Plain English summary: We collect only what we need to run the platform. All data is stored in Australia. We don't sell your data. NDIS participant information is treated with the highest level of care and stored exclusively on Australian servers in compliance with the Privacy Act 1988 and Australian Privacy Principles.
1. Who we are
ContentAutoPilot is an AI-powered content and documentation platform for Australian and US professionals, operated by InfoSys Solutions USA LLC. Our primary product for the Australian market is the NDIS DocAgent, which helps registered NDIS providers generate compliant documentation.
Contact: [email protected]
2. What information we collect
Account information
- Name and email address (provided at registration)
- Organisation or agency name
- Subscription plan and billing information (processed by Stripe — we do not store card details)
- Sign-in method (Google SSO or magic link email)
Usage information
- Documents generated (count and type — not content, unless stored by you)
- Feature usage and session data
- Device type and browser (for compatibility and security purposes)
Content you provide
- Text you enter into document generation forms (provider name, topics, participant details)
- Generated document content that you choose to save
Important: We strongly recommend that you do not enter personally identifiable participant information (full names, NDIS numbers, addresses) into the platform. Use initials or participant codes when generating documentation. Review outputs before including participant details.
3. How we use your information
- To provide and maintain your account and subscription
- To send login links, welcome emails, and account notifications
- To generate AI-powered content on your behalf
- To enforce usage limits per your subscription plan
- To improve and maintain the platform
- To comply with legal obligations
We do not use your content for AI training without explicit consent. We do not send unsolicited marketing emails. You may opt out of product update emails at any time.
4. Data storage and residency
All ContentAutoPilot user data, authentication data, and generated content is stored exclusively on servers located in Sydney, Australia (AWS ap-southeast-2 region).
We do not transfer, replicate, or process Australian user data outside of Australia. This applies to all NDIS-related data, authentication records, and account information.
Our AI generation is powered by Anthropic's Claude API. Prompts sent for generation are processed via Anthropic's API. We do not include personally identifiable participant information in API calls — our system prompts are industry-specific templates only.
5. NDIS and APP 8 compliance
ContentAutoPilot is designed to comply with the Australian Privacy Act 1988, specifically Australian Privacy Principle 8 (cross-border disclosure of personal information).
- Data sovereignty: All data stored in Australia
- APP 8: No cross-border disclosure of personal information
- NDIS Practice Standards: Output templates align with current NDIS Practice Standards
- Participant data: We recommend providers not enter identifiable participant data into the platform
ContentAutoPilot is a documentation assistance tool. It is not a clinical system and does not replace provider obligations under the NDIS Quality and Safeguards Commission framework. Providers remain responsible for reviewing, approving, and filing all generated documentation.
7. How long we keep data
- Active accounts: Data retained for the duration of your subscription
- Cancelled accounts: Account data deleted within 90 days of cancellation on request
- Billing records: Retained for 7 years as required by Australian tax law
- Generated documents: Not stored server-side unless you explicitly save them
To request deletion of your data, email [email protected].
8. Your rights
Under the Privacy Act 1988, you have the right to:
- Access the personal information we hold about you
- Request correction of inaccurate information
- Request deletion of your data
- Complain to the Office of the Australian Information Commissioner (OAIC) if you believe we have breached your privacy
To exercise any of these rights, email [email protected]. We will respond within 30 days.
10. Contact us
For any privacy-related questions or requests:
- Email: [email protected]
- Support: [email protected]
If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC).