Privacy Policy
How we collect, use, and protect your personal information.
Last updated: 17 March 2026
1. About This Policy
BuyerFlo Pty Ltd (ABN 41 696 232 621) ("BuyerFlo", "we", "us", "our") operates the BuyerFlo platform at buyerflo.com.au. This Privacy Policy explains how we collect, use, disclose, and protect personal information in accordance with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
By using BuyerFlo, you consent to the practices described in this policy.
2. Information We Collect
Information you provide directly
- Account information: name, email address, phone number, business name, and ABN
- Billing information: credit card details are collected and processed securely by our third-party payment processor (Stripe). We do not store your full card number on our servers.
- Client data: information you enter about your clients, including names, contact details, property preferences, deal details, and financial information related to your buyer's agency operations
- Communications: messages you send to us via our contact form, email, or support channels
Information collected automatically
- Usage data: pages visited, features used, time spent, clicks, and navigation patterns
- Device and browser information: IP address, browser type, operating system, and device identifiers
- Cookies and similar technologies: we use cookies to maintain your session, remember your preferences, and analyse usage patterns
Information from third parties
- Xero: if you connect your Xero account, we access invoice and payment data as authorised by you through Xero's OAuth integration
3. How We Use Your Information
We use personal information to:
- Provide, maintain, and improve the BuyerFlo platform
- Process your subscription and billing
- Send transactional communications (account confirmations, billing receipts, service updates)
- Provide customer support
- Analyse usage to improve our product and user experience
- Comply with legal obligations
We will not use your personal information for direct marketing without your consent. We will never sell your personal information to third parties.
4. How We Store and Protect Your Information
Your data is encrypted in transit (TLS 1.2+) and at rest (AES-256). We use industry-standard security measures including access controls, audit logging, and regular security reviews.
Our infrastructure is hosted on secure cloud platforms with data centres in Australia where possible. Where data is processed overseas (for example, through cloud service providers), we ensure appropriate safeguards are in place consistent with APP 8.
5. Sharing Your Information
We may share your information with:
- Service providers who assist in operating our platform (hosting, payment processing, email delivery, analytics) — these providers are bound by confidentiality obligations
- Xero, where you have authorised the integration
- Law enforcement or regulatory bodies, where required by law
We do not sell, rent, or trade your personal information.
6. Your Client Data
Data you enter about your clients ("Client Data") remains yours. We process Client Data solely to provide the BuyerFlo service to you. We do not access, use, or share Client Data for any purpose other than delivering and maintaining the platform, unless required by law.
If you cancel your account, your Client Data will be retained for 30 days to allow for reactivation, after which it will be permanently deleted.
7. Cookies
We use essential cookies to operate the platform (session management, authentication). We may also use analytics cookies to understand how our platform is used. You can manage cookie preferences through your browser settings, though disabling essential cookies may affect platform functionality.
8. Your Rights
Under the Australian Privacy Principles, you have the right to:
- Access the personal information we hold about you
- Request correction of inaccurate or outdated information
- Request deletion of your personal information (subject to legal retention requirements)
- Withdraw consent for optional data processing
- Lodge a complaint with the Office of the Australian Information Commissioner (OAIC) if you believe your privacy has been breached
To exercise any of these rights, contact us at hello@buyerflo.com.au.
9. Data Retention
We retain your account information for as long as your account is active. After account cancellation, we retain billing records for 7 years as required by Australian tax law. Client Data is deleted 30 days after cancellation. Usage and analytics data is retained in anonymised form.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the platform. Your continued use of BuyerFlo after changes take effect constitutes acceptance of the updated policy.
11. Contact Us
If you have questions about this Privacy Policy or how we handle your personal information, contact us at:
BuyerFlo Pty Ltd
Email: hello@buyerflo.com.au