Privacy Policy

Schemer ("we", "us", or "our") operates the Schemer Application available at useschemer.dev. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our services.

We are committed to protecting your privacy and complying with applicable privacy laws, including the Australian Privacy Act 1988 and the 13 Australian Privacy Principles (APPs), as well as the General Data Protection Regulation (GDPR) for users in the European Union and United Kingdom.

1. Information We Collect

Personal Information You Provide

When you use our services, you may provide us with:

• Account Information: Name, email address, and password when you create an account
• Contact Information: Name, email address, and any other information you provide when joining our waitlist or contacting us
• Payment Information: Billing address, payment card details (processed securely by our payment provider)
• Profile Information: Job title, company name, and preferences you choose to share
• Communications: Messages, feedback, and support requests you send us

Information We Collect Automatically

When you use our services, we automatically collect:

• Device Information: Device type, operating system, browser type and version
• Usage Information: Pages visited, features used, actions taken, and time spent on our platform
• Log Data: IP address, access times, referring URLs, and error logs
• Location Information: General location based on IP address (country/region level)

Information from Third Parties

We may receive information about you from:

• Payment processors (transaction confirmation)
• Analytics providers (aggregated usage data)
• Marketing partners (if you opted in to their communications)

2. How We Collect Information

We collect information through:

• Forms: Waitlist signup, account registration, contact forms, and checkout
• Cookies and Similar Technologies: Small files stored on your device to remember preferences and track usage
• Analytics Tools: Third-party services that help us understand how users interact with our platform
• Direct Communications: Emails, support tickets, and feedback you send us
• API and Application Usage: Data generated when you use our electronics design tools

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA) and United Kingdom, we process your personal data based on the following legal grounds:

4. How We Use Your Information

We use your information to:

• Provide, maintain, and improve our services
• Process transactions and send related information
• Send you technical notices, updates, security alerts, and support messages
• Respond to your comments, questions, and customer service requests
• Send promotional communications (with your consent where required)
• Monitor and analyse trends, usage, and activities
• Detect, investigate, and prevent fraudulent transactions and other illegal activities
• Personalise and improve your experience
• Comply with legal obligations

5. Third-Party Services

We share your information with the following categories of service providers:

Payment Processing

We use Stripe to process payments. When you make a purchase, your payment information is sent directly to Stripe and is subject to their Privacy Policy. We do not store your full credit card details on our servers.

Analytics

We use Google Analytics to understand how visitors use our website. This service may collect information such as your IP address, browser type, and pages visited. You can opt out using the Google Analytics Opt-out Browser Add-on.

Email Communications

We use email marketing services to send newsletters and promotional content to users who have opted in. You can unsubscribe at any time using the link in any marketing email.

Hosting and Infrastructure

Our services are hosted on secure cloud infrastructure providers who process data on our behalf under strict contractual obligations.

6. International Data Transfers

Schemer is based in Australia and serves customers worldwide. Your personal information may be transferred to and processed in countries other than your country of residence, including Australia, the United States, and other countries where our service providers operate.

For EU/UK Users

When we transfer your personal data outside the EEA or UK, we ensure appropriate safeguards are in place, including:

• Transfers to countries with an adequacy decision from the European Commission or UK government
• Standard Contractual Clauses (SCCs) approved by the European Commission
• Binding Corporate Rules where applicable
• Your explicit consent for specific transfers

For Australian Users

In accordance with Australian Privacy Principle 8, before disclosing personal information to overseas recipients, we take reasonable steps to ensure they do not breach the APPs in relation to that information. Where this is not possible, we will seek your consent or rely on other permitted exceptions.

7. Data Storage and Security

We take the security of your personal information seriously and implement appropriate technical and organisational measures to protect it, including:

• Encryption of data in transit using TLS/SSL
• Encryption of sensitive data at rest
• Regular security assessments and penetration testing
• Access controls and authentication requirements for staff
• Secure backup and disaster recovery procedures
• Employee training on data protection and security

8. Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements.

• Account Data: Retained while your account is active and for up to 2 years after account closure
• Transaction Records: Retained for 7 years for tax and accounting purposes
• Marketing Preferences: Retained until you unsubscribe or withdraw consent
• Analytics Data: Aggregated and anonymised data may be retained indefinitely
• Support Communications: Retained for up to 3 years after resolution
• Waitlist Information: Retained until you request removal or the waitlist is no longer active

When retention periods expire, we securely delete or anonymise your personal information.

9. Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience on our website.

Types of Cookies We Use

• Essential Cookies: Required for the website to function properly (e.g., session management, security)
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Help us understand how visitors use our website
• Marketing Cookies: Used to deliver relevant advertisements (only with your consent)

Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to:

• View what cookies are stored and delete them individually
• Block third-party cookies
• Block cookies from specific sites
• Block all cookies
• Delete all cookies when you close your browser

Please note that blocking certain cookies may impact the functionality of our services.

Do Not Track

Some browsers have a "Do Not Track" feature. We currently do not respond to Do Not Track signals, but you can use the cookie controls described above to manage tracking preferences.

10. Your Rights

Rights Under Australian Privacy Law (APPs)

Under the Australian Privacy Principles, you have the right to:

• Access: Request access to personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Complaint: Lodge a complaint about how we handle your personal information
• Anonymity: Where practical, interact with us without identifying yourself

Rights Under GDPR (EU/UK Users)

If you are in the European Economic Area or United Kingdom, you also have the right to:

• Erasure: Request deletion of your personal data ("right to be forgotten")
• Restriction: Request restriction of processing of your personal data
• Data Portability: Receive your personal data in a structured, commonly used format
• Object: Object to processing based on legitimate interests or for direct marketing
• Withdraw Consent: Withdraw consent at any time where processing is based on consent
• Automated Decision-Making: Not be subject to solely automated decisions that significantly affect you

Exercising Your Rights

To exercise any of these rights, please contact us using the details in the Contact section below. We will respond to your request within 30 days (or sooner if required by law). We may need to verify your identity before processing your request.

11. Children's Privacy

Our services are not intended for individuals under the age of 16 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will take steps to delete such information.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by:

• Posting the updated policy on our website with a new "Last Updated" date
• Sending you an email notification (for significant changes)
• Displaying a prominent notice on our platform

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Complaints

If you are not satisfied with our response to your privacy concern, you can lodge a complaint with the Office of the Australian Information Commissioner (OAIC):