DataFarm Technologies

Data Privacy and Security Policy
DataFarm Technologies Privacy and Security Policy
Last Updated: 4th October, 2025
At DataFarm Technologies, we are committed to protecting the privacy and security of your personal and farm data. This Privacy and Security Policy explains how we collect, use, store, share, and protect the information gathered through our soil data analytics hardware and software solutions. We comply with Australia’s Privacy Act 1988 and the Australian Privacy Principles (APPs). For questions, contact our Data Protection Officer at admin@datafarmtechnologies.com
1. Definitions

For the purposes of this Privacy and Security Policy, the following terms shall have the meanings set forth below:

Personal Information: “Personal information” means any information or opinion, whether true or not, and whether recorded in a material form or not, about an identified individual or an individual who is reasonably identifiable. In general terms, this includes information or an opinion that personally identifies you either directly (e.g. your name) or indirectly

Data Subject: The individual to whom the personal information relates

Processing: Any operation or set of operations performed on personal information including collection, recording storage, use, disclosure or destruction

Data Controller: The entity that determines the purposes and means of processing personal information. In this policy, DataFarm Technologies Pty Ltd acts as the Data Controller.

Data Processor: Any third party that processes personal information on behalf of the Data Controller.

Device Diagnostics: Technical data generated by smart sensors including GPS coordinates, battery levels and network performance metrics.

Farm Data: Information related to soil and crop conditions such as nutrient levels and identified crop types.

Australia Privacy Principles (APPs): A set of principles outlined in the Privacy Act 1988 regulating the handling of personal information in AUS.

2. Information We Collect
We collect the following types of data to provide our soil analytics services:
Personal Information:
First and Last Name
Email
Farm Data:
Soil metrics
Device Diagnostics:
GPS coordinates
Battery Levels
Network Latency
3. How We Collect Information

During user registration, the personal information stated above is collected and securely transmitted to our cloud servers. Additionally, our smart sensors transmit device diagnostics and sensor readings across a secure connection. Similar data may also be collected when users contact our support team.
4. How We Use Your Information

We collect and handle personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Where required, and with your informed consent, we may collect data from your smart sensor device, including GPS coordinates and other field data. We use this information to:
Approximate your geographic location to deliver relevant features and optimise the performance of our services.

Provide insights into soil health and deliver personalised agronomic recommendations tailored to your field conditions.

Train and improve our machine learning models using de-identified or aggregated customer data.

Monitor, maintain, and enhance the performance and reliability of our hardware and software systems.

Marketing communications are sent only if you have provided explicit consent, typically through an opt-in mechanism during registration or via your account settings.

Comply with our legal obligations, including taxation requirements, mandatory data breach notifications under the Notifiable Data Breaches scheme, and other applicable regulatory requirements.

We take reasonable steps to ensure that all personal information we collect is kept secure and is only used or disclosed for the purposes outlined above, or as otherwise permitted under the Privacy Act 1988.

5. Data Sharing and Disclosure
WE DO NOT sell personal/farm data to third parties. Though we may share data with trusted third parties such as cloud service providers under strict confidentiality agreements. Additionally, data can be shared with AgTech platforms for market insights only with your explicit consent. Furthermore, if required by law, data will be shared.

6. Data Security

While no method of transmission or storage is 100% secure, we implement robust technical and organisational safeguards to protect your personal information:
Encryption: All transmitted data is securely encrypted to prevent interception attacks. Additionally, all stored data is securely encrypted.
Restricted Server Access: Access to our servers are strictly limited to a small group of authorized personnel, protected by stringent role-based access controls
Firewalls: Our systems are protected by advanced firewalls, providing robust defense against unauthorized external threats.
To ensure that our system is reliable, we have a breach response plan aligned with Australia’s Notifiable Data Breaches scheme to promptly manage any security incidents. We are committed to notifying affected users of any eligible data breaches within 20 business days, In accordance with the requirements of the Notifiable Data Breaches scheme: https://www.oaic.gov.au/privacy/notifiable-data-breaches.
Additionally, we conduct regular vulnerability assessments and penetration testing to proactively indemnity and address potential security risks, ensuring our systems remain resilient against emerging digital threats.
If further information is required please contact us at admin@datafarmtechnologies.com
7. Your Rights
In accordance with the Australian Privacy Principles, you are entitled to the following rights regarding your personal information:
Access: You may request access to a copy of the personal data we hold about you.

Correction: You have the right to request correction of any inaccurate or incomplete personal information.

Deletion: You may request the deletion of your personal data, subject to any legal or regulatory obligations requiring us to retain such information.

Opt-Out: You have the right to opt out of receiving marketing and promotional communications.

To exercise any of these rights, please contact us at admin@datafarmtechnologies.com
8. Children’s Privacy

DataFarm Technologies does not knowingly collect personal information from individuals under the age of (16) without verifiable parental or guardian consent. Our policy adheres to the Online Privacy Bill. Our services are intended for use by adults and authorized representatives of farm operations. If we become aware that we have collected personal information from a child under the age of (16) without proper consent, we will take prompt steps to delete such information from our systems. We rely on the IOS/Google Play platforms to ensure minors are restricted to access our digital services.

If you believe that your child has provided us with personal information without parental consent, please contact us immediately at admin@datafarmtechnologies.com so that we can take appropriate action.
9. Data Retention and Deletion

We retain personal and farm-related data for the duration that your account remains active. Accounts that have been inactive for a period of seven (3) years will be subject to deletion, and all associated data will be anonymized. An email notification will be sent to the account’s registered email address (14) days before the account is scheduled for deletion.
10. International Data Transfers
Your personal data is primarily stored within Australia. In instances where data is transferred internationally such as to cloud service providers we ensure full compliance with Australian Privacy Principle 8 (cross-border disclosure). Additionally, we engage only with service providers that offer protections comparable to those required under Australian privacy law.
11. Policy Updates
We reserve the right to update this Privacy Policy to reflect changes in our practices or to comply with legal and regulatory requirements. Any material amendments will be communicated to you at least fourteen (14) days prior to their effective date via email.
12. Contact Us
For questions, concerns, or complaints about your data, contact:

Data Protection Officer
DataFarm Technologies Pty Ltd
ABN: 49 684 143 897
Email: admin@datafarmtechnologies.com
Phone: +61 474 118 985
If unsatisfied, you may lodge a complaint with the Office of the Australian Information Commissioner (oaic.gov.au).