Privacy Policy

PRIVACY POLICY

Qulify.ai Operated by Red to Green Performance

Last Updated: February 12, 2026

1. Introduction

Red to Green Performance (“we,” “us,” or “our”) operates Qulify.ai (the “Service”), a SaaS/web application. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our Service.

We are committed to protecting your privacy and complying with applicable data protection laws, including the Australian Privacy Act 1988, the European Union’s General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA), and other relevant international privacy regulations.

Contact Information: Company: Red to Green Performance Address: 3/223 Liverpool street Darlinghurst, 2010 NSW, Australia Email: operations@redtogreen.com.au Website: qulify.ai

2. Information We Collect

We collect the following categories of personal information:

2.1 Information You Provide

  • Account Information: Name, email address, and other registration details
  • Payment Information: Billing details, payment card information (processed securely through third-party payment processors)
  • Communications: Messages, feedback, and support requests you send to us
  • User Content: Data, files, or information you upload or create while using the Service

2.2 Automatically Collected Information

  • Usage Data: Information about how you interact with our Service, including features used, pages viewed, and actions taken
  • Device Information: IP address, browser type, operating system, device identifiers
  • Location Data: General geographic location based on IP address
  • Cookies and Tracking Technologies: See Section 8 for details

2.3 Third-Party Sources

We may receive information from third-party services you connect to our platform, such as social media platforms or authentication providers.

3. How We Use Your Information

We use your personal information for the following purposes:

  • Service Provision: To operate, maintain, and provide features of the Service
  • Account Management: To create and manage your account
  • Payment Processing: To process transactions and send billing information
  • Communications: To send service-related notices, updates, and marketing communications (with your consent)
  • Customer Support: To respond to your inquiries and provide technical support
  • Analytics and Improvement: To analyze usage patterns, improve our Service, and develop new features
  • Security: To protect against fraud, unauthorized access, and security threats
  • Legal Compliance: To comply with legal obligations and enforce our terms of service

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data based on:

  • Contract Performance: Processing necessary to provide the Service you’ve requested
  • Legitimate Interests: For analytics, fraud prevention, and service improvement
  • Consent: For marketing communications and optional features
  • Legal Obligation: To comply with applicable laws and regulations

5. How We Share Your Information

We do not sell your personal information. We may share your information with:

5.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our Service:

  • Payment Processors: Stripe, PayPal (for secure payment processing)
  • Analytics Providers: Google Analytics and similar services (for usage analytics)
  • Email Service Providers: For marketing and transactional emails
  • Social Media Platforms: For social media integrations and authentication

These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

5.2 Business Transfers

In connection with a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction.

5.3 Legal Requirements

We may disclose your information when required by law, court order, or to protect our rights, property, or safety, or that of others.

6. Data Storage and Security

We implement industry-standard security measures to protect your personal information, including encryption, secure servers, access controls, and regular security assessments. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.

6.1 Data Breach Notification

In the event of a data breach that affects your personal information, we will notify you and relevant authorities as required by applicable law, typically within 72 hours of becoming aware of the breach.

7. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including Australia, the United States, and the European Union. These countries may have different data protection laws than your jurisdiction.

For transfers from the EEA, UK, or Switzerland, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission to ensure your data receives adequate protection.

For transfers from Australia, we comply with the Australian Privacy Principles (APPs) and ensure that overseas recipients handle your information in accordance with Australian privacy law.

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

8.1 Rights for All Users

  • Access: Request a copy of your personal information
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal information (subject to legal obligations)
  • Opt-Out: Unsubscribe from marketing communications at any time

8.2 Additional GDPR Rights (EEA, UK, Switzerland)

  • Data Portability: Receive your data in a structured, machine-readable format
  • Restriction: Request restriction of processing in certain circumstances
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent at any time where processing is based on consent

8.3 Additional CCPA Rights (California Residents)

  • Know: Know what personal information is collected, used, and shared
  • Delete: Request deletion of personal information
  • Opt-Out of Sale: We do not sell personal information
  • Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your privacy rights

8.4 Additional Australian Privacy Rights

  • Anonymity: Where practicable, you may interact with us anonymously or using a pseudonym
  • Complaint: Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)

8.5 Exercising Your Rights

To exercise any of these rights, please contact us at operations@redtogreen.com.au. We will respond to your request within the timeframe required by applicable law (typically 30 days for GDPR, 45 days for CCPA, 30 days for Australian Privacy Act).

You also have the right to lodge a complaint with your local data protection authority or the Office of the Australian Information Commissioner (OAIC).

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect information about your browsing activities and improve your experience on our Service.

9.1 Types of Cookies We Use

  • Essential Cookies: Required for the Service to function properly
  • Analytics Cookies: Help us understand how users interact with the Service (e.g., Google Analytics)
  • Functionality Cookies: Remember your preferences and settings
  • Marketing Cookies: Track your activity for targeted advertising (with your consent)

9.2 Managing Cookies

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our Service. For more information about managing cookies, visit www.allaboutcookies.org.

10. Children’s Privacy

Our Service is not directed to children under the age of 16, and we do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16 without parental consent, we will take steps to delete that information.

If you believe we have collected information from a child under 16, please contact us immediately at operations@redtogreen.com.au.

11. Third-Party Links and Services

Our Service may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of material changes by posting the updated policy on our website and updating the “Last Updated” date.

For significant changes, we will provide more prominent notice, such as email notification or an in-app message. Your continued use of the Service after the effective date constitutes acceptance of the updated Privacy Policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Red to Green Performance 3/223 Liverpool street Darlinghurst, 2010 NSW Australia Email: operations@redtogreen.com.au Website: qulify.ai

13.1 Data Protection Officer

For GDPR-related inquiries, you may contact our Data Protection Officer at operations@redtogreen.com.au.

13.2 Supervisory Authorities

You have the right to lodge a complaint with the relevant supervisory authority:

  • Australia: Office of the Australian Information Commissioner (OAIC) – www.oaic.gov.au
  • EU/EEA: Your local data protection authority
  • California: California Attorney General – oag.ca.gov/privacy

14. Additional Information for Specific Jurisdictions

14.1 California Residents – CCPA Notice

Categories of Personal Information Collected (Last 12 Months):

  • Identifiers (name, email, IP address)
  • Commercial information (payment details, transaction history)
  • Internet activity (browsing history, usage data)
  • Geolocation data (general location from IP address)

We do not sell personal information. We share personal information with service providers as described in Section 5.

14.2 Canadian Residents – PIPEDA

We comply with Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA). You have the right to access, correct, and challenge the accuracy of your personal information. Contact us at operations@redtogreen.com.au for PIPEDA-related requests.

14.3 UK Residents – UK GDPR

For UK residents, we comply with the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018. You may contact the Information Commissioner’s Office (ICO) at ico.org.uk with any concerns.

This Privacy Policy is effective as of February 12, 2026