Last updated 4 July 2026
Privacy Policy
1. Introduction
Emerald Websites ("we", "us", "our") is committed to protecting your privacy. This policy explains how we collect, use, store and protect personal information in line with the Australian Privacy Principles and the Privacy Act 1988. It applies to our websites, apps, CRM services and any other services we provide.
2. Information We Collect
2.1 Client and business information
- Name
- Email address
- Phone number
- Business name
- Billing details
- ABN (where applicable)
- Website, content, branding, or creative assets you provide
- Login or authentication details (where applicable)
2.2 Website and app development data
- Project content and media
- Technical specifications
- Plugin, integration, and third-party tool configurations
- User account data created for websites or applications
- App user data depending on client requirements (for example profile data, device information, analytics)
2.3 CRM and marketing data (GoHighLevel)
- Lead and customer information
- Appointment details
- Form submissions
- Email and SMS communication logs
- Automation activity
- Tags, pipelines, and CRM notes
2.4 Analytics and technical information
- IP address
- Browser type and device information
- Cookies
- Usage data via analytics tools
2.5 Communications
- Emails
- Support requests
- Project discussions
- Feedback or testimonials
3. How We Collect Information
We may collect information through website forms, CRM forms and funnels, app interfaces, lead capture pages, email or phone communication, third-party integrations, tracking and analytics tools, and client-provided documents.
4. How We Use Personal Information
We use the information we collect for:
- Providing website design, development, hosting and support
- Delivering app development and maintenance services
- Providing CRM setup, automations, marketing and client communication tools
- Managing hosting, security, updates and backups
- Payment processing and invoicing
- Improving user experience across our services
- Technical troubleshooting and support
- Compliance purposes
- Marketing or portfolio use (see Section 11)
We do not sell personal data.
5. Third-Party Services and Data Sharing
We use a range of third-party platforms to deliver our services. Personal information may be stored or processed by these providers, including hosting providers, GoHighLevel (CRM, email, SMS, pipelines, automations), payment processors such as Stripe and PayPal, Firebase and Google Cloud (app authentication, databases, push notifications), FlutterFlow, AI content tools, WordPress and its plugins, and analytics and advertising platforms. These providers have their own privacy and data protection policies which govern how they store and process information.
6. Data Storage and Retention
We retain data indefinitely unless you request deletion, including website project files, CRM contacts and automations, app data, backups on hosting platforms, email logs, and invoices and accounting records. Clients may request deletion of their data at any time, subject to legal and operational constraints.
7. Security
We take reasonable steps to protect all data, including SSL encryption, secured hosting environments, access controls, password protection and two-factor authentication where supported, and regular updates and security monitoring. However, no system is completely secure, and we do not guarantee the security of data transmitted over the internet.
8. CRM (GoHighLevel) Data Responsibilities
Clients using our whitelabel GoHighLevel platform acknowledge that their customer data is stored on GoHighLevel servers, not Emerald Websites infrastructure, and that they are responsible for ensuring compliance with the Spam Act 2003, the Privacy Act 1988, consent collection, and email and SMS marketing laws. We are not liable for misuse of the CRM system, unlawful marketing practices, or data input by clients.
9. Apps and User Data
Apps built by Emerald Websites may collect data such as user profiles, email addresses, login details, device information, analytics, location data (if required) and push notification tokens. Apps function according to client requirements, and each app may have its own privacy requirements that clients must comply with.
10. Your Rights
You may request access to your information, correction of inaccurate data, deletion of stored information, and transfer of your data where applicable. Requests can be made to info@emeraldwebsites.com.au.
11. Use of Client Work in Portfolio
Unless explicitly requested otherwise, Emerald Websites may display work created for clients, including websites, apps and screenshots, for marketing and portfolio purposes.
12. Changes to This Privacy Policy
We may update this policy at any time. Updates will be published on our website.
13. Contact Us
For privacy enquiries, please contact info@emeraldwebsites.com.au.