NEW EOFY offer: Setup your compliance system free. Test it 14 days, pay nothing.  Apply now →

Privacy Policy

Updated: May 19, 2025

1. Introduction

Welcome to GO! Site Ready (“Service”), operated by Project Is A Go Pty Ltd (“we,” “us,” “our”). We are committed to protecting the privacy of our users (“you,” “your”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website (https://gositeready.com/) and our Service.

This policy is designed to comply with various privacy regulations, including the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth), the General Data Protection Regulation (GDPR) for users in the European Union (EU) and United Kingdom (UK), Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA), and the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA).

Please read this Privacy Policy carefully. By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this privacy policy, please do not access the Service.

We reserve the right to make changes to this Privacy Policy at any time and for any reason. We will alert you about any changes by updating the “Last Updated” date of this Privacy Policy.

2. Definitions

  • Personal Data: Any information relating to an identified or identifiable natural person (“Data Subject”). This can include name, email address, IP address, payment information, etc.
  • Processing: Any operation performed on Personal Data, such as collection, recording, organization, storage, use, disclosure, or deletion.
  • Data Controller: The entity that determines the purposes and means of processing Personal Data. For your direct interactions with us (e.g., account information, billing), Project Is A Go Pty Ltd is the Data Controller.
  • Data Processor: An entity that processes Personal Data on behalf of the Data Controller. When you use GO! Site Ready to create content that includes personal data of your own visitors or customers, you are typically the Data Controller for that data, and Project Is A Go Pty Ltd acts as your Data Processor, processing that data based on your instructions.
  • Service: The GO! Site Ready SAAS product and associated website.
  • User: Anyone who accesses or uses the Service.

3. Information We Collect

We may collect Personal Data about you in a variety of ways. The information we may collect via the Service includes:

  • Identity Data: Such as your full name, username, or similar identifier.
  • Contact Data: Including your email address, telephone number, and billing/physical address.
  • Financial Data: We use third-party payment processors (Paddle and Stripe) to handle payments. We do not directly store your full credit card numbers. However, we may receive transaction data from our payment processors, such as confirmation of payment, subscription details, and potentially partial payment information or billing address details.
  • Transaction Data: Details about payments to and from you and other details of products and services you have purchased from us.
  • Technical Data: Information automatically collected when you access the Service, such as your IP address, browser type, operating system, access times, device information, and the pages you have viewed directly before and after accessing the Service.
  • Usage Data: Information about how you use our website and Service, including features used, actions taken, and time spent on the platform.
  • User-Generated Content: Any content you create, upload, or store using the GO! Site Ready service (e.g., text, images, data for websites you build). This content may contain Personal Data for which you are the Data Controller.
  • Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.

We collect this information:

  • Directly from you: When you register for an account, make a purchase, contact customer support, or otherwise communicate with us.
  • Automatically: As you navigate through and interact with our Service (e.g., usage details, IP addresses, information collected through cookies).
  • From third parties: Such as our payment processors (Paddle, Stripe) who provide us with transaction confirmation and necessary user details for fulfillment.

4. How We Use Your Information

We use the information we collect for various purposes, grounded in principles like purpose limitation and identified purposes:

  • To Provide and Manage the Service: Create and manage your account, provide customer support, and operate the GO! Site Ready platform.
  • To Process Transactions: Facilitate payments through our partners, Paddle and Stripe, manage subscriptions, and prevent transactional fraud.
  • To Communicate with You: Respond to your inquiries, send administrative information (e.g., updates to terms, security alerts), and provide service-related assistance.
  • To Improve Our Service: Analyze usage trends, monitor the effectiveness of features, troubleshoot issues, and enhance user experience.
  • For Security Purposes: Monitor for and prevent fraudulent or unauthorized activity, and ensure the security and integrity of our Service.
  • For Marketing Communications: Send you newsletters, promotions, and information about our products or services, subject to your consent or right to opt-out.
  • To Comply with Legal Obligations: Fulfill legal requirements, respond to lawful requests from public authorities, and enforce our agreements.

If you are located in the EU or UK, we rely on the following lawful bases under the GDPR to process your Personal Data:

  • Performance of a Contract: Processing is necessary to provide the GO! Site Ready Service to you according to our Terms and Conditions.
  • Legitimate Interests: We process some data based on our legitimate interests (e.g., for service improvement, fraud prevention, security, and, in some cases, direct marketing where permitted), provided these interests are not overridden by your data protection rights. When receiving data from Paddle for fulfillment or support, we rely on legitimate interest.
  • Consent: For certain activities, like sending specific marketing communications or using non-essential cookies, we will rely on your explicit consent. You can withdraw your consent at any time.
  • Legal Obligation: We may process your data where necessary to comply with a legal obligation (e.g., tax laws, responding to legal process).

6. Data Sharing and Disclosure

We may share your Personal Data in the following situations:

  • With Service Providers: We engage third-party companies and individuals to perform services on our behalf (e.g., hosting providers, analytics providers, customer service tools, email delivery services). These providers only have access to the Personal Data necessary to perform their tasks and are obligated not to disclose or use it for other purposes.
  • With Payment Processors:
    • Paddle: As our Merchant of Record, Paddle processes your payments and handles related compliance for the transaction. We receive necessary buyer information from Paddle based on legitimate interest for order fulfillment, support, and fraud prevention. We only use this data for these specified purposes unless Paddle has obtained your explicit consent for other uses (like marketing) on our behalf. You can view Paddle’s Privacy Policy here.
    • Stripe: We use Stripe for payment processing. Your payment details are provided directly to Stripe, and their privacy policy governs their use of that information. We receive necessary transaction confirmations and related data from Stripe. We ensure necessary notices and consents are provided to allow Stripe to process data as required. You can view Stripe’s Privacy Policy here.
  • For Legal Reasons: We may disclose your information if required by law, subpoena, or other legal process, or if we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
  • Business Transfers: In connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company, your Personal Data may be transferred.
  • With Your Consent: We may disclose your Personal Data for any other purpose with your consent.
  • CCPA/CPRA: We do not “sell” your Personal Data as traditionally understood. However, the definitions of “sale” and “sharing” under the CCPA/CPRA are broad. If our use of certain third-party analytics or advertising tools were deemed a “sale” or “sharing,” California residents have the right to opt-out. Please see Section 12 for how to exercise your rights.

7. International Data Transfers

Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction.

If you are located outside Australia and choose to provide information to us, please note that we transfer the data, including Personal Data, to Australia and process it there, as well as potentially in other locations where our service providers operate.

For transfers of Personal Data from the EEA, UK, or Switzerland, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions. For transfers from Australia, we take reasonable steps to ensure the overseas recipient handles the information in accordance with the Australian Privacy Principles (APPs), often through contractual arrangements.

8. Data Security

We implement reasonable technical and organizational security measures designed to protect the security of any Personal Data we process. These measures include encryption, access controls, and regular security assessments. However, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security. You are also responsible for maintaining the security of your account credentials.

9. Data Retention

We will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). When we have no ongoing legitimate business need to process your Personal Data, we will either delete or anonymize it, or, if this is not possible (for example, because your Personal Data has been stored in backup archives), then we will securely store your Personal Data and isolate it from any further processing until deletion is possible.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies (like web beacons and pixels) to access or store information. Specific information about how we use such technologies and how you can refuse certain cookies is set out in our Cookie Policy. Generally, we use cookies for:

  • Essential Operations: Necessary for the Service to function.
  • Performance and Analytics: To understand how users interact with our Service.
  • Functionality: To remember your preferences and settings.
  • Marketing: (If applicable) To deliver relevant advertising, subject to consent.

You can typically manage cookie preferences through your browser settings. Our Service does not currently respond to Do-Not-Track (DNT) signals.

11. Children’s Privacy

Our Service is not directed to individuals under the age of 16. We do not knowingly collect Personal Data from children under this age. If we become aware that we have collected Personal Data from a child without verification of parental consent, we will take steps to remove that information from our servers.

12. Your Data Protection Rights

Depending on your location, you may have the following rights regarding your Personal Data:

  • Right to Access: Request access to the Personal Data we hold about you.
  • Right to Rectification: Request correction of inaccurate or incomplete Personal Data.
  • Right to Erasure (Deletion): Request deletion of your Personal Data, subject to certain exceptions (e.g., legal obligations, ongoing service provision).
  • Right to Restrict Processing: Request the restriction of processing your Personal Data in certain circumstances.
  • Right to Data Portability: Request a copy of your Personal Data in a structured, machine-readable format.
  • Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.
  • Right to Withdraw Consent: Withdraw consent at any time where we rely on consent to process your data.
  • Right to Opt-Out of Sale/Sharing (California Residents): Direct us not to “sell” or “share” your Personal Data for cross-context behavioral advertising.
  • Right to Non-Discrimination: Not be discriminated against for exercising your privacy rights.
  • Right to Lodge a Complaint: Lodge a complaint with a relevant data protection authority.

How to Exercise Your Rights:

To exercise any of these rights, please contact us using the contact details provided below (Section 14). We may need to verify your identity before processing your request. We will respond to your request within the timeframes required by applicable law (e.g., typically within 30–45 days).

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated “Last Updated” date and will be effective as soon as it is accessible. We encourage you to review this Privacy Policy frequently to be informed of how we are protecting your information. We may notify you of significant changes either by prominently posting a notice of such changes or by directly sending you a notification.

14. Contact Us

If you have questions or comments about this Privacy Policy, or wish to exercise your data protection rights, please contact us at:

Project Is A Go Pty Ltd
PO BOX 2468
Redcliffe North QLD 4020
[email protected]
1300 955 838

If you are in Australia and have a complaint, you may also contact the Office of the Australian Information Commissioner (OAIC). If you are in the EU/UK, you have the right to lodge a complaint with your local data protection supervisory authority. If you are in Canada, you may contact the Office of the Privacy Commissioner of Canada.