Privacy Policy
Last Updated: May 23, 2025
At ResiKEY Pty Ltd ("ResiKEY", "we", "our", "us"), your privacy is important to us. This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you use the ResiKEY mobile application (“App”), which facilitates secure digital access to physical spaces using wallet-based credentials.
1. Information We Collect
We collect personal and technical information to enable and support secure access management. This may include:
Personal Information:
- Name
- Email address
- Phone number
- Organisation or building association
- Access level or permissions
Device & Usage Information:
- Mobile device type and operating system
- App version and usage patterns
- IP address and general location data (city-level only)
- Credential provisioning and access event logs (time, status, entry point)
Third-Party Information:
- Building or organisation-provided data to link access permissions
- Digital wallet token identifiers (e.g., Apple Wallet or Google Wallet)
- We do not collect or retain biometric data. Biometric authentication (e.g., Face ID, fingerprint) is managed solely by your device.
2. How We Use Your Information
We use your information to:
- Authenticate users and issue access credentials
- Link access permissions with participating buildings or organisations
- Maintain and improve app functionality and security
- Provide customer support and respond to inquiries
- Send operational notifications (e.g., access updates, credential changes)
- Comply with legal and regulatory requirements
3. Sharing of Information
We may share your information with:
- Authorised organisations (e.g., building managers) who issue and manage credentials
- Technology partners and service providers who help us deliver the App (e.g., hosting providers, analytics services)
- Legal or regulatory authorities when required to comply with applicable laws
- We do not sell or rent your personal information.
4. Data Security
We implement industry-standard measures to protect your data, including:
- End-to-end encryption
- Secure authentication protocols
- Role-based access controls
- Regular audits and system updates
- Despite these measures, no system is 100% secure. We encourage you to use strong device passcodes and keep your mobile OS up to date.
5. Your Rights and Choices
Depending on your jurisdiction, you may have rights to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your data
- Withdraw consent (e.g., opt out of non-essential communications)
- You can exercise these rights by contacting Resikey
6. Data Retention
We retain your data only as long as necessary to:
- Provide the services
- Comply with our legal obligations
- Resolve disputes
- Enforce our agreements
- Once your account is deleted or access is revoked by your organisation, your associated data will be deleted or anonymised in accordance with our data retention policy.
7. Children's Privacy
ResiKEY is not intended for use by children under the age of 16. If we become aware that we have collected personal information from a minor without appropriate consent, we will take steps to delete it.
8. International Users
While ResiKEY primarily operates in Australia, your information may be stored and processed on servers located in other countries. We take reasonable steps to ensure overseas recipients comply with privacy laws consistent with this policy.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If changes are significant, we will notify you via the App or by email. The latest version will always be available at www.resikey.co/privacy-policy
10. Contact Us
If you have any questions or concerns about this Privacy Policy or how your information is handled, please contact:
Privacy Officer
ResiKEY Pty Ltd
Melbourne, Victoria, Australia
