Privacy Policy

Last Updated: 27/04/2026

GreenLens Analytics ("we," "us," or "our") respects your privacy and the privacy of information you share via this platform. This Policy explains how we collect, use, and protect your personal and financial information when you use our dashboard and services.

1. Information We Collect

To provide our services, we collect four types of information:

  • Account Profile Data: Your name, industry, email address, phone number, and password.
  • Financial Data: With your permission, we collect financial information from files you manually upload to the platform, including transaction history, revenue, expenses, assets, liabilities, equity, and cash flow details. GreenLens does not connect to bank accounts or financial institutions and does not pull live data feeds. All financial data is provided by you via CSV or XLSX file upload.
  • Technical Data: IP address, device type, and app usage statistics collected via cookies to improve platform performance.
  • Optional Data: Non-financial data (e.g. sustainability or operational metrics) that you choose to upload.

2. How We Use Your Data

The information collected is used strictly for:

  • Dashboard Display: Aggregating your uploaded data into a single interactive view. AI outputs are based on patterns in uploaded data and may not always be accurate.
  • Security & Fraud Prevention: Verifying your identity and preventing fraudulent use of the platform.
  • Insights: Analysing uploaded data to provide automated business insights.
  • Communications: Sending security alerts and service updates.
  • Platform Maintenance: Maintaining and improving platform performance.
  • Customer Support: Providing assistance when you contact us.
  • Security & Integrity: Ensuring platform security and integrity.

3. Data Sharing and Third Parties

GreenLens does not sell your personal or financial data to third parties. We only share data with:

  • Service Providers: We share data only with the following infrastructure and service providers that are necessary to deliver our platform: Anthropic (Claude API — AI-powered insights), Vercel (hosting and deployment), Supabase (database and authentication), Cloudflare (security and performance), and Resend (transactional email). All third-party providers are contractually required to handle data securely and only for the purposes of delivering services to GreenLens.
  • Legal Requirements: If required by the laws of Victoria, Australia, or a relevant regulatory or law enforcement body, to prevent fraud or financial crime.

4. Security Measures

GreenLens implements reasonable technical and organisational safeguards, including:

  • Secure cloud infrastructure (Supabase and Vercel).
  • Encryption of data at rest (AES-256) and in transit (SSL/TLS).
  • Two-factor or multi-factor authentication (MFA) required for all accounts.
  • Read-only data processing — GreenLens cannot move money or execute transactions on your behalf.
  • Access controls and authentication protocols.

No method of transmission or storage is completely secure. Clients provide data at their own professional judgment and risk.

5. Your Rights and Choices

You have the following rights in relation to your personal data:

  • Data Upload Control: You control what data you upload to the platform. You may remove uploaded files at any time via your account settings.
  • Data Portability: Request a copy of the data that has been uploaded to the platform.
  • Access: Access your personal information held by GreenLens.
  • Correction: Request correction of any inaccurate data we hold about you.
  • Deletion: Request that we delete your account and all associated personal data, subject to legal record-keeping requirements. Upon request, data will be removed within a reasonable timeframe unless we are legally required to retain it.

6. Data Retention

  • Data is retained for the duration of your active subscription and for 90 days following cancellation or termination of your account, after which it will be permanently deleted unless a longer retention period is required by applicable law.
  • You may request deletion of your data at any time as set out in Section 5 above.

7. Data Ownership & Control

  • You retain ownership of all data you upload.
  • GreenLens processes your data solely to provide the services described in this Policy.
  • We do not use your data for unrelated commercial purposes.
  • We may disclose only business-related information to service providers listed in Section 3 (hosting, AI, transactional email); and legal or regulatory authorities where required by law.

8. Cross-Border Data Transfers

  • Some service providers (Anthropic, Vercel, Supabase, Cloudflare, and Resend) may be located outside Australia.
  • By using the platform, you acknowledge that your data may be transferred and processed internationally.
  • We take reasonable steps to ensure appropriate data protection standards are maintained by our service providers.

9. Cookies & Tracking Technologies

We may use cookies and similar technologies to:

  • Improve user experience.
  • Analyse platform usage.

You can control cookies through your browser settings.

10. Data Breach Notification

In the event of a data breach likely to result in serious harm, we will:

  • Notify affected Clients promptly.
  • Comply with applicable legal obligations under Australian law.

11. Children's Privacy

GreenLens is not intended for individuals under 18. We do not knowingly collect data from minors.

12. Governing Law

This Privacy Policy is governed by the laws of Victoria, Australia. Any disputes arising under this Policy shall be subject to the exclusive jurisdiction of the courts of Victoria, Australia.

13. Changes to This Policy

GreenLens Analytics may update this Policy occasionally. If we make significant changes, we will notify you via the email address associated with your account.

14. Contact Us

For any questions regarding this Privacy Policy, please contact us: