top of page
Available Light 

Privacy policy

Who we are

This website (availablelight.ai) is operated by Available Light Pty Ltd (ABN: [to be inserted]), a company incorporated in New South Wales, Australia, with its registered office in Sydney, NSW (the "studio," "we," "us," "our").

This policy explains how we handle personal information when you visit availablelight.ai or contact us. We are committed to handling personal information responsibly and in line with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles. Where our handling involves residents of the European Union or the United Kingdom, we also act consistently with the EU General Data Protection Regulation (GDPR) and the UK GDPR.

The personal information we collect

We collect only the personal information we need.

Information you give us directly

  • Your name, email address, organisation, and the contents of any message you send us when you fill in the contact form on the website or email us at hello@availablelight.ai.

Information we collect automatically

  • Privacy-respecting, aggregated analytics about how the website is used. We use Plausible Analytics, which does not use cookies, does not collect personal information, and does not track visitors across other websites. The data we see is limited to aggregate traffic patterns (e.g. number of visits to each section, country-level location, referrer, device type).

Information we do not collect

  • We do not use Google Analytics, advertising pixels, or third-party tracking cookies.

  • We do not maintain user accounts, logins, or password-protected areas.

  • We do not host comments, public submissions, or other user-generated content.

  • We do not knowingly collect information from anyone we know to be under 16.

How we collect it

We collect personal information when:

  • You fill in the contact form, which is processed by Tally (tally.so), our form provider.

  • You email us at hello@availablelight.ai, in which case the message is received and stored in Google Workspace.

  • You visit the website, in which case Wix records aggregate, non-identifying analytics.

How we use it

We use the personal information we collect for the following purposes:

  • To respond to your enquiry, proposal, or expression of interest.

  • To assess fit for potential client engagements or contributor relationships.

  • To maintain a record of our correspondence so we can resume conversations later.

  • To understand, in aggregate, how the website is being used and where it can be improved.

We do not use personal information to make automated decisions that significantly affect you. We do not sell personal information. We do not share personal information for marketing purposes.

Legal basis (EU and UK residents)

If you are in the European Union or the United Kingdom, our legal basis for processing your personal information is:

  • Legitimate interests (GDPR Art. 6(1)(f); UK GDPR equivalent) for responding to enquiries, maintaining correspondence records, and running aggregate website analytics. We have considered your rights and freedoms and concluded that this processing is proportionate to the limited information involved and the purpose for which it is used.

  • Consent (GDPR Art. 6(1)(a)) for any optional communications you opt into, such as a newsletter subscription. You can withdraw consent at any time.

Who we share it with

We share personal information only with the service providers that operate the systems described in this policy:

Google Workspace / Business Email

Wix/ Website Hosting

Each provider acts as a processor handling personal information on our instructions. These providers' own privacy policies apply to their handling of data. We will share personal information beyond this list only where required by Australian law, in response to a valid legal request, or with your explicit consent.

Cross-border data transfers

Some of the providers above are located outside Australia. By using this website or contacting us, you understand that personal information you provide may be processed in the United States and the European Union.

For transfers from the EU or UK, we rely on the European Commission's Standard Contractual Clauses (and the UK International Data Transfer Addendum where applicable) as the legal mechanism for cross-border transfer. Where a provider participates in the EU–US Data Privacy Framework, that participation also applies.

How long we keep data

We retain personal information only for as long as we need it for the purpose it was collected:

  • Contact form and email enquiries: retained for 24 months from the date of last contact, after which the records are deleted unless we have an active or anticipated engagement with you.

  • Engagement records (clients and contributors): retained for the duration of the engagement and for seven years after it ends, consistent with Australian record-keeping requirements.

  • Aggregate analytics: Plausible data is retained according to Plausible's own retention settings, which we have configured to the minimum necessary.

Your rights

Subject to the law that applies to you, you have the right to:

  • Access the personal information we hold about you.

  • Correct information that is inaccurate, incomplete, or out of date.

  • Request deletion of personal information we no longer have a lawful basis to hold.

  • Object to or restrict certain processing.

  • Withdraw consent for any processing that relies on consent (e.g. newsletter).

  • Lodge a complaint with the relevant regulator. In Australia, that is the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au. In the EU, your national data protection authority. In the UK, the Information Commissioner's Office (ICO) at ico.org.uk.

To exercise any of these rights, email hello@availablelight.ai. We aim to respond within 30 days.

How we protect personal information

We take reasonable steps to protect personal information from misuse, unauthorised access, modification, or disclosure. Measures include:

  • TLS encryption for all connections to the website.

  • Two-factor authentication on internal accounts that access correspondence.

  • Limiting access to personal information to those who need it for legitimate purposes.

  • Selecting service providers who maintain widely recognised security standards.

No system is perfectly secure. If we become aware of a data breach that is likely to result in serious harm, we will notify affected individuals and the OAIC in line with the Notifiable Data Breaches scheme.

Children

This website is not directed at children. We do not knowingly collect personal information from anyone we know to be under 16. If you believe a child has provided personal information to us, please contact hello@availablelight.ai and we will delete it.

Cookies

This website does not set marketing or advertising cookies. We use only essential cookies necessary for the website to function. As a result, we do not currently display a cookie consent banner. If this changes, this policy will be updated and a banner will be added.

Updates to this policy

We may update this policy from time to time. The "Last updated" date at the top will reflect the most recent change. Material changes will be flagged on the website's homepage for at least 30 days.

Contact

For privacy enquiries, complaints, or to exercise any of the rights described in section Your Rights:

bottom of page