Privacy Policy

1. Introduction

Omu Commerce Pty Ltd (ABN 55 686 060 757) ("Omu Commerce", "we", "our" or "us") operates the OmuSync application ("OmuSync" or "the App") and the website omucommerce.com (collectively, the "Services"). We are committed to protecting your privacy and handling your personal information in accordance with the Privacy Act 1988 (Cth) and, where applicable, the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act / California Privacy Rights Act (CPRA).

2. Scope of this Policy

This Privacy Policy explains how we collect, use, disclose, store and protect personal information when you:

• install or use OmuSync on an e‑commerce storefront;
• visit omucommerce.com or any sub‑domain we control; or
• interact with us by email, phone or social media.

By using our Services, you acknowledge that you have read and understood this Policy.

3. Information We Collect

We collect and process personal information that is necessary to provide and improve our Services. The information we collect falls into four broad categories:

• Account & Contact Data – such as your name, business name, ABN, email address and phone number.
• Platform Credentials – such as store identifiers, OAuth tokens and seller IDs required to connect to supported platforms.
• Commerce Data – such as product listings, inventory levels, orders and customer profiles retrieved from connected platforms.
• Technical & Usage Data – such as IP address, device type, browser details, cookies and log information generated when you access our Services.

4. How We Use Personal Information

We use personal information only where we have a lawful basis to do so, including to:

• operate, maintain and improve OmuSync and our website;
• troubleshoot and provide customer support;
• communicate with you about updates, security notices or administrative matters;
• comply with legal and regulatory requirements; and
• protect our legitimate interests, such as preventing fraud or misuse of the Services.

5. Disclosure of Personal Information

We do not sell your personal information. We may disclose personal information:

• to our cloud‑hosting, analytics and other service providers who help us deliver the Services and who are bound by confidentiality obligations;
• to e‑commerce platforms (for example, Shopify and TikTok Shop) where disclosure is required for synchronisation or other core functionality;
• to professional advisers or authorities where we are legally required or permitted to do so; and
• to any entity that acquires all or part of our business, subject to confidentiality obligations.

6. International Transfers

Because we use global infrastructure and work with international merchants, personal information may be processed in countries outside Australia. Where this occurs, we implement appropriate safeguards to ensure that the overseas recipient protects the information to a standard comparable with applicable privacy laws.

7. Data Retention

We retain personal information only for as long as it is reasonably required for our operational purposes and to meet legal, accounting or regulatory obligations, after which the information is securely deleted or de‑identified.

8. Security

We implement administrative, technical and organisational measures designed to safeguard personal information against unauthorised access, disclosure, alteration or destruction. While we strive to protect your information, no method of transmission or storage is completely secure and we cannot guarantee absolute security.

9. Cookies & Tracking Technologies

Our website uses cookies and similar technologies to enable core functionality and collect aggregate analytics. You can control cookies through your browser settings; however, disabling cookies may affect the performance of certain features.

10. Your Privacy Rights

Depending on where you reside, you may have rights to access, correct, delete or restrict the processing of your personal information, object to its processing, or receive a portable copy. You can exercise these rights by contacting us using the details in Section 13. We will respond within the time frames required by applicable law and may request proof of identity before processing your request.

11. Children

Our Services are not intended for children and we do not knowingly collect data relating to children. If you believe we have collected such information, please contact us so that we can take appropriate steps.

12. Changes to This Policy

We may update this Privacy Policy from time to time. If this Policy changes in the future, we will update it accordingly and notify affected users.

13. Contact Us

If you have any questions or concerns about this Privacy Policy or our handling of personal information, please contact: