NUDG
Legal

Privacy Policy

Last updated: 14 May 2026 · NUDG Practice · ABN 74 135 966 822

NUDG Practice ("NUDG", "I", "we", "us") is a consulting practice based in Richmond, Victoria. I'm committed to protecting the privacy of personal information collected through the website (nudg.au), the online booking system (book.nudg.au), and in the course of providing services.

This Privacy Policy explains how I collect, use, disclose, and store your personal information. It has been prepared with reference to the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

Contact: hello@nudg.au

1. Information I collect

  • Contact details: name, email address, business name, phone number (if you provide one).
  • Booking details: appointment date, time, service type, and any notes you include.
  • Communication content: messages or notes you include when contacting me or making a booking.
  • Business information: your role, business name, industry (where relevant to the service).
  • Technical information: IP address, browser type, pages visited (collected automatically by Google Analytics 4 when you visit the website or booking system).

I do not collect sensitive information (such as health information, racial or ethnic origin, or political opinions) through the website or booking system.

2. How I collect information

  • Directly from you: when you submit a contact form on nudg.au, make a booking at book.nudg.au, send an email, or speak with me by phone or in person.
  • Automatically: through Google Analytics 4 and server logs when you visit the website or booking system (e.g. IP address, browser type, pages visited).

3. Why I collect it

  • To respond to your enquiry, process and confirm bookings, and manage scheduling.
  • To send you booking confirmations, reminders, and notifications.
  • To deliver the services you've engaged me for.
  • To improve the website and the booking experience.
  • To comply with legal obligations.

I won't use your personal information for purposes beyond those above without first asking, except where required or authorised by law.

4. Third-party service providers

To operate the website, booking system, and email delivery, I use the following third-party providers. Some of your personal information is shared with or processed by them:

4.1 Google Analytics 4

Aggregated traffic data (pages visited, approximate location, browser type) is collected through Google Analytics 4 to help me understand how the website is used. Google may process this data on servers outside Australia. Google's privacy practices: policies.google.com/privacy.

4.2 Google Calendar

Booking details (name, date, time, service type) sync to Google Calendar to manage scheduling and availability. Google may store this data on servers outside Australia.

4.3 Email delivery (SMTP2GO)

Booking confirmations and notifications are sent via SMTP2GO. Your name and email address are transmitted through their servers to deliver emails to you. SMTP2GO is based in New Zealand; servers may be located outside Australia. Privacy practices: smtp2go.com/privacy.

4.4 Booking platform (Easy!Appointments)

The booking system runs on Easy!Appointments, a self-hosted open-source platform. Booking data is stored in a database on infrastructure I control and maintain in Australia. No booking data is sent to Easy!Appointments or any external party by the booking software itself.

4.5 Reverse proxy and TLS

The website and booking system are served over encrypted HTTPS via a reverse proxy that I operate. Connection logs (which may include your IP address) are retained for security and diagnostic purposes.

5. Data stored outside Australia

As noted above, some of your personal information may be processed or stored on servers outside Australia by Google (analytics, calendar) and SMTP2GO (email). I have taken reasonable steps to ensure these providers handle your information in a manner consistent with the APPs. Overseas providers may be subject to the laws of their respective jurisdictions.

6. Data security

I take reasonable steps to protect your personal information from misuse, interference, loss, and unauthorised access, modification, or disclosure. Measures include encrypted connections (HTTPS), access controls on the booking database, self-hosted infrastructure that I maintain and update, and regular review of security practices. No method of electronic transmission or storage is completely secure; absolute security can't be guaranteed.

7. Data retention

I keep your information for as long as reasonably necessary to fulfil the purpose it was collected for, maintain business records, and comply with legal obligations. When it's no longer needed, I take reasonable steps to destroy or de-identify it.

8. Your rights

You have the right to:

  • Access the personal information I hold about you.
  • Request correction of any personal information that is inaccurate, out of date, incomplete, or misleading.
  • Request deletion where reasonably possible, subject to legal-retention requirements.

To exercise these rights, email hello@nudg.au. I'll respond within 30 days. In certain limited circumstances I may refuse access or correction in accordance with the APPs (e.g. where providing access would pose a serious threat to the life or health of any individual). If I refuse, I'll give you written reasons.

9. Cookies and analytics

The website and booking system may use cookies, small text files stored on your device, to improve functionality and user experience. These may include essential cookies (required for the booking system to function correctly, e.g. session management) and analytics cookies (to understand how the site is used). You can manage or disable cookies through your browser settings. Disabling essential cookies may affect booking functionality.

10. Complaints

If you believe I've breached the APPs or mishandled your personal information, email hello@nudg.au with the subject line Privacy Complaint. I'll acknowledge within 5 business days and aim to resolve within 30 days.

If you're not satisfied with the response, you can escalate to:

  • Office of the Australian Information Commissioner (OAIC)
  • Website: oaic.gov.au
  • Phone: 1300 363 992
  • Post: GPO Box 5218, Sydney NSW 2001

11. Changes to this policy

This Privacy Policy may be updated from time to time to reflect changes in practices, technology, or legal requirements. Updates will be published on this page with a revised "Last updated" date.

12. Contact

  • Email: hello@nudg.au
  • Website: nudg.au
  • Business: NUDG Practice · ABN 74 135 966 822 · Richmond, Victoria 3121