Legal
Privacy Policy
How PsyOpus Pty Ltd collects, uses, stores, and discloses personal information in accordance with the Australian Privacy Act 1988.
PsyOpus Pty Ltd is committed to protecting the privacy of every person who interacts with our psychometric assessment platform. This policy explains what personal information we collect, how we use it, and the rights available to you under Australian law.
About This Policy
PsyOpus Pty Ltd (ABN 67 138 931 709) (“PsyOpus”, “we”, “us”, “our”) operates a psychometric assessment platform at instruments.psyopus.com.au through which organisations administer surveys measuring team performance, leadership, personality, and workplace wellbeing.
This Privacy Policy explains how we collect, use, store, and disclose personal information in accordance with the Privacy Act 1988 (Cth) and the thirteen Australian Privacy Principles (APPs).
Personal Information We Collect
We collect the following categories of personal information:
- ▸Identity information: full name and email address
- ▸Professional information: job title, role, and organisation name
- ▸Team information: team name and team membership
- ▸Demographic information: age, gender, and tenure (where provided)
- ▸Assessment responses: responses to psychometric survey instruments
Assessment responses may constitute sensitive information under the Privacy Act, as they relate to psychological characteristics. We handle sensitive information with heightened care and collect it only with your express consent.
How We Collect Personal Information
We collect personal information in two ways:
- ▸Directly from you: when you complete a psychometric survey or consent to viewing a report via our platform
- ▸From client organisations: organisations that engage PsyOpus to administer assessments provide us with participant names, email addresses, and team information to facilitate survey delivery
Survey invitations are only sent to individuals whose contact details have been provided by an authorised client organisation.
Consent
Before completing any survey or accessing a report, you are presented with an informed consent screen that explains the purpose of the assessment, what information will be collected, and how results will be used. Participation in any PsyOpus assessment is voluntary.
By proceeding past the consent screen, you provide express consent to the collection and use of your personal information, including sensitive information, as described in this policy.
Why We Use Your Personal Information
We use personal information to:
- ▸Administer psychometric assessments on behalf of client organisations
- ▸Calculate scores and generate team and organisational reports
- ▸Deliver survey invitations and report notifications by email
- ▸Verify participant identity and record informed consent
- ▸Improve the validity and quality of our assessment instruments
We do not use personal information for marketing, profiling, or any purpose unrelated to the administration of assessments for which you have been invited.
Disclosure of Personal Information
To client organisations: PsyOpus provides client organisations with aggregated and team-level reports only. Individual survey responses are never disclosed to client organisations or any other party.
To service providers: We engage the following third-party providers who may process personal information on our behalf. Each is engaged under appropriate contractual obligations regarding data protection.
| Provider | Purpose | Data Location |
|---|---|---|
| Clerk | Practitioner authentication and access management | United States |
| Resend | Transactional email delivery (survey invitations, reports) | United States |
| Vercel | Application hosting and content delivery | Australia |
| Supabase | Database hosting and storage | Australia (Sydney) |
We do not sell, rent, or trade personal information to any third party.
Cross-Border Disclosure
Two of our service providers — Clerk and Resend — are located in the United States. Before disclosing personal information to these recipients, we take reasonable steps to ensure they handle your information in a manner consistent with the Australian Privacy Principles.
Clerk holds SOC 2 Type II certification. By using our services and providing consent, you acknowledge that your information may be transferred to, and stored or processed in, the United States in accordance with this policy.
Data Security
We take reasonable steps to protect personal information from misuse, interference, loss, and unauthorised access, modification, or disclosure. Our platform employs:
- ▸Encryption in transit (TLS) for all data transmitted between your browser and our servers
- ▸Encryption at rest for data stored in our database
- ▸Access controls that restrict data access to authorised PsyOpus personnel only
- ▸Secure token-based survey access — survey links are unique to each participant
In the event of a data breach likely to result in serious harm, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) within 30 days, in accordance with the Notifiable Data Breaches scheme.
Data Retention
We retain personal information for 7 years from the date of last activity on a client engagement. After this period, personal information is securely deleted or de-identified.
You may request deletion of your personal information prior to this period by contacting us at contact@psyopus.com.au, subject to any legal obligations that require us to retain certain records.
Your Rights
Under the Privacy Act, you have the right to:
- ▸Request access to the personal information we hold about you
- ▸Request correction of information that is inaccurate, incomplete, or out of date
- ▸Make a complaint about how we have handled your personal information
- ▸Request deletion of your personal information (subject to legal retention obligations)
To exercise any of these rights, please contact us at contact@psyopus.com.au. We will respond within 30 days.
Complaints
If you believe PsyOpus has breached the Australian Privacy Principles, you may lodge a complaint with us at contact@psyopus.com.au. We will acknowledge your complaint promptly and respond within 30 days.
If you are not satisfied with our response, you may escalate your complaint to the Office of the Australian Information Commissioner (OAIC):
- ▸Website: www.oaic.gov.au
- ▸Phone: 1300 363 992
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal obligations. The current version will always be available at psyopus.com.au/privacy. Where changes are material, we will take reasonable steps to notify affected individuals.
Privacy Enquiries
Contact Us
For any privacy-related enquiries, requests, or complaints, please reach out. We will respond within 30 days.
PsyOpus Pty Ltd
ABN 67 138 931 709
10 Kalgoorlie Street
Mount Hawthorn WA 6016
Australia