🔒 Privacy Policy

Last updated: 10/09/2025

MessageDrift (“we”, “us”, “our”) values your privacy and is committed to protecting your personal information. This Privacy Policy explains what data we collect, how we use it, and how we keep it safe. By using MessageDrift, you agree to the practices described here.

1. Who We Are

MessageDrift is an online platform that allows parents and guardians to leave personal messages for their children to discover later in life. We are based in New South Wales, Australia and operate in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

2. Information We Collect

We may collect the following information when you use our services:

  • Parent or guardian name
  • Child’s name and date of birth
  • Phone number (optional)
  • Email address (for account creation, verification, and billing)
  • Message content submitted by users
  • Technical data such as IP address, browser type, and usage logs (for security and fraud prevention)

We do not use cookies for advertising or track you across third-party websites. Basic session cookies may be used for login security and functionality.

3. How We Use Your Information

  • Store and deliver messages securely between parents and children
  • Verify your email or phone number to prevent misuse
  • Send account-related notifications, receipts, and updates
  • Moderate or review flagged content to protect children and maintain community safety
  • Process payments and subscriptions through third-party payment providers such as Stripe
  • Improve and secure our platform, including backups and data integrity

4. Legal Basis for Processing (GDPR Users)

For users located in the European Union or similar jurisdictions, we rely on the following legal bases: (a) your consent; (b) performance of a contract; (c) legal obligations; and (d) our legitimate interest in providing a safe, reliable platform.

5. Who Can Access Your Information

Your personal data may be accessed by:

  • Platform administrators for moderation, technical maintenance, and support
  • Trusted third-party providers who assist us (e.g., hosting, SMS delivery, payment processing, and secure cloud backup)

All service providers are required to handle your data securely and in accordance with this Privacy Policy. We will never sell, rent, or trade your personal information to third parties.

6. Data Storage, Backups & Retention

MessageDrift stores data on secure servers and uses encrypted cloud backups (e.g., Dropbox or equivalent) to help protect against data loss. While we take reasonable precautions, we cannot guarantee that information will never be lost or accessed without authorisation.

Messages and account details may be retained indefinitely so they remain available to intended recipients in the future. You may request deletion of your data or account at any time by contacting us. Deleted data may remain in system backups for a limited period before permanent removal.

7. Data Security

We implement security measures such as password hashing, encryption, and restricted access controls. Only authorised personnel may access personal data. However, no online service can guarantee complete security. You use MessageDrift at your own risk.

8. Children’s Privacy

MessageDrift is designed for use by adults creating messages for children. Children under 18 may access messages only with parental or guardian involvement. We do not knowingly collect information directly from minors.

9. Your Rights

  • Access the personal information we hold about you
  • Request correction or deletion of your data
  • Withdraw consent for future data use (where applicable)
  • Request a copy of your stored data

To exercise these rights, contact us at: messagedriftoffice@gmail.com We will respond within a reasonable timeframe, usually within 30 days.

10. International Data Transfers

MessageDrift may store or process data in countries other than your own (for example, where our cloud or email providers are located). By using our service, you consent to this international transfer, which is conducted with appropriate safeguards.

11. Data Breaches

In the unlikely event of a data breach that is likely to cause serious harm, we will notify affected users and the Office of the Australian Information Commissioner (OAIC) as required under the Notifiable Data Breaches Scheme.

12. Liability & Disclaimer

While we take all reasonable steps to protect your information, MessageDrift is provided on an “as-is” basis. We are not liable for loss, damage, or unauthorised access to data arising from events beyond our reasonable control, including outages, hardware failures, or third-party service issues.

13. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in law or our operations. Any updates will be posted here with a new “Last updated” date. Continued use of the platform constitutes acceptance of the revised policy.

14. Contact Us

If you have questions, concerns, or requests related to your privacy, please contact us:
📧 messagedriftoffice@gmail.com