Skip to content
PRIVACY POLICY

Your data, our responsibility.

Last updated: 12 May 2026 (rev. 3 — added B2B outreach inferred-consent disclosure)

Edos Solutions Pty Ltd ("Edos", "we", "us", "our") provides server infrastructure and IT services to Australian businesses. We respect your privacy and we run our stack — including the systems that handle your enquiry — on Australian-hosted infrastructure that we operate ourselves. This policy explains what we collect, why, where it lives, and what rights you have. It is written in plain English.

1. The short version

  • We only collect what you give us via the contact form (name, company, email, what you're interested in, your message).
  • We use that information to reply to you. That's it — unless you tick the marketing-consent box, in which case we may also email you Edos security insights and product updates (which you can unsubscribe from anytime).
  • It is stored on servers we operate, in Australia. We do not share it with third parties.
  • We do not run third-party advertising trackers on this site (no Google Analytics, no Facebook Pixel, no LinkedIn Insight tag).
  • You can ask us at any time what we hold about you, correct it, or have it deleted. Email info@edos.com.au.

2. Who is responsible for your data

The data controller is Edos Solutions Pty Ltd (ABN 39 113 606 410), an Australian company based in Sydney, NSW. Contact:

3. What we collect

When you submit the contact form on this site, we collect:

  • Name
  • Company (optional)
  • Email address
  • Service interest (which of our offerings prompted the enquiry)
  • The message you write
  • Whether you have opted in to marketing email (the consent checkbox below the message field — defaults to unchecked; only ticked if you actively tick it)

Where this is stored

Each submission is recorded as a row in our leads database — a private MariaDB database running on the same Sydney server as this website. The row contains the fields above plus your IP address, browser user-agent, and the submission timestamp (used for abuse prevention and audit). The same submission is also emailed to our internal mailbox so that a senior engineer can reply directly. Both copies live entirely on Australian-hosted infrastructure that Edos operates.

Our web server also records standard request metadata for security and abuse prevention: source IP address, browser user-agent string, and timestamp. This is retained in rotated nginx access logs for no longer than 30 days and is not combined with any of your contact-form information.

Cookies

This website does not set any tracking cookies. We use no analytics, no advertising network, and no cross-site identifiers. The only cookies you may encounter are short-lived first-party cookies set by your browser for technical reasons (such as session continuity on form submission), and only if you interact with the site.

4. Why we collect it

We collect information from the contact form so we can respond to your enquiry. That is the primary, non-negotiable purpose.

Marketing email is opt-in, not opt-out. By default we will not add you to any marketing list. If — and only if — you tick the consent checkbox at the bottom of the contact form, we may also email you occasional Edos security insights, product updates, and announcements. This is consistent with the express-consent requirement of the Australian Spam Act 2003.

B2B outreach on the basis of inferred consent. In addition to the express-consent marketing above, Edos occasionally sends commercial electronic messages directly to publicly listed business email addresses where the recipient's professional role is directly relevant to the services we provide. Typical recipients include practice managers, owners, partners, operations directors, and IT decision-makers at Australian SMBs in industries with email-security exposure (such as law firms, accounting practices, medical clinics, and real-estate agencies). This is conducted on the basis of "inferred consent" under section 16 of the Australian Spam Act 2003.

Every such message clearly identifies Edos Solutions Pty Ltd, includes our ABN and Sydney physical address, and contains a functional unsubscribe mechanism — either a one-click unsubscribe link or a "reply STOP" instruction. We honour all opt-out requests within five business days and add the recipient's email to a permanent suppression list, meaning we will not contact you again from any future campaign. If you wish to stop receiving these emails, use the unsubscribe link in any message, or email info@edos.com.au with "Unsubscribe" in the subject line.

You can withdraw your marketing consent at any time by replying with the word "unsubscribe" to any marketing email we send, or by emailing info@edos.com.au. We will action the change within five business days, and you will continue to receive replies to any direct enquiries you raise.

We do not re-target you with advertising — we don't run any. We do not share your email address with third-party advertisers, marketers, or list brokers.

5. Where it is stored

Your information is stored on Australian-hosted infrastructure that Edos operates. Specifically:

  • The web server that received your form submission is in Australia.
  • The mail server that delivers your enquiry to us is the same Australian server.
  • Once received, your enquiry sits in our internal email system, also Australian-hosted.

Your personal information does not transit through, or rest on, infrastructure outside Australia in the ordinary course of our business.

6. Who we share it with

We do not share, sell, or rent your personal information to anyone. We do not have third-party processors handling your enquiry data. The only people who read your message are senior Edos engineers.

We will only disclose your personal information where we are legally required to (for example, in response to a valid court order or law-enforcement request), and we will tell you about it where we are legally permitted to do so.

7. How long we keep it

  • Enquiries that don't become a project: kept for 24 months, then deleted.
  • Enquiries that lead to a contract: retained as part of normal business records under Australian law (typically 7 years for tax purposes).
  • Server access logs: rotated and deleted within 30 days.

8. How we protect it

The same way we protect our paying customers' systems: hardened Linux servers, minimal attack surface, TLS everywhere, principle-of-least-privilege access, full mail filtering, and 24/7 monitoring on critical paths. Access to enquiry data is restricted to the engineers who need it to respond to you.

9. Your rights under the Privacy Act 1988

Under Australian privacy law, you have the right to:

  • Access — ask us what personal information we hold about you.
  • Correct — ask us to fix anything that's inaccurate or out of date.
  • Delete — ask us to remove your information from our systems (where we are not legally required to retain it).
  • Object — withdraw your consent for any processing that relies on consent.
  • Complain — to us first, and to the Office of the Australian Information Commissioner (OAIC) if you're not satisfied.

How to exercise these rights

Email info@edos.com.au with "Privacy request" in the subject line. We aim to respond within 5 business days and to action verified requests within 30 days.

10. Complaints

If you believe we've mishandled your personal information, please tell us first at info@edos.com.au. We take privacy concerns seriously and will investigate any complaint promptly.

If you are not satisfied with our response, you can lodge a complaint with the Office of the Australian Information Commissioner:

11. Changes to this policy

We may update this policy from time to time as our systems and the law evolve. The "Last updated" date at the top will reflect any change. We will not retrospectively reduce your rights without your consent.

12. Contact

For any question about this policy or your information:

Back to home