Privacy Policy
Effective date: 1 July 2026
1. Who We Are
Alfe Pty Ltd (ABN 20 694 686 765) (“Alfe”, “we”, “us”, “our”) operates the alfe.ai platform, including the website, dashboard, mobile application, and AI agent services. We are registered in Australia and our principal place of business is in New South Wales. This policy should be read alongside our Terms of Use.
2. Information We Collect
2.1 Account Information
When you create an account we collect your name, email address, and organisation details through our authentication provider, Clerk.
2.2 Payment Information
Payment card details and billing information are collected and processed by Stripe. We do not store your full card number on our servers. We retain transaction records including amounts, dates, and subscription status.
2.3 Usage Data
We collect information about how you use our services, including:
- Agent configurations and settings
- API call volumes and credit consumption
- Feature usage and interaction patterns
- Device type, browser, and operating system
- Product-analytics data — feature usage, page and screen views, and interaction events, collected via PostHog
Where you have consented to analytics (see §5), PostHog session replay may record masked interaction sessions to help us understand and improve the product. Input fields are masked by default, so the content you type is not captured.
2.4 Conversation Data
When you interact with AI agents on the platform, conversation content is processed to provide the service. This may include text messages, voice transcriptions, and files shared with your agent.
2.5 Error and Performance Data
We use Sentry for error tracking and performance monitoring. This may include IP addresses, user identifiers, session data, browser information, device information, and session replay data when errors occur.
3. How We Use Your Information
We use collected information to:
- Provide, maintain, and improve the Alfe platform
- Process payments and manage your account balance
- Send service-related communications (account alerts, billing notices)
- Monitor and improve platform performance and reliability
- Detect, prevent, and address technical issues and abuse
- Comply with legal obligations
4. Third-Party Service Providers
We share data with the following third-party processors who assist in delivering our services:
- Clerk — Authentication and identity management
- Stripe — Payment processing and billing
- Sentry — Error tracking and performance monitoring
- Google (Google Analytics 4) — Website traffic and marketing analytics
- PostHog — Product analytics and session replay (data hosted in the United States)
- Amazon Web Services (AWS) — Cloud infrastructure and data storage
- Hetzner Cloud — Agent compute infrastructure
- Fly.io — Application hosting for real-time services
- ElevenLabs — Text-to-speech voice synthesis
Each provider processes data in accordance with their own privacy policies and our data processing agreements. We do not sell your personal information to third parties.
6. Data Retention
We retain your account data for as long as your account is active. Conversation data is retained in accordance with your agent configuration settings. Payment records are retained as required by tax and accounting regulations.
When you delete your account, we will remove your personal data within 30 days, except where retention is required by law.
7. Data Security
We implement industry-standard security measures to protect your data, including encryption in transit (TLS) and at rest (AES-256), access controls, and regular security reviews. Sensitive credentials are encrypted using AWS Key Management Service (KMS).
8. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access — Request a copy of the personal data we hold about you
- Correction — Request correction of inaccurate or incomplete data
- Deletion — Request deletion of your personal data
- Portability — Request a machine-readable copy of your data
- Objection — Object to certain processing of your data
Australian Privacy Act
If you are located in Australia, your data is handled in accordance with the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs). You may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) if you believe your privacy has been breached.
GDPR (European Economic Area)
If you are located in the EEA, you have rights under the General Data Protection Regulation including the rights listed above. Our legal basis for processing is contractual necessity (to provide the service), legitimate interest (to improve and secure the service), and consent (where applicable).
CCPA (California)
If you are a California resident, you have the right to know what personal information is collected, request deletion, and opt out of the sale of personal information. We do not sell personal information.
9. International Data Transfers
Your data may be transferred to and processed in countries other than your own, including Australia, the United States, and Germany. In particular, our analytics providers PostHog and Google process data in the United States. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.
10. Children’s Privacy
Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and, where appropriate, by email. Your continued use of the service after changes take effect constitutes acceptance of the revised policy.
12. Contact Us
If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at:
Alfe Pty Ltd
ABN 20 694 686 765
Email: hello@alfe.ai