Peak Domains

Privacy Policy

Last updated: 17 June 2026

1. About This Policy

This Privacy Policy explains how Peak Domains Pty Ltd (ABN 76 697 161 907) ("we", "us", or "our"), operating from Victoria, Australia, collects, uses, holds, and discloses personal information in connection with Sentinel, our Australian business intelligence platform (the "Platform").

We are bound by the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs) contained in Schedule 1 of that Act. This Policy is drafted in accordance with those obligations and the requirements of Victoria as our principal place of business.

2. What Personal Information We Collect

We may collect the following categories of personal information:

  • Identity information: name, username, and professional title.
  • Contact information: email address supplied at registration or account creation.
  • Account credentials: hashed passwords and authentication tokens (we do not store passwords in plain text).
  • Usage data: pages accessed, features used, search queries submitted within the Platform, timestamps, and session durations.
  • Technical data: IP address, browser type and version, operating system, and device identifiers collected automatically when you access the Platform.
  • Third-party lookup data: if you submit a phone number, email address, IP address, or payment card BIN prefix into Platform tools, that data may be transmitted to our data providers for enrichment (see Section 5).

We do not collect sensitive information (as defined in the Privacy Act 1988) unless strictly necessary and with your consent.

3. How We Collect Personal Information

We collect personal information in the following ways:

  • Directly from you when you register for, or log in to, the Platform.
  • Automatically through server logs, cookies, and similar technical mechanisms when you use the Platform.
  • From our authentication provider (WorkOS) when you sign in using a federated identity.

Where it is lawful and practicable to do so, you may interact with us or use certain parts of the Platform anonymously or by pseudonym.

4. Why We Collect and Use Personal Information

We use personal information for the following purposes:

  • To create and manage your Platform account.
  • To authenticate your identity and maintain the security of the Platform.
  • To deliver the features and services of the Platform you request.
  • To monitor and analyse usage patterns for the purpose of improving the Platform.
  • To enforce our Terms & Conditions and comply with applicable laws.
  • To respond to support requests or enquiries you submit to us.

We will not use your personal information for direct marketing without your express consent, and we do not sell personal information to third parties.

5. Disclosure of Personal Information

We may disclose personal information to the following categories of third parties:

  • Authentication services: WorkOS, which processes your sign-in credentials under their own privacy policy.
  • Data enrichment providers: AbstractAPI (GeoIP, phone intelligence, email reputation) and BIN List (payment card BIN lookups). These providers receive only the specific data element you choose to look up and are not provided with your identity or account information.
  • Government data sources: Queries to the Australian Business Register, ASIC, IP Australia, and the .au domain registry are subject to those agencies' own terms and privacy policies. We do not transmit your personal information to these agencies — they return publicly available data in response to searches you initiate.
  • Infrastructure providers: Cloud hosting, database, and related services used to operate the Platform. These providers process data under data processing agreements consistent with the Privacy Act 1988.
  • Law enforcement or regulatory bodies: Where required by law, a court order, or to protect our rights or the rights of others.

Where personal information is disclosed to overseas recipients, we take reasonable steps to ensure those recipients handle the information consistently with the APPs.

6. Data Quality and Security

We take reasonable steps to ensure personal information we hold is accurate, up to date, complete, and relevant. We implement appropriate technical and organisational measures — including encryption in transit (TLS), hashed credential storage, role-based access controls, and audit logging — to protect personal information from misuse, interference, loss, unauthorised access, modification, or disclosure.

No data transmission over the internet is completely secure. While we strive to protect your personal information, we cannot guarantee absolute security.

7. Data Retention

We retain personal information for as long as your account remains active or as necessary to provide the Platform, comply with legal obligations, resolve disputes, and enforce our agreements. When personal information is no longer required for these purposes, we take reasonable steps to destroy or de-identify it.

8. Your Rights

Under the Privacy Act 1988, you have the right to:

  • Access personal information we hold about you.
  • Correct personal information that is inaccurate, out of date, incomplete, irrelevant, or misleading.
  • Complain about a breach of the APPs.

To exercise these rights, please contact us using the details in Section 10. We will respond to access and correction requests within a reasonable period (generally 30 days).

9. Cookies

The Platform uses session cookies and similar technologies to maintain your authenticated session and remember your preferences. We do not use third-party advertising cookies. You may configure your browser to refuse cookies; however, doing so may impair the functionality of the Platform.

10. Contact Us & Complaints

If you have a question, concern, or complaint about this Policy or our handling of your personal information, please contact the Managing Director via LinkedIn: linkedin.com/in/anthony-peake.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The current version will always be available at this URL and will display the date it was last updated. We encourage you to review this page periodically. Continued use of the Platform after a change is published constitutes acceptance of the revised Policy.