Privacy Policy
Last updated: 2026-03-24
MyanOz (“we”, “our”, “us”) is committed to protecting your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). This policy explains what data we collect, why, and how you can exercise your rights.
1. Information We Collect
Account information
When you register, we collect your email address and display name. This is required to authenticate you and attribute reviews or business submissions.
Business listing information
If you submit a business listing, we collect the business name, address, phone number, email, category, and any description or images you provide. This information is displayed publicly on the directory.
User-generated content
Reviews, ratings, and comments you submit are stored and displayed publicly alongside your display name.
Usage and analytics data
We use PostHog (posthog.com) for product analytics. PostHog collects anonymised data about pages visited, session duration, and interaction events to help us improve the platform. IP addresses are anonymised before storage. You can opt out via the cookie consent banner.
Error and performance monitoring
We use Sentry (sentry.io) for error monitoring. When the application encounters an unexpected error, Sentry may capture the URL, browser type, and a stack trace. Sentry data is used solely for debugging and is not used for marketing.
Device and browser data
Standard server logs may include your IP address, browser type, referring URL, and timestamp. Logs are retained for 30 days for security purposes.
2. How We Use Your Information
- Authentication — to verify your identity and maintain your session securely.
- Service delivery — to display business listings, reviews, and personalised language preferences.
- Transactional email — we use Resend (resend.com) to send account-related emails such as password resets and submission confirmations. We do not send unsolicited marketing email.
- Analytics and improvement — to understand how the platform is used and identify areas for improvement, using anonymised PostHog data.
- Security — to detect and prevent abuse, fraud, and unauthorised access.
3. Cookies
| Cookie | Purpose | Type |
|---|---|---|
| auth_token | HttpOnly JWT authentication cookie. Keeps you logged in. | Essential |
| NEXT_LOCALE | Stores your preferred language (en, my, kar). | Functional |
| ph_* | PostHog analytics. Anonymised. Can be declined via cookie banner. | Analytics |
4. Third-Party Services
The following third-party processors handle personal data on our behalf under data processing agreements:
- PostHog (posthog.com) — product analytics. Data may be stored in the EU or US. See their privacy policy.
- Sentry (sentry.io) — error monitoring. See their privacy policy.
- Resend (resend.com) — transactional email. See their privacy policy.
We do not sell your personal data to any third party.
5. Data Retention
- Account data is retained for as long as your account is active.
- After account deletion, personal data is removed within 30 days, except where retention is required by law or for fraud prevention.
- Server logs are retained for 30 days.
- Anonymised analytics data may be retained indefinitely.
6. Your Rights (Australian Privacy Act)
Under the Australian Privacy Principles, you have the right to:
- Access — request a copy of the personal information we hold about you.
- Correction — request that inaccurate or incomplete information be corrected.
- Deletion — request deletion of your account and associated personal data.
- Opt out of analytics — decline non-essential cookies via the consent banner at any time.
To exercise any of these rights, contact us at privacy@myanoz.com. We will respond within 30 days.
If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).
7. Children’s Privacy
MyanOz is not directed at children under the age of 13. We do not knowingly collect personal information from anyone under 13. If you believe we have inadvertently collected such information, please contact us immediately at privacy@myanoz.com.
8. Data Security
We implement industry-standard security measures including HTTPS encryption, HttpOnly authentication cookies, server-side input validation, and regular dependency security audits. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via the platform or by email to registered users. Continued use after the effective date constitutes acceptance.
10. Contact
For privacy-related enquiries, contact us at privacy@myanoz.com.