Privacy isn't a feature —
it's the architecture.
Every claim on this page is backed by a specific technical control. We are an Australian company building for Australian property investors — your data residency, your privacy and your right to delete are not optional.
Last updated: 2026-05-17
Data isolation enforced at the database
Every row in every table is scoped to your account and enforced at the database level — not by application code. A bug in our app code cannot expose your data to another user, because the database itself refuses to return it.
- Row-level access policies on every multi-tenant table
- Every query is scoped to your authenticated user id
- Access rules are audited on every schema change
- Privileged keys stay server-side; clients use scoped, signed tokens
Encrypted in transit and at rest
All traffic between your browser or app and PlotBot is HTTPS-only (TLS 1.3). Stored documents are encrypted at rest, and any integration access tokens are encrypted before they reach our database, with keys rotated on a schedule.
- TLS 1.3 for every request — no plain HTTP fallback
- AES-256 encryption for integration access tokens before storage
- Card details handled by a PCI DSS Level 1 payment processor
- Document storage with at-rest encryption
AI never trains on your data
PlotBot uses third-party AI services for document extraction. Those providers contractually prohibit training on customer data sent via their APIs. PlotBot stores only the structured extraction result and a short processing log — never your raw documents on the AI provider's side.
- AI providers contractually exclude API customer data from training
- No copy of AI prompt or response payloads kept beyond 30 days
- You can delete the AI processing trail per document at any time
- Only structured results are retained — not your source files
Delete means delete
When you delete a document or close your account, the data is removed from active storage immediately and from backups within 30 days. We do not anonymise and retain — deletion is permanent. The only exception is data we are legally required to retain (e.g. tax invoices subject to record-keeping rules), which is held in a separate audit-only store.
- One-click document delete — removes file + extraction + AI logs
- Account close removes every row tied to your user
- Backups overwritten within 30 days of deletion
- No "soft delete that comes back" — hard delete with cascade
Subprocessors
Third-party services that process your data, what they do, and where.
| Service | Purpose | Location |
|---|---|---|
| Cloud database, auth & storage | Stores your account data and documents | Deployed to an Australian region |
| Web hosting & CDN | Serves the web app | Global edge |
| AI document extraction | Reads and extracts data from your documents | US |
| Payment processing | Subscription billing and card processing | US (AU billing entity) |
| Accounting integration | Syncs to your accounting software — by your consent | AU / NZ |
| Email-in forwarding | Receives documents sent to your @plotbot.au inbox | AU |
Security questions
Where is my data hosted?+
Your account data and documents are stored on cloud infrastructure deployed in an Australian region. Some third-party services (listed above) may process specific data types in their own regions — the full list with purpose and location is on this page.
Are you SOC 2 / ISO 27001 certified?+
PlotBot is a small Australian company and not yet pursuing formal SOC 2 / ISO 27001 certification. Our security posture relies on (1) the SOC 2 Type II compliance of our underlying infrastructure providers, (2) a PCI DSS Level 1 payment processor, and (3) the technical controls described above. We will pursue formal certification as the business scales.
How do you handle data subject access requests under the Privacy Act?+
Email security@plotbot.au with proof of identity. We will provide a complete export of all data held about you within 30 days, free of charge. Deletion requests are honoured immediately for active data and within 30 days for backups.
Can I see my data export anytime?+
Yes. From Settings → Export, you can download a ZIP containing every document, every invoice (as PDF + JSON), every contract, and a CSV of all extracted data. No request needed.
How do you handle breach notifications?+
If we become aware of a security incident likely to affect you, we will notify you by email within 72 hours, alongside notifying the OAIC if the incident meets the Notifiable Data Breach threshold under the Privacy Act.
Who has access to my data internally?+
Only named PlotBot operators (currently the founders) have production access, and only via audited break-glass procedures for support requests you have authorised. Support staff do not browse customer data.
Security questions, vulnerability reports, or audits?
Email security@plotbot.au — we respond within one business day.
Email security@plotbot.au