Effective date: 1 May 2026 · Last updated: 1 May 2026
This Privacy Policy explains how ProPath Group ABN 58 799 467 500 ("ProPath", "we", "us", "our") collects, uses, stores, and discloses personal information when you use the ProPath platform and its associated applications (collectively, the "Services").
We are committed to handling personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). By using the Services, you consent to the practices described in this policy.
ProPath is an Australian SaaS (software as a service) business providing cloud-based tools for businesses across multiple industries. Our platform includes applications for:
Our website is propath.com.au. The platform is accessed at cdi.propath.com.au.
2.1 Account and identity information. When you register or subscribe, we collect your name, business name, email address, and billing details (billing details are handled directly by Stripe — we do not store your card number or bank account details).
2.2 Content you upload. Depending on the Services you use, we may collect images, videos, and other media files you upload to the platform (for example, for social media publishing). We also collect any captions, notes, or instructions you provide alongside that content.
2.3 Business contact data. If you use our CRM or lead management tools, we collect the business contact information you enter (names, email addresses, phone numbers, and business details of your leads and customers). You are responsible for ensuring you have the right to store and process that information.
2.4 Usage and technical data. We collect logs of your activity on the platform, including pages accessed, actions taken, IP address, browser type, and session tokens. This is used for security, support, and improving the Services.
2.5 Communications. If you contact us by email or through the platform, we retain a record of that correspondence.
We use the information we collect to:
We do not sell your personal information to third parties. We do not use your data for advertising purposes or share it with other businesses for their own marketing.
To deliver the Services, we share certain information with the following third-party providers. Each provider is contractually required to handle data securely and in accordance with applicable law.
Stripe — Payment Processing
Subscription payments are processed by Stripe, Inc. Stripe collects and stores your payment card information directly and securely. We do not receive or store your card details. See stripe.com/au/privacy.
OpenAI — AI Content Generation
When you use ProPath's AI-assisted caption or content generation features, images, video frames, and associated context notes you upload are sent to OpenAI's API for processing. OpenAI is based in the United States. By using these features, you consent to your content being processed by OpenAI for the purpose of generating responses on your behalf. We do not use your content to train AI models. See openai.com/policies/privacy.html.
Meta (Facebook and Instagram) — Social Publishing
If you connect your Facebook or Instagram business accounts, content you schedule for publication is transmitted to Meta's Graph API on your behalf. This includes images, videos, and captions. Your use of connected Meta accounts is also subject to Meta's own terms and data policies. See facebook.com/privacy/policy.
Email Delivery
We use an internal mail server to send transactional emails (account notifications, receipts, password resets). Your email address is used solely for service-related communications.
We may also disclose your personal information where required or permitted by law, including to regulators, law enforcement, or in connection with legal proceedings.
Your data is stored on our own servers located in Australia (Ubuntu/Linux environment). We take reasonable technical and organisational measures to protect your information, including:
Note that some content you upload (images and video frames) is transmitted to OpenAI's servers in the United States for AI processing, as described in section 4. OpenAI applies its own data security measures to that content.
We retain your personal information for as long as necessary to:
On cancellation of your subscription, your account data and uploaded content are retained for 30 days before deletion, giving you time to export anything you need. System logs are reviewed and purged regularly. We may retain anonymised or aggregated data (from which you cannot be identified) indefinitely for analytical purposes.
Under the Australian Privacy Principles, you have the right to:
To exercise any of these rights, contact us at support@propath.com.au. We will respond within a reasonable time and no later than 30 days.
If you have connected a Facebook Page or Instagram Business account to ProPath Socials, we store access tokens and basic page information (page name, page ID) to publish content on your behalf. You can remove this data at any time:
The Services are intended for use by businesses and are not directed at individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.
We may update this Privacy Policy from time to time to reflect changes in our Services, legal obligations, or data handling practices. When we make material changes, we will notify you by email to your registered address at least 14 days before the changes take effect. The updated policy will also be posted at propath.com.au/policy.html with a revised effective date.
If you have questions, concerns, or requests relating to this Privacy Policy or the handling of your personal information, please contact us:
© 2026 ProPath Group — Since 1999. All rights reserved. · Terms of Service