Stack Discover — Find your top AI opportunities in 2 weeks
Stack10 Stack10
Products
Stack Discover Stack Build Stack Scale
Capabilities
Application Development Data Engineering Systems Automation FAQ Contact
Get Started
Legal

Privacy Policy

Last updated: April 2026

This Privacy Policy explains how Stack10 Pty Ltd ("Stack10", "we", "us") collects, uses, stores, and discloses personal information about you as an individual. It also sets out your rights in relation to that information.

Stack10 is bound by the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Because we work with clients and website visitors globally, we also acknowledge our obligations under the EU/UK General Data Protection Regulation (GDPR) and applicable US state privacy laws including the California Consumer Privacy Act (CCPA/CPRA).

Please read this policy carefully.

About us

Stack10 Pty Ltd is an Australian AI delivery and consulting firm. We build and ship production AI for enterprises — discovery, build, and enablement engagements delivered by senior engineers with full IP transfer.

For any privacy-related enquiries, contact us at [email protected].

What personal information do we collect?

Contact and business information

Name, email address, phone number, job title, employer, business address, and country.

Communication and interaction information

Information resulting from your interactions with us — including emails, call notes, webform submissions, event registrations (including scheduling, dietary requirements, and accessibility requests), and feedback provided during workshops or research sessions.

Project and engagement information

Where your employer is a client, we may receive information about you in the course of delivering our services — for example, your role in a process, access credentials for systems we work with, and outputs from interviews or process mapping sessions.

Website and device information

When you visit stack10.ai, we may collect your IP address, browser type and version, operating system, referring URL, pages visited, and timestamps. This information is used for site analytics and security purposes.

How do we collect your personal information?

We collect personal information:

  • Directly from you, when you contact us, complete a form, attend an event, or participate in a workshop
  • From your employer, in the context of a consulting engagement
  • From publicly available sources such as LinkedIn or company websites, where relevant to a business development or engagement context
  • Automatically through our website, using cookies and analytics tools

Why do we use your personal information?

Delivering our services

To fulfil our contractual obligations, conduct discovery interviews and workshops, build and ship AI solutions, provide training, and respond to your requests.

Business development and communications

To follow up on enquiries, send information about our services, and communicate about upcoming projects or events. Where we rely on your consent for direct marketing, you may withdraw it at any time.

Improving how we work

To understand how our engagements perform, gather client feedback, and improve the quality of our delivery.

Security and compliance

To maintain the security of our systems and data, detect unauthorised access or misuse, and comply with our legal obligations.

Running events

To manage registrations, communicate logistics, and — where you have consented — photograph or record events for internal or promotional purposes.

Legal basis for processing

We process your personal information where:

  • It is necessary to perform a contract with you or your organisation
  • You have given your consent (for example, to receive marketing communications)
  • We have a legitimate interest that is not overridden by your privacy rights (for example, maintaining records of business relationships or improving our services)
  • We are required to do so by law

Who do we share your personal information with?

We may disclose personal information to:

  • Service providers who assist us in operating our business — including cloud infrastructure providers, CRM software, analytics tools, email platforms, and professional advisers such as lawyers and accountants. These providers are bound by confidentiality obligations and are not permitted to use your information for their own purposes.
  • Event co-hosts or sponsors, where you have registered for an event and we have disclosed in advance that your contact details may be shared with the relevant third party.
  • Government bodies, regulators, or law enforcement, where we are required by law to do so.

We do not sell your personal information to third parties.

International visitors and clients

EU and UK — GDPR

If you are located in the European Union or United Kingdom, the General Data Protection Regulation (GDPR) may apply to how we handle your personal information. Our lawful basis for processing is contract performance, legitimate interest, or consent as applicable to each purpose described above. To exercise your rights under the GDPR, contact us at [email protected].

United States — CCPA/CPRA and state privacy laws

We work with US-based clients and acknowledge our obligations under applicable US state privacy laws, including the California Consumer Privacy Act (CCPA/CPRA). California residents have the right to know what personal information we collect, request its deletion, and opt out of its sale. We do not sell personal information.

If you are a resident of any US state with applicable privacy legislation, you may have additional rights regarding your personal information. Contact us at [email protected] to exercise them.

International data transfers

Some of our service providers are based outside Australia (for example, cloud providers in the United States). Where personal information is transferred overseas, we take reasonable steps to ensure it receives appropriate protection consistent with the Australian Privacy Principles and, where applicable, the GDPR.

How long do we keep your personal information?

We retain personal information for as long as it is needed for the purpose for which it was collected, or as required by law. When personal information is no longer needed, we delete or de-identify it. If you request deletion, we will action this promptly unless we are required by law to retain the information or it is needed to resolve a dispute.

How do we protect your personal information?

We use appropriate physical, technical, and organisational measures to protect personal information against unauthorised access, disclosure, alteration, or loss. These include access controls, encryption, and regular security reviews.

Cookies and analytics

Our website uses cookies and similar technologies to understand how visitors use the site and to improve the experience. You can control cookie settings through your browser. For more detail on the specific cookies we use, contact us at [email protected].

Your rights

Subject to applicable law, you have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or out-of-date information
  • Request deletion of your personal information
  • Withdraw consent for direct marketing at any time (each marketing email includes an unsubscribe link)
  • Object to or request restriction of processing
  • Make a complaint about how we have handled your personal information

To exercise any of these rights, contact us at [email protected].

If you are in Australia and are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au or by calling 1300 363 992.

If you are in the EU or UK, you may also lodge a complaint with your local data protection authority.

Updates to this policy

We review this Privacy Policy periodically and update it when our practices change. Material changes will be notified on our website.

Stack10 Pty Ltd — [email protected]