← DiagEdge

// Legal

Privacy Policy

Version 1.0 — Last updated April 2025

DiagEdge ("we", "us", "our") is committed to protecting your privacy in accordance with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). This policy explains how we handle personal information collected through our platform.

1What Data We Collect

We collect the following categories of personal information:

  • Identity and contact data: Your name (or workshop name) and email address, collected when you create an account.
  • Payment information: Your payment is processed exclusively by Stripe. DiagEdge never receives, stores, or has access to your card details. We receive only a Stripe customer ID and subscription status.
  • Usage data: Information about how you use the platform, including which diagnostic modules you access, the number of messages sent per day, and conversation timestamps.
  • Conversation content: The text of messages you send to and receive from our AI diagnostic assistant. This content is necessary to provide the service.
  • Technical data: IP address and browser information collected automatically when you use the platform, used for security and rate limiting purposes only.

2How We Use Your Data

We use your personal information solely for the following purposes:

  • To create and manage your account and subscription
  • To provide you with access to the DiagEdge diagnostic AI service
  • To process subscription payments via Stripe
  • To enforce daily usage limits and platform security controls
  • To improve the platform using fully anonymised and aggregated usage data — no individual conversation content is used for this purpose without explicit consent
  • To respond to support enquiries submitted via our contact form

We do not sell, rent, or trade your personal information to any third party.

3Who We Share Your Data With

We share your data with the following third-party service providers solely to deliver the service:

  • Supabase (database and authentication): Your account data, conversation history, and usage logs are stored in a Supabase-managed PostgreSQL database. Supabase servers used by DiagEdge are located in Singapore. Supabase processes data in accordance with their privacy policy and data processing agreements. See supabase.com/privacy.
  • Stripe (payment processing): Subscription billing is handled exclusively by Stripe. When you subscribe, you are directed to a Stripe-hosted checkout page. Your card details are entered directly into Stripe's systems and never touch our servers. DiagEdge receives only a customer ID and subscription status. See stripe.com/privacy.
  • Anthropic (AI processing): The content of your diagnostic conversations is transmitted to the Anthropic API to generate AI responses. This is the core function of the platform — without this, the service cannot operate. Anthropic processes this data in accordance with their usage policies and privacy terms. Conversation content sent to Anthropic is not used to train Anthropic's models under their API usage terms. See anthropic.com/privacy.

We do not share your data with any other third parties, advertisers, data brokers, or analytics providers.

4Data Retention

We retain your personal data for as long as your account is active. Specifically:

  • Account data (name, email) is retained until you request deletion
  • Conversation content and messages are retained for the life of your account to support your conversation history
  • Usage logs (daily message counts) are retained for up to 12 months for billing verification and fraud prevention
  • Upon account deletion, all personal data including conversations and usage logs is permanently deleted within 30 days

5Your Rights

Under the Australian Privacy Act 1988, you have the right to:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request that inaccurate or incomplete information be corrected. You can update your workshop name directly in your account settings.
  • Deletion: Request that your account and all associated personal data be permanently deleted. You can initiate account deletion from your account settings page, or by contacting us.
  • Complaint: If you believe we have not handled your information appropriately, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au

6Contact Us

For any privacy-related enquiries, access requests, or complaints, please contact us via our contact form.

Contact Form →

Business: DiagEdge, Australia

We aim to respond to all privacy enquiries within 5 business days.