Privacy Policy

1. Who we are

Broker Intelligence (“BBI”, “we”) is an Australian-based provider of broker-analytics and surveillance software. This policy describes how we handle personal data in connection with our platform and marketing site at brokerbi.io. For questions about this policy, contact us at info@brokerintelligence.io.

2. What we collect

We collect a deliberately narrow set of personal data, limited to authorised users of the BBI platform:

• Name and email address
• Hashed password and multi-factor authentication enrolment
• Role and access permissions assigned by your organisation
• Authentication and access logs (login times, source IP address)
• Communications you send us (e.g. support requests, contact-form submissions)

3. What we don't collect

We do not collect, access, process, or retain:

• Personal data of our broker customers' end-customers (retail traders, account holders, professional clients)
• Account balances, trading positions, deposits, withdrawals, KYC/AML records, or transaction-level data
• Special categories of personal data (health, biometric, racial or ethnic origin, political opinions, religious beliefs)
• Payment-card information

4. How we use personal data

We use the personal data we collect to:

• Authenticate you and authorise access to the platform
• Provide the analytics and alert services you have subscribed to
• Detect and respond to suspected security incidents
• Communicate with you about the service, support, and material updates
• Meet our legal and contractual obligations

We do not use personal data for advertising, profiling, or automated decision-making with legal effects.

5. Legal basis for processing (EU/UK users)

Where the EU or UK General Data Protection Regulation applies, our legal bases for processing are: (a) the performance of a contract with the organisation that has authorised your access to the platform; (b) our legitimate interest in operating, securing, and improving the service; and (c) compliance with legal obligations to which BBI is subject.

6. Where we store and process data

Production infrastructure is hosted in Amazon Web Services in Sydney, Australia (ap-southeast-2). Personal data is encrypted in transit and at rest. Data does not leave the AWS Sydney region except via clearly disclosed sub-processors.

7. Sharing and sub-processors

We share personal data only with a small number of trusted sub-processors that support delivery of the platform. Each is bound by appropriate data-processing terms. Our current sub-processor list is published at brokerbi.io/sub-processors and is kept up to date.

We do not sell personal data, and we do not share personal data with third parties for advertising or marketing purposes.

8. How long we keep data

We retain personal data only as long as necessary for the purposes set out in this policy or as required by law. When a user is deactivated or an organisation offboards, we delete or anonymise associated personal data within an agreed timeframe, subject to retention obligations for tax, legal, and audit purposes. Encrypted backups age out under our 30-day backup retention policy.

9. Cookies and tracking

The BBI platform uses cookies strictly necessary for authenticated session management. Our marketing site uses cookies for basic functionality and bot verification. We do not use third-party advertising or behavioural-tracking cookies.

10. Your rights

Subject to applicable law (the Australian Privacy Act 1988, the EU/UK GDPR, and other regimes that may apply to you), you have the right to:

• Access the personal data we hold about you
• Correct inaccurate or incomplete personal data
• Request deletion of your personal data, subject to legal exceptions
• Object to or restrict certain processing
• Receive your personal data in a portable format
• Lodge a complaint with the Office of the Australian Information Commissioner (OAIC) or your local supervisory authority

To exercise any of these rights, contact us at info@brokerintelligence.io. We respond within statutory timeframes.

11. Security

We protect personal data with technical and organisational controls including encryption in transit and at rest, multi-factor authentication for corporate accounts, least-privilege access, and edge protection through a managed Web Application Firewall. A summary of our security posture is available at brokerbi.io/security.

12. Children

The BBI platform is not directed to, and not intended for use by, individuals under the age of 18. We do not knowingly collect personal data from children.

13. Changes to this policy

We may update this policy from time to time. Material changes will be posted on this page with an updated “last updated” date. Where the change materially affects your rights, we will notify you through the platform or by email.

14. Contact

For privacy enquiries, data-subject requests, or to report a concern, contact us at info@brokerintelligence.io. Security disclosures should be sent to security@brokerintelligence.io.