent for optional data collection
• Complaint: Lodge a complaint if you believe we have breached your privacy

To exercise these rights, please contact us at privacy@securematch.com.au or through your account settings.

9. Cookies and Tracking

We use cookies and similar technologies to:

• Maintain your session and remember your preferences
• Analyse platform usage and performance
• Improve our services based on user behaviour

You can control cookies through your browser settings. Disabling cookies may affect platform functionality.

10. International Data Transfers

Your data may be processed on servers located outside Australia (e.g., Google Cloud servers in the United States). We ensure that appropriate safeguards are in place, including contractual protections that comply with the Privacy Act requirements for overseas disclosure.

11. Children's Privacy

SecureMatch is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a notice on our platform. Your continued use of SecureMatch after such changes constitutes acceptance of the updated policy.

13. Complaints

If you believe we have breached the Australian Privacy Principles, you may lodge a complaint with us at:

We will respond to your complaint within 30 days. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.