Start

Legal

Privacy policy

This policy explains how Websi handles personal information when you visit this website or contact us. We operate from Sydney, Australia and aim to meet the standards of the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs), and to respect similar expectations for visitors overseas.

Last updated: 9 April 2026

1. Who we are

Websi is a digital studio based in Sydney, Australia. For privacy-related requests, contact websidigitalsolutions@gmail.com or use our contact form.

2. What we collect

We may collect the following kinds of information:

  • Information you give us — for example, name, email address, phone number, company, and message content when you use the contact form, the project brief form on Start a project, or when you email us directly.
  • Attachments — if you upload files with a project brief, we process file names and contents only to deliver your enquiry to our team (via our automation workflow).
  • Technical data — our hosting provider and infrastructure may automatically log information such as IP address, approximate location, browser type, device type, referrer URL, and timestamps when you load pages. This is typical for operating and securing a website.

We do not intentionally collect sensitive information (e.g. health information) via this site. Please do not submit sensitive information unless we have agreed a secure channel for it.

3. How we use information

We use personal information to:

  • respond to enquiries and project briefs;
  • operate, secure, and improve the website;
  • comply with legal obligations and protect our legitimate interests (e.g. fraud prevention, abuse detection);
  • communicate with you about services you have asked about, where appropriate.

We do not sell your personal information. We do not use it for automated decision-making that produces legal or similarly significant effects.

4. Legal bases (international visitors)

If you are in the European Economic Area, UK, or similar regions, we rely on appropriate bases such as contract (steps prior to a contract), legitimate interests (running a small business, site security, responding to enquiries), and consent where required (e.g. non-essential cookies or marketing, if we add them later). You may have rights to access, correct, delete, restrict, or object to certain processing, and to lodge a complaint with a supervisory authority.

5. Disclosure and subprocessors

We may share information with:

  • Automation (Make) — when you submit a form, we send the data to Make via a secure webhook so we can route it (for example to email or our tools). Make may process submissions on infrastructure outside Australia (including the United States and the EU). By submitting a form, you understand your enquiry may be processed in those jurisdictions.
  • Hosting and infrastructure — for example Vercel or similar providers that host this Next.js application and handle HTTPS, caching, and logs. Their privacy policies describe further detail.
  • Professional advisers — where required for legal, accounting, or insurance purposes.
  • Law enforcement or regulators — when we are legally required to disclose.

We take reasonable steps to work with providers who implement appropriate safeguards for personal information.

6. Overseas transfers

As noted above, automation and hosting providers may store or process data outside Australia (including in the United States). Where the Privacy Act requires, we take reasonable steps to ensure overseas recipients handle information consistently with the APPs, for example by contractual terms or provider assurances.

7. Retention

We keep enquiry and project-brief content for as long as needed to respond, manage potential engagements, and meet legal or record-keeping requirements, then delete or de-identify it where appropriate. Server logs are typically retained for a limited period according to our host's defaults unless a longer period is needed for security or legal reasons.

8. Security

We use HTTPS, access controls on hosting accounts, and sensible configuration for forms and APIs. No method of transmission over the internet is completely secure; we cannot guarantee absolute security.

9. Your rights (Australia)

Under the Privacy Act, you may request access to the personal information we hold about you and ask for corrections. Contact us at websidigitalsolutions@gmail.com. If you are not satisfied with our response, you may complain to the Office of the Australian Information Commissioner (OAIC).

10. Cookies & local storage

We use minimal storage on your device. Theme preference (light/dark) may be stored in browser local storage so your choice persists — this is not used for advertising. For more detail, see our Cookie & storage notice.

We do not currently run advertising or analytics cookies on this site. If that changes, we will update this policy and, where required, ask for consent before non-essential cookies run.

11. Links to other sites

This site links to third parties (e.g. LinkedIn, WhatsApp). Their privacy policies apply when you leave our site.

12. Children

This website is directed at businesses and adults. We do not knowingly collect personal information from children under 16. If you believe we have, please contact us and we will take steps to delete it.

13. Changes

We may update this policy from time to time. The “Last updated” date will change when we do. Material changes may be highlighted on the site where appropriate.

14. Contact

Privacy questions: websidigitalsolutions@gmail.com or Contact.

This policy is a practical template for a small studio website. It is not legal advice. Have it reviewed by a qualified lawyer for your operations, data flows, and jurisdictions.