Logo stroke

1.About us

Scildan Legal Pty Ltd (ABN 59 688 462 820) (we, our or us) is a boutique legal and advisory firm that helps clients with issues around technology, data, privacy, cybersecurity and artificial intelligence.

To work with Scildan Legal, or to use our website and services, we may need to collect some basic information about you. We understand that some of this information may be sensitive, and we take your privacy and the protection of your personal information seriously.

While we are not currently bound by the Privacy Act 1988 (Cth), we believe in being transparent about how we handle personal information. This policy sets out how we collect, use, store and protect your personal information, and reflects our commitment to treating your data with care and respect.

2. TL;DR: A Quick Summary of Our Privacy Policy

We respect your privacy. We’re not currently bound by the Privacy Act, but we still take privacy seriously and want you to know how we handle your personal information.

We collect personal info like your name, contact details, and info relevant to the legal work we do for you. We may also collect technical info when you visit our website.

Most of the information we collect comes from you, but we might also receive it from referrers, service providers, or publicly available sources.

We use your information to provide services, respond to enquiries, improve our operations, and send you insights or updates.

We may use secure AI tools to help deliver services efficiently, always with safeguards in place, but information may be processed in the USA and/or Europe.

We store your data securely using Microsoft 365, and use Microsoft Defender and Intune to protect against unauthorised access.

We don’t sell your data. We only share it with trusted parties when needed to provide our services or comply with the law.

You can access or correct your info at any time by getting in touch.

We may use cookies and pixels to improve your website experience but you can manage these through your browser settings.

You don’t have to give us your info, but we might not be able to assist you if you don’t.

You can complain if you’re concerned about how we handle your personal information and we’ll take it seriously.

We may update this Privacy Policy from time to time. If the changes are significant, we’ll let you know.

3. What personal information do we collect?

3.1 What is personal information?

When we talk about personal information in this policy, we mean any information or opinion that can reasonably be used to identify you. It might include things like your name, contact details, job title, or anything else that makes you identifiable, whether the information is true or not, and whether it's written down or not.

If the information we collect identifies you (or could reasonably identify you), we treat it as personal information.

3.2 What kinds of personal information are collected?

We collect different types of personal information as part of running our business, including when we provide legal services, communicate with clients and partners, or when you use our website (https://www.scildanlegal.com.au).

Most of the personal information we collect comes directly from you, for example, when you contact us, engage our services, or fill out a form on our website. In some cases, we may also collect information from other sources, such as public records or third parties (like a referral partner or service provider).

Information obtained from you directly:

The personal information we collect depends on how you engage with us whether you’re a client, contact, supplier, job applicant or visitor to our website. We aim to collect only what we reasonably need to deliver our services and operate our business.

We may collect the following types of personal information:

Identity Data – such as your name, age, date of birth, profession, or photographic identification.

Contact Data – including your email address, phone number, date of birth and postal address.

Financial Data – such as your bank account or payment card details

Transaction Data – including details of payments made by or to you, and records of the services you’ve received from us (or we’ve received from you, if you're a supplier).

Technical and Usage Data – when you visit our website, we may collect your IP address, browser type, device info, geo-location data, search and click behaviour, and session statistics. This may occur through cookies and analytics tools.

Interaction Data – including information you share with us through social media, surveys, forms, events, or other interactive features.

Marketing and Communications Data – including your preferences for receiving updates or promotional materials from us or third parties, and how you prefer to communicate with us.

Professional Data – if you work with us or apply for a role, we may collect your CV, qualifications, past work experience, and any licences or authorisations you hold.

Information We May Collect from Other Sources

In some cases, we may collect personal information about you indirectly. This may include:

Information you’ve shared with third parties where it’s reasonable to expect they’ll pass it on to us, for example, a professional referrer or service provider.

Technical data from your use of our website, such as your browser session, device and network information, location data, page views, referral sources, and browsing behaviour. This may be collected through cookies, analytics, or other tracking technologies.

We may also collect information that doesn’t personally identify you. For example, we may receive anonymous survey responses or aggregate data about how people use our website. This kind of information helps us improve our services, but it can’t be used to identify you.

3.3  How do we collect your Personal Information?

How We Collect Information Directly from You

Contact us by phone, email, or through online forms

Meet or consult with us in person

Engage our services or request a proposal or quote

Interact with us via our website or social media channels

Complete surveys, respond to questionnaires, or attend events

Subscribe to our updates, newsletters, or mailing lists

Communicate with our service providers on our behalf (such as IT, marketing, or billing platforms)

How We May Collect Information Indirectly

We may also collect personal information about you from third parties, where you'd reasonably expect us to, for example:

From other professional advisors, consultants or referrers who have your permission to share your information with us

From regulators, government agencies, or public bodies

From publicly available sources, such as professional profiles, company websites, or public records

From service providers who help us run our business, including IT, analytics, payment, or marketing partners

Where possible, we only collect this information when it's necessary for the services we’re providing or for managing our business relationships.

Unsolicited Information

Sometimes we may receive personal information we didn’t ask for — for example, if someone sends us an email intended for someone else, includes personal details about another person in correspondence, or shares promotional material with their contact information.

If we receive personal information that we didn’t request and it’s not reasonably required for us to provide our services or operate our business, we’ll take reasonable steps to delete or de-identify it as soon as we can.

Anonymity and pseudonymity

Where it’s practical and lawful, we’ll give you the option to interact with us anonymously or by using a pseudonym. However, in most cases,particularly where we are providing legal services or engaging in formal communications, we’ll need to know who you are to assist you properly.

4. Why do we collect personal information?

4.1  Primary Purposes – Business Related

We collect, use, store and share personal information so we can deliver high-quality legal and advisory services and keep you informed about what we offer.

In particular, we may use your personal information to:

Communicate with you and respond to your enquiries

Provide services and advice, including managing your file or matter

Maintain internal records for administrative, billing and compliance purposes

Develop, improve and tailor our services, website, and processes

Send updates, insights, or invitations that may be relevant to you

Troubleshoot issues or address feedback about our services

Assess job applications or manage professional relationships

Carry out any other business activities or functions that support the services we provide

We may also use your personal information to help us responsibly adopt and apply artificial intelligence (AI) tools. For example, we may use AI to support legal research, summarise documents, improve efficiency, or deliver insights but only in ways that are secure, ethical, and aligned with our professional obligations. We take care to ensure that any use of AI respects your privacy and is fit for the purpose it’s used for.

We’ll only use your personal information for a different purpose (other than why we originally collected it) if:

you’ve given your consent, or

the new purpose is related to the original reason we collected it, and you would reasonably expect us to use it in that way.

For sensitive information, we’ll only use or disclose it for a different purpose if:

you’ve given your express consent, or

the new purpose is directly related to the original reason we collected it, and you would reasonably expect us to use it in that way, or

we are required or authorised to do so by law.

4.2 Marketing and Updates

We may use your personal information to send you direct marketing communications including insights, invitations, and information about our services where you have provided your consent or where you would reasonably expect to receive them from us.

These communications may be sent via email, SMS, phone or post. Where they are electronic commercial messages, we will comply with the requirements of the Spam Act 2003 (Cth), including obtaining your consent and providing a clear way to unsubscribe.

You can opt out of receiving any marketing communications from us at any time by following the unsubscribe instructions in the message or by contacting us at marketing@scildanlegal.com.au.

Please note, even if you opt out of marketing messages, we may still send you service-related communications necessary to deliver legal services or manage your relationship with us. We won’t use your sensitive information for direct marketing unless you have expressly consented to it.

5. What do we do with your personal information?

5.1 Who do we share your personal information with?

We may share your personal information with trusted third parties when it’s necessary to deliver our services, operate our business, or meet legal obligations. This may include:

Our employees, contractors, and professional advisors

Government agencies, regulators, courts or law enforcement (where required or authorised by law)

External service providers who help us run our business — such as IT providers, cloud hosting services (e.g. Microsoft), data storage partners, and website or email platform providers

Analytics and data processing providers like Google Analytics

AI technology providers we may use to assist with legal research, drafting, summarisation, or other service delivery, always with appropriate safeguards in place

Other third parties where you’ve authorised us to share your information, or where we are legally required to do so

We do not sell your personal information to anyone. We only share it where reasonably necessary to deliver legal services, manage our operations, engage in marketing activities or comply with the law.

Disclosure of personal information outside Australia

In some cases your personal information may be stored or processed by third parties based overseas particularly where we use cloud services, data analytics platforms (like Google Analytics), or AI tools that assist with tasks such as document review, drafting, or workflow automation. These providers may operate or store data outside Australia. These organisations primarly operate in the United States of America and Europe.

Where personal information is disclosed to overseas recipients, we will take reasonable steps to ensure that those third parties do not breach the Australian Privacy Principles, unless:

you have expressly consented to the disclosure

we reasonably believe the overseas recipient is subject to a law or binding scheme that is overall substantially similar to the APPs, and that it can be enforced, or

the disclosure is required or authorised by Australian law or a court/tribunal order.

5.2 How do we store and protect your personal information?

We’re committed to keeping the personal information we collect safe and secure.

Your information is stored in Microsoft 365’s secure cloud environment, which includes encryption both at rest and in transit. Our systems are hosted on infrastructure based in Australia, and we rely on Microsoft’s enterprise-grade security capabilities to help protect your data.

We use Microsoft Defender for Business and Microsoft Intune Endpoint Protection to safeguard our devices and systems. These tools provide advanced threat protection, malware detection, secure identity management, and remote device management, helping us monitor, prevent, and respond to unauthorised access or activity.

We take security seriously and apply appropriate technical and organisational measures to protect personal information from misuse, interference, unauthorised access, modification, or disclosure.

These measures include:

Restricting access to personal information on a ‘need to know’ basis

Monitoring and logging access to systems

Using secure work environments and encrypted communications

Enforcing strong access controls and endpoint protections

Regularly reviewing and updating our security practices

While we take reasonable steps to protect your personal information, no method of transmission over the internet or storage is completely secure. Any transmission is at your own risk but once we receive your information, we take active steps to protect it.

5.3 How long do we hold your personal information?

We keep personal information only for as long as it’s needed for the purposes for which it was collected.
In most cases, this means we retain your information for the duration of your relationship with us. After that, we’ll only keep it if we’re required to do so by law — for example, under legal, regulatory or professional obligations, or by order of a court, tribunal or government authority.

When personal information is no longer needed and we’re not legally required to retain it, we’ll take reasonable steps to securely destroy or de-identify it.

6. Accessing or correcting your information

You have the right to access the personal information we hold about you and to request corrections if you believe it’s inaccurate, out of date, incomplete or misleading.

To make a request, please contact us using the details at the end of this policy. We’ll take reasonable steps to verify your identity and respond within a reasonable timeframe.

If we correct your information, you can also ask us to take reasonable steps to notify any third parties we’ve shared the original information with — unless it’s unreasonable or impractical to do so.

If we can’t give you access or make the change you’ve requested, we’ll explain why in writing and let you know how you can make a complaint.

7. Privacy and data breach obligations

If you become aware of, or suspect, any unauthorised access to, misuse of, or loss of personal information in connection with Scildan Legal, please contact us immediately.

If we have reasonable grounds to believe that a data breach involving personal information has occurred, we will act promptly. We are committed to protecting your personal information and responding to incidents with transparency and care.  

8. Cookies, Pixels and Tracking Technologies

When you visit or use our website, we may collect certain information automatically through the use of cookies, pixels, and similar tracking technologies.

A cookie is a small text file stored on your device that helps improve your browsing experience by remembering your preferences and activity. A pixel (also known as a web beacon or tracking pixel) is a small piece of code embedded on a webpage or in an email that can track user interactions such as whether an email has been opened or a page has been viewed.

These tools help us understand how visitors use our website, improve its functionality, and deliver relevant content or marketing. They may collect information such as your browser type, device information, pages visited, time spent on the site, referring websites, and general location data. This information does not usually identify you personally, but it may be linked with other data if you've interacted with us in other ways.

You can manage or block cookies and similar technologies through your browser settings. However, doing so may affect how our website functions and limit certain features.

9. Social networking services

We use social media platforms such as LinkedIn, X (formerly Twitter), and Facebook to share updates and communicate with the public about our services. If you engage with us through these platforms (for example, by commenting, liking, messaging or following), we may collect your personal information. We’ll only use that information to respond to you or to improve how we engage with our audience. Please note that social media platforms handle your personal information for their own purposes. These platforms have their own privacy policies, which you can view directly on their websites.

10. Links to other websites

Our website may contain links to websites operated by third parties. These links are provided for your convenience, but we don’t control and are not responsible for the content, privacy practices, or security of those third-party sites.

We make no representations or warranties about how third parties handle your personal information. If you follow a link to another site, we recommend reviewing that site’s privacy policy before providing any personal information.

11. Your choice

It’s always your choice whether to share your personal information with us.

However, if you choose not to provide certain information, we may not be able to offer you some of our services or communicate with you effectively. In particular, we may be unable to provide legal advice, open or manage your matter, or meet our professional or regulatory obligations without the necessary details.

If you have any concerns about the information we request, we encourage you to contact us to discuss your options.

12. Who can you complain to?

If you have any questions about this Privacy Policy, or if you're concerned about how we’ve handled your personal information, you can contact us at:
Privacy Officer - Scildan Legal

Email: privacy@scildanlegal.com.au

If you’re making a complaint, please include full details of your concern in writing and provide proof of your identity. This helps us ensure we’re dealing with the right person and can respond appropriately.

We take privacy concerns seriously and aim to respond within 30 days of receiving your complaint.

13. Updates to the Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal obligations. The most current version will always be available on our website.

We encourage you to check our website periodically to stay informed of any updates.

If we make a material change to how we handle your personal information, particularly if it differs from what we told you at the time of collection, we will notify you by email or through a clear notice on our website. If required, we will also seek your consent before proceeding with any new use.

This Policy was last updated on: 7 July 2025

Built for the digital era. Ready when you are.

Work with Scildan Legal to lead with confidence across privacy, cyber, AI and technology.

CONTACT US NOW

Scildan Legal is a modern boutique legal and advisory  firm specialising in privacy, cybersecurity, AI, data, digital procurement and complex technology and commercial transactions.

WHO WE AREWHAT WE DOINSIGHTSContact us
+61 3 9071 1809
enquiries@scildanlegal.com.au
PRIVACY POLICYTERMS AND CONDITIONS
© Scildan Legal Pty Ltd. All Rights Reserved. Liability limited by a scheme approved under Professional Standards Legislation