Privacy

Privacy Policy

Kalman | Systems⁺ Pty Ltd handles personal information and organisational information with restraint, purpose, and care. This policy explains what information may be collected through this website and related engagement processes, how it may be used, and the limited circumstances in which it may be disclosed.

Last updated: 24 May 2026.

This policy is intended to be read alongside any engagement terms, confidentiality obligations, security requirements, or project-specific notices that apply to a particular matter.

Information

Information We May Collect

Kalman | Systems⁺ may collect information that you provide directly, including your name, organisation, role, contact details, engagement category, requirements intake responses, commercial context, technical context, and correspondence.

The website may also collect limited technical information required to operate the site, such as browser type, device information, server logs, approximate location derived from network information, timestamps, pages visited, and form submission metadata.

Please provide conceptual information only unless a separate engagement, confidentiality arrangement, or secure transfer process has been agreed. Do not submit passwords, confidential source code, personal medical records, regulated technical data, or other highly sensitive material through general website forms.

Purpose

How Information Is Used

Information may be used to respond to enquiries, assess fit for an engagement, understand requirements, prepare proposals, manage client or prospective client relationships, improve website operation, maintain records, meet legal or regulatory obligations, and protect legitimate business, security, and ethical interests.

Kalman | Systems⁺ does not use customer or organisational data for unrelated public disclosure, advertising resale, or unnecessary secondary purposes.

Disclosure

When Information May Be Disclosed

We will never disclose customer or organisational data except where disclosure is legally required or necessary to respond to a suspected or confirmed data breach, and then only to authorised parties on a minimum-necessary basis.

Authorised parties may include professional advisers, legal representatives, insurers, regulators, law enforcement, incident-response providers, hosting or technology service providers, or affected parties where notification is required or appropriate.

Where third-party service providers are used to operate systems, process forms, host infrastructure, support communications, or provide professional services, they are expected to handle information only for the relevant purpose and with appropriate confidentiality and security controls.

Protection

Security, Retention, and Breach Response

Kalman | Systems⁺ takes reasonable steps to protect information from misuse, interference, loss, unauthorised access, modification, and disclosure. Controls may include access limitation, secure hosting practices, administrative controls, and disciplined handling of engagement material.

Information is retained only for as long as it is needed for the purposes described in this policy, to maintain business records, to meet legal obligations, or to resolve disputes. When information is no longer required, reasonable steps will be taken to destroy, delete, or de-identify it.

If a suspected or confirmed data breach occurs, Kalman | Systems⁺ will act to contain the incident, assess the risk, notify appropriate parties where required, and disclose only the minimum information necessary for investigation, containment, notification, or compliance.

Service Providers

Overseas Disclosure

Some technology, hosting, communications, or professional service providers may operate outside Australia or store information in overseas infrastructure. Where overseas service providers are used, Kalman | Systems⁺ will take reasonable steps to use providers with appropriate privacy, confidentiality, and security practices.

Access

Access, Correction, and Complaints

You may request access to personal information held about you, ask for it to be corrected, or raise a privacy concern. Kalman | Systems⁺ will respond within a reasonable time and may need to verify your identity before acting on a request.

If you believe your privacy has not been handled appropriately, please contact Kalman | Systems⁺ first so the concern can be reviewed and addressed. You may also contact the Office of the Australian Information Commissioner if you are not satisfied with the response.