Iron Mane Advisory respects your privacy and is committed to protecting the personal information we collect, hold, use and disclose.
This Privacy Policy explains how we manage personal information when you visit our website, contact us, subscribe to updates, engage our services, or otherwise interact with us.
1. Who we are
Iron Mane Advisory provides cyber risk, cyber resilience, virtual CISO and executive cyber advisory services.
For privacy enquiries, contact us at:
Email: [email protected]
Business name: Iron Mane Advisory
Location: Australia
Website: ironmaneadvisory.com
2. What personal information we collect
We may collect personal information including:
Name
Job title
Organisation name
Email address
Phone number
Enquiry details submitted through our website
Information provided during consultations, proposals or service delivery
Billing and business contact details
Communications between you and Iron Mane Advisory
Website usage information, such as IP address, browser type, pages visited and referral source
In some engagements, we may also receive business, technical or security-related information about your organisation. Where this information includes personal information, we handle it in accordance with this Privacy Policy.
3. How we collect personal information
We may collect personal information when you:
Submit a contact form
Email or call us
Book a consultation
Subscribe to content or updates
Engage us to provide services
Provide information during meetings, assessments or advisory work
Interact with our website or online tools
We may also collect information from third parties where reasonably necessary for our services, such as your organisation, representatives, public sources, technology providers or professional advisers.
4. Why we collect and use personal information
We collect and use personal information to:
Respond to enquiries
Provide cyber advisory services
Prepare proposals, reports and recommendations
Manage client relationships
Schedule meetings and consultations
Issue invoices and manage payments
Improve our website, services and communications
Send relevant updates, insights or marketing communications where permitted
Comply with legal, regulatory and professional obligations
Protect our business, clients, systems and website from misuse or security risks
5. Marketing communications
We may use your contact details to send relevant updates, insights or service information.
You can unsubscribe from marketing communications at any time by using the unsubscribe option in the communication or contacting us directly.
6. Cookies and website analytics
Our website may use cookies and similar technologies to improve functionality, understand website traffic and improve the user experience.
Cookies may collect information such as your IP address, device type, browser type, pages visited and time spent on the website.
You can manage or disable cookies through your browser settings. Some website features may not function properly if cookies are disabled.
7. Disclosure of personal information
We may disclose personal information to:
Service providers who help us operate our business, website, email, cloud systems, analytics, payments or client management tools
Professional advisers, such as accountants, lawyers or insurers
Contractors or specialist advisers engaged to support client work
Regulators, government authorities or law enforcement where required by law
Another party with your consent
A purchaser or successor if our business is restructured, sold or transferred
We do not sell personal information.
8. Overseas disclosure
Some of our service providers may store or process information outside Australia, including cloud, email, analytics, hosting or software providers.
Where personal information is disclosed overseas, we take reasonable steps to ensure it is handled securely and consistently with applicable privacy requirements.
9. Security of personal information
We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification or disclosure.
These steps may include access controls, secure storage, multi-factor authentication, encryption where appropriate, secure communication practices, confidentiality obligations and supplier due diligence.
No method of electronic transmission or storage is completely secure. However, we aim to apply security practices appropriate to the nature of the information we handle.
10. Retention of personal information
We retain personal information only for as long as reasonably necessary for the purpose for which it was collected, including to provide services, maintain records, resolve disputes, comply with legal obligations or protect our legitimate business interests.
When information is no longer required, we take reasonable steps to securely destroy or de-identify it.
11. Access and correction
You may request access to the personal information we hold about you.
You may also ask us to correct information that is inaccurate, out of date, incomplete, irrelevant or misleading.
To make a request, contact us using the details in this Privacy Policy. We may need to verify your identity before responding.
12. Complaints
If you have a concern about how we have handled your personal information, contact us first so we can try to resolve the issue.
Email: [email protected]
Please include your name, contact details and a description of your concern.
We will review your complaint and respond within a reasonable timeframe.
If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner.
13. Third-party links
Our website may contain links to third-party websites. We are not responsible for the privacy practices, security or content of those websites.
14. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. The latest version will be published on our website with the updated effective date.
