L
Lodgit

Privacy Policy

Last updated: 19 March 2026

1. About This Policy

Lodgit (operated by Hadleigh Kirk, ABN pending, trading as LODGIT #2603-OT-5713) is committed to protecting your privacy in accordance with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). This policy explains what personal information we collect, how we use it, and your rights regarding that information.

2. Information We Collect

We collect the following personal information:

  • Account information: Name, email address, business name, trade type, phone number
  • ServiceM8 data: Job details, customer names and contact information, site addresses, invoice amounts — synced from your ServiceM8 account with your authorisation
  • Billing information: Handled entirely by Stripe. We never store card details.
  • Usage data: How you interact with Lodgit (quotes generated, automations run)
  • Rate Card data: Trade type, location, and rates you voluntarily submit (anonymised and aggregated)

3. How We Use Your Information

  • To provide Lodgit services (AI quote generation, SMS automation, review requests)
  • To process payments via Stripe
  • To send service-related communications (invoices, receipts, product updates)
  • To improve our rate benchmarking data (anonymised and aggregated only)
  • To comply with legal obligations

We do not sell your personal information to third parties. We do not use your data for advertising purposes.

4. SMS Automation & Your Customers

When you use Lodgit's SMS automation features, we send messages on your behalf to your customers using phone numbers synced from ServiceM8. You are responsible for ensuring you have appropriate consent from your customers to receive SMS communications. All automated messages include an opt-out instruction ("Reply STOP to unsubscribe") in compliance with the Australian Spam Act 2003.

5. Data Storage & Security

Your data is stored on Supabase servers in the Asia-Pacific region. ServiceM8 access tokens are encrypted using AES-256-GCM before storage. We implement row-level security so each business can only access their own data. We use industry-standard HTTPS encryption for all data in transit.

6. Third-Party Services

Lodgit uses the following third-party services:

  • ServiceM8 — job management data source
  • OpenAI — AI quote generation (job descriptions are sent to OpenAI's API)
  • Twilio — SMS delivery
  • Stripe — payment processing
  • Supabase — database hosting
  • Vercel — application hosting

7. Data Retention

We retain your data for as long as your account is active. Upon account cancellation, we retain data for 90 days to allow for account reinstatement. After 90 days, all personal data is permanently deleted. Anonymised, aggregated rate benchmarking data may be retained indefinitely.

8. Your Rights

Under the Australian Privacy Act, you have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your account and all associated data
  • Opt out of non-essential communications

To exercise these rights, contact us at hello@lodgit.com.au

9. Contact

Privacy enquiries: hello@lodgit.com.au
Lodgit, Gold Coast QLD, Australia