Privacy Policy

BrandForge Creative Pty Ltd (ABN 41 628 753 190), trading as BrandForge Creative ("we," "us," or "our"), is committed to protecting the privacy of individuals who interact with our business. This Privacy Policy explains how we collect, hold, use, and disclose personal information in compliance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

By engaging our services, visiting our website at https://brand-forge.pro, or otherwise providing personal information to us, you acknowledge that you have read and understood this Privacy Policy.

Information We Collect

We collect personal information that is reasonably necessary for the provision of our branding, design, and creative strategy services. The types of personal information we may collect include:

• Full name, job title, and organisation name
• Contact details such as email address, telephone number, and postal address
• Business information relevant to your branding project, including company structure, target audiences, and brand assets
• Payment and billing information required to process invoices and transactions
• Communications you send to us, including emails, project briefs, and feedback
• Technical data collected automatically when you visit our website, such as IP address, browser type, operating system, referring URLs, and pages viewed

We collect personal information directly from you whenever possible. In some cases, we may receive information from third parties — for example, a colleague who refers you to our services, or publicly available business directories.

Where we collect personal information about you from a third party, we will take reasonable steps to ensure you are made aware of this Policy.

How We Use Your Information

We use the personal information we collect for the following purposes:

• To deliver branding, identity design, creative strategy, and related professional services
• To communicate with you about project timelines, deliverables, and approvals
• To issue invoices, process payments, and maintain accurate financial records
• To respond to enquiries, proposals, and requests for information
• To send occasional updates about our services, case studies, or industry insights — only where you have consented or where we reasonably believe the content is relevant to your business
• To improve our website, services, and client experience through aggregated analytics
• To comply with legal and regulatory obligations

We will not use your personal information for purposes unrelated to those listed above without first obtaining your consent, unless required or authorised by law.

Legal Basis for Processing

Under the Australian Privacy Principles, we process personal information on the following grounds:

1. Consent: Where you have given clear, informed consent for us to process your personal information for a specific purpose — for example, subscribing to our newsletter or submitting a project enquiry.
2. Contractual necessity: Where processing is required to fulfil a contract we have entered into with you or your organisation, such as a branding engagement or service agreement.
3. Legitimate business interests: Where processing is reasonably necessary for the conduct of our business, provided it does not override your rights or interests. This includes maintaining client records, improving our services, and protecting our intellectual property.
4. Legal obligation: Where we are required by Australian law to collect, retain, or disclose personal information — for instance, to meet our obligations under taxation or corporations law.

Data Sharing

We do not sell, rent, or trade your personal information. We may share your information with the following categories of recipients, strictly on a need-to-know basis:

• Service providers and subcontractors: Trusted third parties who assist us in delivering our services, such as freelance designers, web developers, printing companies, or hosting providers. These parties are bound by confidentiality obligations and are required to handle your information in accordance with this Policy.
• Professional advisers: Our accountants, lawyers, or auditors, where necessary for the management of our business.
• Regulatory authorities: Government agencies or regulators where disclosure is required or authorised by Australian law.

If we engage service providers located outside Australia, we will take reasonable steps to ensure that the overseas recipient handles your personal information in a manner consistent with the APPs, as required under APP 8.

Data Security

We take the security of your personal information seriously. We implement a range of technical and organisational measures designed to protect personal information from misuse, interference, loss, unauthorised access, modification, and disclosure. These measures include:

• Encrypted storage of digital files and databases
• Secure, password-protected access to project management and file-sharing platforms
• Regular software updates and security patching across our systems
• Access controls that limit personal information to staff who require it for their role
• Secure disposal of personal information that is no longer needed

While we strive to protect your personal information, no method of electronic transmission or storage is entirely secure. We cannot guarantee absolute security, but we are committed to promptly addressing any suspected data breach in accordance with the Notifiable Data Breaches scheme under Part IIIC of the Privacy Act.

Your Rights

Under the Privacy Act and the APPs, you have the right to:

• Access: Request access to the personal information we hold about you. We will respond to access requests within a reasonable period, typically within 30 days.
• Correction: Ask us to correct any personal information that is inaccurate, out of date, incomplete, irrelevant, or misleading.
• Withdraw consent: Where we rely on your consent to process information, you may withdraw that consent at any time. This will not affect the lawfulness of processing carried out prior to withdrawal.
• Opt out of marketing: Unsubscribe from marketing communications at any time by clicking the unsubscribe link in any email or by contacting us directly.
• Complain: Lodge a complaint if you believe your privacy has been breached. We encourage you to contact us first so we can attempt to resolve the matter. If you are unsatisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

To exercise any of these rights, please contact us using the details provided at the end of this Policy.

Cookies

Our website uses cookies and similar tracking technologies to enhance your browsing experience and gather analytical data. Cookies are small text files stored on your device when you visit a website.

We use cookies for the following purposes:

• Ensuring the website functions correctly and securely
• Remembering your preferences during and between visits
• Analysing website traffic patterns and user behaviour to improve site performance

You can control or disable cookies through your browser settings. Please note that disabling certain cookies may affect the functionality of our website. For more detailed information about the cookies we use, please refer to our Cookie Policy.

Data Retention

We retain personal information only for as long as it is reasonably necessary to fulfil the purposes for which it was collected, or as required by law. Our general retention practices are as follows:

• Client project records: Retained for seven years following the completion of a project, in line with Australian taxation and record-keeping requirements.
• Enquiry and proposal records: Retained for two years from the date of last contact, unless a project engagement commences.
• Marketing subscriber data: Retained until you unsubscribe or request deletion.
• Website analytics data: Retained in anonymised or aggregated form and periodically purged in accordance with our analytics provider's data retention settings.

When personal information is no longer required, we will take reasonable steps to destroy or de-identify it in a secure manner.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify affected individuals directly.

We encourage you to review this Policy periodically to remain informed about how we protect your information.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our handling of your personal information, please contact us:

• BrandForge Creative Pty Ltd
• Suite 12, 88 Crown Street, Sydney NSW 2010, Australia
• Email: [email protected]
• Website: https://brand-forge.pro

If you are not satisfied with our response to a privacy matter, you may contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au or by phone on 1300 363 992.