SEO Crawler
Legal

Privacy Policy

Last updated: December 3, 2025

New Horizon Code PTY LTD ("New Horizon Code", "we", "us", "our") is committed to safeguarding personal information in accordance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and applicable international privacy standards.

This Privacy Policy ("Policy") describes how we collect, handle, store, disclose, and protect personal information in connection with the SEO Crawler service (the "Platform").

By creating an account, verifying a domain, or using the Platform, you acknowledge that you have read and understood this Policy and agree to its terms.

1. Definitions

For the purposes of this Policy:

  • "APPs" means the Australian Privacy Principles under the Privacy Act.
  • "Client" means the individual or entity holding an SEO Crawler account.
  • "Crawl Data" means all technical, structural, and publicly available information retrieved from webpages belonging to domains you authenticate, including metadata, HTTP responses, URL structure, and HTML content.
  • "Domain Authentication" means the required process by which you verify ownership or control of a domain prior to enabling crawling or scraping functionality.
  • "Personal Information" has the meaning given in the Privacy Act — information or an opinion about an identified individual or one who is reasonably identifiable.
  • "Services" means the features, tools, analytics, and automations supplied through SEO Crawler.
  • "User" means any individual authorised by the Client to access the Platform.

Unless otherwise stated, references to "you" and "your" mean the Client and its Users.

2. Scope of This Policy

This Policy applies to:

  • Personal information collected when you create an account or interact with the Platform
  • Metadata and system information collected to operate the Platform
  • Information retrieved by the Platform when crawling authenticated domains
  • AI-generated outputs based on Crawl Data

This Policy does not apply to information contained on websites you do not own or control. SEO Crawler will not crawl or scrape any domain without successful Domain Authentication.

3. Categories of Information We Collect

We may collect and process the following categories of information:

A. Account & Billing Information

This includes:

  • Name, email address, and password
  • Organisation name and contact details
  • Subscription tier and billing history
  • Payment information (processed via third-party providers, such as Stripe — we do not store payment card numbers)

This information is necessary to create and maintain your account.

B. Domain & Crawl Data

Once a domain is authenticated, SEO Crawler may collect:

  • URLs, HTTP status codes, redirects, metadata, schema, sitemaps
  • Page performance metrics
  • Orphan page detection results
  • Rendered page structure (where applicable)
  • Internal links, anchor text, and basic SEO signals
  • Framework/vendor detection results
  • AI-generated summaries and insights based on Crawl Data

Crawl Data is limited to content that is publicly accessible or accessible under your domain authentication permissions.

We do not attempt to bypass authentication, rate limits, or technical measures that restrict access.

C. System, Security & Diagnostic Data

We automatically collect:

  • IP address, device and browser information
  • Session identifiers and authentication logs
  • Cookies required for session integrity
  • Usage analytics, performance logs, and error reports
  • Audit trails relating to account activity

This information assists with security monitoring, fraud prevention, and platform optimisation.

4. Lawful Basis for Collection and Use

We collect and process personal information only where lawful and reasonably necessary for our functions or activities, including:

  • Providing, operating, and improving the Platform
  • Verifying domain ownership
  • Securing your account and our infrastructure
  • Generating analytics, reports, and AI insights
  • Fulfilling contractual obligations
  • Billing and account administration
  • Monitoring compliance with legal and technical restrictions
  • Contacting you about service updates, maintenance, or support
  • Detecting and preventing misuse or unauthorised activity

We will not collect or use personal information for secondary purposes unless permitted under the Privacy Act or with your consent.

5. Client Responsibilities

By using the Platform, you warrant that:

  • You are authorised to verify and crawl each domain you add
  • Any Crawl Data retrieved from your domains is lawfully collectible
  • You will ensure Users comply with this Policy and the Terms of Service
  • You will maintain account security and confidentiality of access credentials
  • You will not use the Platform in a manner that violates privacy, copyright, or contractual obligations related to your domain

SEO Crawler acts as a data processor for your verified domains. You control the purposes for which your Crawl Data is obtained and used.

6. Use of AI and Automated Analysis

Some subscription plans include AI-driven summaries, prioritisation, and link recommendations.

AI features may process Crawl Data to generate insights. AI outputs:

  • Are informational only
  • May be incomplete or inaccurate
  • Should not be relied upon as professional advice
  • Must be reviewed by a qualified human before acting

We do not use your Crawl Data to train external AI models. All training or tuning activities occur internally, using controlled datasets.

7. Disclosure of Personal Information

We do not sell or rent personal information.

We may disclose information only as permitted under the APPs, including to:

  • Users within your organisation
  • Infrastructure providers (e.g., Azure, Vercel, Datadog, Intercom, Stripe)
  • Contractors under strict confidentiality obligations
  • Legal or regulatory authorities where required by law
  • Our related companies for operational purposes

All third parties are bound by agreements requiring compliance with Australian privacy standards or equivalent protections.

We do not disclose Crawl Data to third parties except as required to operate the Platform securely.

8. Cross-Border Data Transfers

Some service providers may store or process data outside Australia.

We will only transfer information where:

  • The recipient is subject to privacy protections substantially similar to the APPs; or
  • Appropriate contractual safeguards are in place; or
  • You have consented; or
  • An APP exception applies

Primary application data is hosted in Australia wherever feasible.

9. Data Security Safeguards

We implement physical, technical, and organisational measures to protect personal information, including:

  • Encryption in transit and at rest
  • Role-based access controls (RBAC)
  • Network segmentation and rate limiting
  • Penetration testing and ongoing risk assessment
  • Intrusion detection and anomaly monitoring
  • Secure credential storage and MFA support
  • Audit logging and system telemetry

Despite these measures, no system is completely secure. You acknowledge that all online services carry inherent risk.

10. Data Retention and Destruction

We retain personal information only as long as necessary for the purposes outlined in this Policy or as required by law.

Upon request or account closure, we will:

  • Destroy; or
  • Permanently de-identify

personal information, unless ongoing retention is legally required or operationally necessary (e.g., fraud prevention, dispute handling).

Crawl Data may be deleted earlier upon request.

11. Access, Correction & Portability Rights

You may request:

  • Access to personal information we hold about you
  • Correction of inaccurate or outdated information
  • Export of Crawl Data or account data where technically feasible

Requests must be submitted to: legal@newhorizoncode.io

We will respond within a reasonable timeframe in accordance with the APPs.

12. Notifiable Data Breach (NDB) Obligations

In the event of an eligible data breach, we will:

  • Immediately investigate the incident
  • Take remedial action
  • Notify affected individuals if required
  • Notify the Office of the Australian Information Commissioner (OAIC)

Our procedures align with the NDB Scheme under the Privacy Act.

13. Limitation of Liability

To the fullest extent permitted by law:

  • We are not responsible for any unlawful or unauthorised crawling performed by you
  • We are not liable for losses arising from your reliance on AI-generated insights
  • We are not liable for indirect, consequential, or economic loss, including loss of reputation, revenue, or data
  • You assume all risk associated with crawling your domains and using the Services

Nothing in this Policy limits rights that cannot be excluded under Australian law.

14. Updates to This Policy

We may update this Policy periodically. Revised versions take effect upon publication on the Platform or our website.

Where required by law, we will notify you of material changes or seek renewed consent.

15. Complaints and Contact Details

If you have concerns about privacy or believe your rights have been breached, you may contact:

Privacy Officer

New Horizon Code PTY LTD

Suite 121, Level 14

167 Eagle Street

Brisbane QLD 4000

Email: legal@newhorizoncode.io

We will review all complaints and respond within 30 days or within a reasonable time.

If you are not satisfied, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

Website: www.oaic.gov.au

Phone: 1300 362 992

Email: enquiries@oaic.gov.au

16. Governing Law

This Policy is governed by the laws of Queensland, Australia. Any dispute shall be resolved exclusively in the courts of Queensland.

17. Children's Privacy

SEO Crawler is not intended for individuals under 18. We do not knowingly collect personal information from minors.