Privacy Policy

Last updated: 9 December 2025

Who we are

When we refer to 'we', 'us', 'our' or just 'Togetha' that means any of the following companies: Togetha Group Pty Ltd; Togetha Group Hong Kong Limited; Willyama Togetha Pty Ltd; and Togetha Software Pty Ltd.

Togetha Group includes all entities, employees, and Contractors under Togetha Holdings Pty Ltd, operating in Australia, Hong Kong, and other regions.

Contact (Privacy): privacy@togetha.io

Trust Centre: https://trust.togetha.io/

Scope & How This Policy Works

This Privacy Policy explains how we collect, use, disclose, store, handle and protect your Personal Information across digital and in-person interactions. Read this together with applicable agreements and Trust Centre controls. Compliance includes Australian Privacy Act 1988 and other applicable privacy laws.

By interacting with us, you acknowledge you understand and agree with our use of your Personal Information and related rights.

Types of Data

User Data: All information collected from customers that is not Personal Information.
Personal Information: Information or opinion about identified individuals or reasonably identifiable persons under Australian Privacy Act definitions.
Personal Data: Information relating to identified or identifiable natural persons per GDPR Article 4(1). Used interchangeably with Personal Information.
Sensitive Information: Includes racial/ethnic origin, political opinions, religious beliefs, etc. We generally do not collect Sensitive Information unless necessary, lawful, and with appropriate safeguards.

Data we Collect

We collect data depending on how you interact with us. Common items include:

Identity & contacts: name, employer and role/title, email address(es), phone number(s).
Purchase & support: billing/shipping details, product/license details, logs and usage info.
Preferences: newsletter opt-in, delivery confirmations and statistics.

We do not knowingly collect Personal Information from individuals under 18.

How do we collect Data

Directly from you where possible
From Service Providers and Subprocessors (e.g., Atlassian)
Unsolicited information is destroyed or de-identified
Technical metadata for updates, usage, security
Cookies and similar tracking technologies

Cookies

We use: Strictly Necessary Cookies, Performance/Analytics Cookies, Functionality Cookies, and Targeting/Advertising Cookies. You can manage preferences via our cookie banner or browser settings.

Contact: privacy@togetha.io

How do we use Data

We process data based on GDPR legal bases including Contract, Consent, Legitimate Interests, and Legal Obligation. We do not use automated decision-making that produces legal or similarly significant effects.

Service Providers and Subprocessors

We may disclose data to related companies, service providers, potential purchasers, legally authorised organisations, and subprocessors. For more information visit https://trust.togetha.io/

Cross-border transfer of Data

Personal Information may be handled and stored globally. We comply with applicable privacy laws including EU SCCs and UK Addendum.

How do we protect your Data

We implement reasonable measures to protect your Data. Trust Centre: https://trust.togetha.io/

We retain Personal Information only as long as necessary.

Your Rights

Access & correction of your data
Right to be forgotten (subject to law)
GDPR rights: access, rectification, erasure, restriction, objection, portability

Contact: privacy@togetha.io

Questions or complaints

Data Processing Officer: Brian Hill, brian.hill@togetha.group, +61 2 6190 1554

Supervisory Authorities

Australia — OAIC: 1300 363 992, https://www.oaic.gov.au/
United Kingdom — ICO: +44 1625 545 700, https://ico.org.uk/
European Union — Contact your Member State authority

Updates to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date.