Privacy Notice

Last updated: 2026-05-20

This notice describes how Document Node Pty Ltd ("we", "us", or "our") collects, uses, and discloses personal information through the documentnode.io marketing website (the "Website"). It does not cover data collected by our software products (MarkNode, TermTree, etc.); those products have their own privacy policies published on their respective domains.

1. Data Controller

The data controller for this Website is Document Node Pty Ltd, a company incorporated in Australia. You can reach us at support@documentnode.io.

2. What We Collect and Why

Server Logs

Our hosting infrastructure (Firebase / Google Cloud) automatically records standard server-log data when you visit the Website, including your IP address, browser type and version, referring URL, pages visited, and the date and time of each request. We use this data solely to maintain and secure the Website and to diagnose technical problems. Server logs are retained for approximately 30 days and are then deleted.

Analytics (Google Analytics)

We use Google Analytics (measurement ID G-HV1EXDJ82P) to understand aggregated traffic patterns and improve the Website. Google Analytics sets cookies on your device and sends usage data to Google. For visitors in the EU, EEA, and UK, Google Analytics is loaded only after you have given your consent via our cookie banner. For all other visitors, analytics are enabled by default, and you may withdraw consent at any time using the "Manage cookies" link in the site footer. See our Cookie Policy for details.

Email Correspondence

If you contact us by emailing support@documentnode.io, we collect your email address and the content of your message in order to respond to your enquiry. We do not add you to a mailing list without your explicit consent.

3. Cookies

The Website uses essential cookies necessary for its operation and, subject to your consent where required, analytics cookies. Please see our Cookie Policy for a full list of cookies, their purposes, and how to manage your preferences.

4. Data Sharing

We share your data only with the following categories of service provider, and only to the extent necessary to operate the Website:

  • Hosting and infrastructure — Firebase / Google Cloud (Google LLC), which hosts the Website and its server logs.
  • Analytics — Google LLC (Google Analytics), subject to your consent where required. Google's privacy policy is available at policies.google.com/privacy.

We do not sell or share your personal information for cross-context behavioural advertising or any other commercial purpose beyond operating this Website.

5. International Transfers

We are based in Australia and process personal information primarily there. Our infrastructure and analytics partners (Google) may process data in the United States and other countries. Where we transfer personal information from the EU/EEA/UK to third countries, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses (SCCs) or the UK International Data Transfer Agreement (UK IDTA). You may request a copy of the relevant safeguards by contacting us.

6. Your Rights

EU, EEA, and UK (GDPR / UK GDPR)

If you are located in the EU, EEA, or UK, we process your personal information on the following legal bases:

  • Legitimate interests (Article 6(1)(f) GDPR) — server logs for Website security and stability, where these interests are not overridden by your rights.
  • Consent (Article 6(1)(a) GDPR) — Google Analytics cookies and data processing, which you may withdraw at any time without affecting the lawfulness of prior processing.
  • Legal obligation (Article 6(1)(c) GDPR) — where applicable law requires us to retain or disclose data.

Under GDPR / UK GDPR, you have the right to:

  • Access the personal information we hold about you;
  • Rectify inaccurate data;
  • Erasure ("right to be forgotten") where grounds apply;
  • Restrict or object to processing;
  • Data portability (where processing is based on consent or contract);
  • Withdraw consent at any time without affecting prior lawful processing;
  • Lodge a complaint with your local supervisory authority (e.g., the ICO in the UK, or the relevant EU Data Protection Authority).

California (CCPA / CPRA)

If you are a California resident, you have the right to know what personal information we collect, the right to delete it, the right to correct it, and the right to opt out of its sale or sharing. We do not sell or share your personal information as defined under CCPA/CPRA. We honour Global Privacy Control (GPC) signals — if your browser sends a GPC signal, we treat it as a request to opt out of any data sharing for cross-context behavioural advertising.

To exercise your rights, please contact us at support@documentnode.io. We will not discriminate against you for exercising your privacy rights.

Australia (Privacy Act 1988 — Australian Privacy Principles)

We comply with the Australian Privacy Principles under the Privacy Act 1988 (Cth). You have the right to access personal information we hold about you and to request correction of inaccurate information. To make a request, contact us at support@documentnode.io. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

7. Retention

Server logs are retained for approximately 30 days. User-level and event data in Google Analytics is retained according to our configured Google Analytics retention setting (currently 2 months); aggregated reporting data may be retained for longer. Email correspondence is retained for as long as necessary to resolve your enquiry plus any applicable statutory period.

8. Children

The Website is not directed at children under 13 years of age (or under 16 in the EU/EEA). We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us and we will delete it promptly.

9. Security

We take reasonable technical and organisational measures to protect the personal information we hold. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

10. Changes to This Notice

We may update this Privacy Notice from time to time. When we do, we will revise the "Last updated" date at the top of this page. We encourage you to review this notice periodically. Material changes will be highlighted on the Website where reasonably practicable.

Contact Us

If you have any questions about this Privacy Notice or wish to exercise your rights, please contact us at support@documentnode.io.