Effective Date: 26 January 2026

Last Updated: 26 January 2026

‍

‍

Intro

This Privacy Statement explains how Azymmetric Pty Ltd (Australia) and Azymmetric Inc (USA) (together, "Azymmetric," "we," "us," or "our") handle personal information in connection with our websites, products, services, applications, and other offerings (the "Services"). This integrated version is intended to be used for the Azymmetric Inc. U.S. website and incorporates our cookie/analytics practices described below. Our posture is data-minimizing: we do not intentionally collect, use, or disclose personal information beyond what is strictly necessary to operate the Services, ensure security, respond to requests you make, and comply with law.

‍

1. Summary of Our Data Practices

We primarily provide access to documents and information.

We do not sell or share personal information for cross-context behavioral advertising.

We do not build marketing profiles or run third-party advertising pixels on the public Site.

We avoid collecting sensitive information.

We limit persistent identifiers to those strictly necessary for security, essential functionality, and privacy-preserving analytics.

We rely on Microsoft 365 for productivity, storage, and communications.

‍

2. What We Do Not Collect

We do not intentionally collect: account/profile data (unless you voluntarily provide it for a specific, necessary purpose such as contacting us); marketing preferences, behavioral profiles, or inferences; payment card information (we do not process payments via our Services); or sensitive information (for example precise geolocation, health data, biometric identifiers, or government identifiers). If you submit personal information beyond what is required (for example by adding personal data in a free-text field), we will delete or de-identify it where feasible.

‍

3. Data That May Be Unavoidably Processed

Operating a website and secure document access requires limited technical processing that may involve personal data. This may include network and security logs (such as IP address and request metadata) captured by our servers, hosting/CDN or web application firewall, and Microsoft 365 services to deliver content and protect against abuse; essential cookies or similar storage strictly necessary for session continuity, load balancing, or security; and minimal operational telemetry to ensure uptime and diagnose issues. Where possible, we implement protections such as IP truncation or masking, log minimization and short retention windows, and aggregated or de-identified metrics.

‍

4. How We Use Information

We use only minimal technical data and any information you voluntarily provide to: (a) provide and secure access to documents and information you request; (b) maintain and improve availability, diagnose errors, and prevent fraud/abuse; (c) understand site performance and usage through privacy-preserving analytics; and (d) comply with legal obligations and enforce our terms. We do not use this data for advertising, cross-site tracking, or automated decision-making producing legal or similarly significant effects.

‍

5. Cookies, Analytics, and Similar Technologies

Cookies are small files stored by your browser. We use (i) strictly necessary cookies/local storage for core functionality and security, and (ii) optional analytics cookies/technologies to understand Site usage and performance. We do not use advertising or social media tracking cookies, and we do not run third-party advertising pixels for cross-context behavioral advertising on the public Site. You can manage cookies via your browser; blocking strictly necessary cookies may impair functionality. If we deploy optional analytics or other non-essential cookies, we will provide notice and, where required, choice mechanisms (for example cookie preferences).

‍

6. Global Privacy Control and Do Not Track

We do not track users across third-party sites for advertising. Where applicable, we honor legally recognized browser-based opt-out signals (such as Global Privacy Control) related to sale/sharing, though we do not engage in sale/sharing for cross-context behavioral advertising. "Do Not Track" is not consistently supported across the industry.

‍

7. How We Share Information

We do not sell or share personal information for cross-context behavioral advertising. We may disclose minimal technical data to service providers and infrastructure vendors (for example Microsoft 365 and related Microsoft cloud services; hosting/CDN; DDoS/WAF) solely to operate and secure the Services, under contractual confidentiality and data protection obligations; and to competent authorities or other parties where required by law, legal process, or to protect rights, safety, and security.

‍

8. International Data Transfers

Your information (primarily minimal technical data) may be processed in countries other than your own due to our use of Microsoft 365 and global Internet infrastructure (for example the U.S., UK, EU/EEA, and Australia). Where required, we implement appropriate safeguards for transfers.

‍

9. Data Retention

We aim to avoid storing personal information. Technical logs, if generated, are retained only as long as necessary for security and operations, then deleted or de-identified. If you contact us (for example by email) and provide personal information, we retain it only to address your inquiry and to meet legal obligations, then delete or de-identify it according to our retention practices.

‍

10. Security

We implement technical and organizational measures designed to protect the Services and any minimal personal information processed, including Microsoft 365 security controls and role-based access, encryption in transit, least-privilege access, and logging/monitoring. No system is perfectly secure. Where required by law, we will notify you and regulators of a data breach.

‍

11. Your Privacy Rights

Depending on your location, you may have rights to access personal information we hold about you (if any), request correction or deletion, object to or restrict processing, receive certain data in a portable format, and withdraw consent where processing is based on consent. To exercise rights, contact us using the details below. We may request limited verification information. If we hold no personal information about you, we will tell you.

‍

12. Children’s Privacy

Our Services are not directed to children. We do not knowingly collect personal information from children. If you believe a child provided information to us, contact us and we will delete it.

‍

13. Third-Party Links and Services

If our Services link to or integrate with third-party sites or services (including files hosted in Microsoft 365 SharePoint/OneDrive with shared links), their privacy practices apply when you interact with them. We are not responsible for their policies or practices.

‍

14. Changes to This Policy

We may update this Policy to reflect changes to our Services or legal requirements. We will post the updated date and, where required, provide notice of material changes.

‍

15. How to Contact Us

Email: systems@azymmetric.com

U.S. Postal: Azymmetric Inc., 5900 Balcones Dr, Austin, TX 78731-4257, USA (Attn: Privacy Office)

Australia Postal (if relevant): Level 8, 167 Eagle St, Brisbane City, QLD 4000 (Attn: Privacy Office)

We do not currently appoint a UK representative or a Data Protection Officer.

‍

16. Jurisdiction-Specific Disclosures (United States, including California)

Sale/Sharing: We do not sell or share personal information for cross-context behavioral advertising under the CCPA/CPRA. Categories processed: We do not intentionally collect personal information; limited technical data (for example IP address within server/CDN logs) may be processed solely for delivering content, security, and analytics as described above. Purposes: security, fraud prevention, service delivery, analytics, and legal compliance. Retention: minimal and temporary as described above. Rights: California residents may request access, correction, deletion, portability, and to opt out of sale/sharing (not applicable as we do not sell/share), and to limit use/disclosure of sensitive personal information (not collected). We will not discriminate for exercising your rights. Other state privacy laws (for example Virginia, Colorado, Connecticut, Utah): We honor applicable rights; since we do not sell/share or use personal data for targeted advertising, those opt-outs are generally not applicable.

‍