Legal

Privacy Policy

How WorkClear handles account, billing, API, and website data.

Last updated: 7 July 2026

Overview

WorkClear (“we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our website, dashboard, bulk verification tools, and licence verification API.

Information We Collect

API Usage

  • We log API endpoint, response status, response time, and related usage data for quotas, debugging, and abuse prevention
  • API request query values and IP addresses are stored as non-reversible HMAC hashes in our API request logs
  • API keys are stored as hashes and are only shown once when created

Dashboard and Bulk Usage

  • Dashboard search history stores the query and a result summary so you can review recent searches
  • Search audit events may store query, state, sector, IP address, user agent, and outcome details for abuse detection, coverage-gap review, support, and product reliability
  • Bulk CSV uploads are processed to return verification results; uploaded files are not used to build customer profiles or sold to third parties

Account Information

  • Email address (for account and billing communications)
  • Company name (optional, for enterprise customers)
  • Payment information (processed securely by Stripe)
  • Plan, API key metadata, quota usage, and billing state needed to operate your account

Data Sources

The licence data provided through WorkClear is sourced from publicly available government and regulatory registers across current live WorkClear coverage. Examples include:

  • Queensland Building and Construction Commission (QBCC)
  • NSW Fair Trading
  • Victorian Building Authority (VBA)
  • Consumer and Business Services South Australia
  • Western Australia, ACT, Northern Territory, Tasmania, real-estate, and security licensing registers where live coverage is shown on our Status and Sources pages

Source data may include names, licence numbers, licence classes, status, expiry details, business identifiers, and addresses where those fields are published by the relevant register.

Data Security

  • Traffic to WorkClear is encrypted over HTTPS/TLS
  • Core database infrastructure is hosted in Australia, while the public application may use managed hosting and edge infrastructure
  • We use authentication, row-level access controls, API quotas, rate limits, and audit logs to protect account and usage data
  • We do not sell customer search, API, or billing data

Data Retention

API request logs, quota records, and usage summaries are retained for operational, billing, debugging, security, and abuse-prevention purposes. Source lookup telemetry is generally retained for up to 90 days, and dashboard search audit events are generally retained for up to 30 days. Dashboard search history remains available in your account until cleared, deleted, or removed with your account, subject to operational backups and legal or business retention requirements. Account information is retained while your account is active and for a reasonable period thereafter for legal, tax, billing, security, and business purposes.

Your Rights

Under Australian Privacy Principles (APPs), you have the right to:

  • Access your personal information
  • Request correction of inaccurate information
  • Request deletion of your account and associated data
  • Opt out of marketing communications

Contact Us

For privacy-related inquiries, please contact us at: our contact page