1/20 Donaldson Street, Wyong NSW 2259
+61243511361
helpdesk@wycom.com.au

Privacy Policy

"PREVENTION IS CHEAPER THAN A BREACH"

 
 
 
 
 
 

Website Privacy Policy

Wycom Technology respects your privacy and is committed to protecting personal information collected through our website, service enquiries, support channels, client systems, and business operations.

Last updated: 24 May 2026
Australian Privacy Principles aligned
Cyber security and managed IT services.
 

1. Who we are

In this Privacy Policy, “Wycom”, “we”, “us” and “our” means Wycom Technology Pty Ltd [ABN: add ABN], an Australian technology services provider offering managed IT, cyber security, cloud, Microsoft 365, support, consulting, and related business technology services.

This policy explains how we collect, use, hold, protect, and disclose personal information. It also explains how you can contact us to access or correct your information, ask a privacy question, or make a privacy complaint.

Publishing note: Replace all bracketed placeholders before this page goes live, including the ABN, address, telephone number, and privacy contact email.

2. Scope of this policy

This Privacy Policy applies to personal information we handle when you:

  • visit or interact with our website;
  • submit a website form, enquiry, quotation request, support request, or service request;
  • communicate with us by email, phone, video meeting, live chat, social media, or in person;
  • become a client, supplier, contractor, partner, or business contact;
  • use services we provide, including managed IT, cyber security, remote monitoring, cloud, backup, and support services; or
  • apply for a role, submit business information, or otherwise deal with Wycom.

Some Wycom services involve us accessing systems, logs, devices, mailboxes, cloud tenants, security alerts, ticketing data, or business records on behalf of a client. In those circumstances, we may handle personal information as a service provider, technician, administrator, or managed service provider under our agreement with the client.

3. Information we collect

The types of personal information we collect depend on your relationship with us and the services requested. This may include:

Contact details
Name, business name, role, email address, phone number, postal address, and preferred contact method.
Business and billing details
Company details, ABN, billing contacts, payment status, service history, quotations, invoices, and order records.
Support and service data
Helpdesk tickets, fault descriptions, screenshots, remote support notes, device names, usernames, diagnostic information, and service communications.
Technical and security data
IP addresses, device identifiers, sign-in records, audit logs, endpoint alerts, configuration data, backup status, security alerts, system health data, and Microsoft 365 or cloud service information.
Website data
Browser type, device type, pages visited, referring pages, approximate location, cookies, analytics data, and online enquiry activity.
Recruitment or contractor details
Resume, employment history, references, certifications, right-to-work information, and other information you provide when seeking work with us.

We generally do not seek to collect sensitive information unless it is reasonably necessary for our functions or activities, you have consented, or we are required or authorised by law. Sensitive information may include information about health, biometrics, membership of professional associations, or other legally defined sensitive categories.

4. How we collect information

We may collect personal information directly from you when you:

  • complete a website form or request a quote;
  • create, update, or respond to a support ticket;
  • call, email, message, or meet with us;
  • subscribe to updates, newsletters, or marketing communications;
  • provide documents, screenshots, credentials, diagnostic data, or other information for support purposes; or
  • enter into a service agreement or business arrangement with us.

We may also collect personal information from third parties where appropriate, including:

  • your employer or organisation, if they engage Wycom to provide services;
  • authorised representatives, suppliers, distributors, vendors, or referral partners;
  • cloud, security, monitoring, ticketing, backup, accounting, and communication platforms used to deliver our services;
  • publicly available sources such as company websites or business directories; and
  • regulators, government agencies, or law enforcement bodies where required or authorised by law.

5. Why we use information

We collect, hold, use, and disclose personal information for purposes including:

  • responding to enquiries and providing quotes, proposals, and service information;
  • delivering managed IT, cyber security, helpdesk, cloud, Microsoft 365, backup, monitoring, and consulting services;
  • setting up, administering, securing, and supporting client environments;
  • investigating faults, alerts, security incidents, unauthorised access, phishing, malware, and system performance issues;
  • communicating with clients, users, suppliers, partners, and authorised contacts;
  • maintaining accurate client, ticketing, licensing, billing, and contract records;
  • improving our website, services, security processes, documentation, and customer experience;
  • providing service notices, security advisories, renewal reminders, and relevant business updates;
  • meeting legal, regulatory, insurance, accounting, audit, and compliance obligations; and
  • protecting Wycom, our clients, users, systems, staff, and third parties from fraud, misuse, cyber threats, or unlawful activity.

6. Client systems and security data

As a managed IT and cyber security provider, Wycom may be granted access to client systems and information so we can perform support, administration, monitoring, backup, security, and remediation services. This may include personal information contained in usernames, email addresses, ticket notes, device records, audit logs, security alerts, file paths, configuration records, or business documents supplied to us for support.

Where we access client environments, we aim to:

  • access information only as reasonably necessary to provide the relevant service;
  • limit access to authorised Wycom personnel, contractors, or approved service providers who require access for legitimate business purposes;
  • use appropriate technical and organisational safeguards, such as access controls, multi-factor authentication, logging, and secure administration practices;
  • handle information in accordance with our agreement with the client and applicable law; and
  • avoid copying or retaining client data unless required for support, evidence, reporting, backup, contractual, legal, or compliance reasons.
If you are an employee or user of one of our clients, your employer or organisation may also have its own privacy policy that explains how it collects and uses your information.

7. When we may share information

We do not sell personal information. We may disclose personal information where reasonably necessary for the purposes described in this policy, including to:

  • our employees, contractors, technicians, consultants, and authorised representatives;
  • technology vendors, distributors, cloud providers, hosting providers, security platforms, RMM providers, backup providers, and software partners;
  • ticketing, CRM, accounting, communication, marketing, and business administration providers;
  • professional advisers such as accountants, insurers, auditors, and legal advisers;
  • payment processors and financial institutions;
  • government agencies, regulators, courts, tribunals, law enforcement bodies, or other parties where required or authorised by law;
  • another entity involved in a business sale, restructure, merger, financing, or transfer of Wycom assets, subject to appropriate confidentiality arrangements; and
  • other parties where you have consented or where disclosure is otherwise permitted by law.

Where practical, we require third-party service providers to handle personal information securely and only for the purposes for which it was provided.

8. Overseas disclosure and cloud services

Wycom uses modern cloud, security, communication, support, and business platforms to provide services efficiently and securely. Some providers may store, process, or access information from locations outside Australia.

The countries involved may vary depending on the product, client environment, support arrangement, vendor, data centre location, and service configuration. Where it is practicable to identify likely locations, these may include Australia, New Zealand, the United States, the United Kingdom, the European Union, Canada, Singapore, and other regions used by major cloud and technology service providers.

Before disclosing personal information overseas, we take reasonable steps in the circumstances to assess and manage privacy and security risks, including through vendor selection, contractual safeguards, security controls, access restrictions, and client-specific configuration decisions where applicable.

9. Cookies, analytics, and website technologies

Our website may use cookies, pixels, analytics tools, embedded content, spam protection, security monitoring, and similar technologies. These technologies help us operate the website, improve performance, understand visitor activity, protect against misuse, and measure the effectiveness of our content and campaigns.

Website technologies may collect information such as:

  • IP address and approximate location;
  • browser, operating system, and device details;
  • pages visited, time on page, referral source, and interactions;
  • form submission metadata; and
  • cookie identifiers and analytics identifiers.

You can manage or disable cookies through your browser settings. Some parts of our website may not function correctly if cookies are disabled.

10. Security and retention

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification, or disclosure. Depending on the circumstances, these steps may include:

  • access controls and role-based permissions;
  • multi-factor authentication and identity controls;
  • endpoint protection, logging, monitoring, and alerting;
  • secure administrative processes and technician access controls;
  • backup, disaster recovery, and business continuity practices;
  • staff awareness, internal procedures, and confidentiality obligations;
  • vendor due diligence and contractual safeguards; and
  • secure disposal, deletion, or de-identification where information is no longer required.

We retain personal information for as long as reasonably necessary for the purpose for which it was collected, to provide services, maintain business records, resolve disputes, comply with legal and accounting obligations, enforce agreements, or protect our legitimate business and security interests. When information is no longer required, we take reasonable steps to destroy or de-identify it unless we are required or permitted to retain it.

11. Access and correction

You may request access to personal information we hold about you or ask us to correct it if you believe it is inaccurate, incomplete, out of date, irrelevant, or misleading.

To protect privacy and security, we may need to verify your identity before responding. In some cases, we may not be able to provide access to particular information, for example where access would unreasonably affect another person’s privacy, reveal confidential business information, compromise security, or where an exception applies under law.

If we refuse a request, we will provide reasons where it is reasonable and lawful to do so.

12. Marketing communications

We may use your business contact details to send relevant information about Wycom services, security updates, technology alerts, events, offers, newsletters, or business updates. You can opt out of marketing communications at any time by using the unsubscribe option in the message or by contacting us.

Even if you opt out of marketing, we may still send service-related communications, such as support updates, security alerts, billing notices, service outage information, renewal reminders, or important contractual notices.

13. Data breaches

If we become aware of a suspected data breach involving personal information, we will assess the situation and take steps to contain, investigate, and remediate the incident. Where the Notifiable Data Breaches scheme applies and a breach is likely to result in serious harm, we will notify affected individuals and the Office of the Australian Information Commissioner as required by law.

Because Wycom provides managed IT and cyber security services, some incidents may involve client-controlled systems. In those cases, we will work with the relevant client in accordance with our service agreement, incident response obligations, and applicable law.

14. Privacy complaints

If you have a privacy concern or complaint, please contact us using the details below. Please include enough information for us to understand and investigate your concern.

We will aim to:

  • acknowledge your complaint within a reasonable time;
  • investigate the issue fairly and securely;
  • request further information if needed;
  • provide a response or proposed resolution; and
  • take corrective action where appropriate.

If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner or seek independent advice.

15. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our services, website, technology platforms, business operations, legal obligations, or privacy practices. The latest version will be published on this page with the updated date shown at the top.

Scroll to top