At Trade Magnet (Modll Pty Ltd, ABN 79 639 342 484), your privacy is important to us.
We are an automation agency based in Australia, specialising in building smart integrations and workflows for service-based businesses. We connect platforms such as ServiceM8, Simpro, AroFlo, Fergus, GoHighLevel, and other API-enabled systems.
This Privacy Policy sets out how we handle your personal information and client data in compliance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
We only collect the information necessary to provide our services, which may include:
Contact Information β your name, business name, email, phone number.
Credentials β API keys, access tokens, or login details (only if provided).
Integration Data β settings, configuration files, workflows.
Operational Data β job data, customer information, or workflow logs transmitted through automations.
Metadata β workflow usage statistics, system performance, error logs.
CRM Information β stored within GoHighLevel if you subscribe to our CRM products.
We do not collect or store:
Banking or credit card details (payments are handled by third-party providers such as Stripe).
Personal data unrelated to business purposes.
Information about individuals under the age of 18.
We use collected data to:
Build, configure, and maintain automations and integrations.
Provide technical support and troubleshooting.
Improve our tools, workflows, and service offerings.
Communicate important service updates, product offerings, or security alerts.
Carry out internal analytics (anonymised and aggregated).
Meet legal and regulatory obligations.
We may contact you directly for marketing of new products and services. You may opt out at any time.
We never sell, rent, or trade your personal information.
Automation Infrastructure β Automations are processed on VPS servers hosted offshore (India via Hostinger). These servers act as processing proxies only and do not store client data permanently.
Onshore Option β Our local AI/LLM product is hosted entirely within Australia using Binary Lane.
CRM Hosting β GoHighLevel manages CRM data and communications under their own infrastructure and policies.
Third-Party Tools β If you connect to systems like ServiceM8, Simpro, AroFlo, or Fergus, data hosting is subject to their policies.
Clients may request Australian-only hosting, which we can configure on request.
API Keys & Tokens β Encrypted and stored securely in n8n. We also maintain backups in 1Password, accessible only by administrators.
Workflow Logs β Capped at the most recent 100 logs per workflow, with older logs automatically deleted.
Client Credentials β Stored securely in 1Password, protected by enforced 2FA and access restrictions.
Client Contact Information β Retained within GoHighLevel until deletion is requested.
Default Retention β Unless deletion is requested, data may be retained to simplify future onboarding.
We use reputable vendors to deliver our services:
Infrastructure β Hostinger (India), Binary Lane (Australia).
CRM/Communications β GoHighLevel.
AI Providers β OpenAI (primary), with client consent required for alternatives.
Industry Tools β Integrations with ServiceM8, Simpro, AroFlo, Fergus (we integrate, but do not host data).
Each vendor maintains its own privacy and security policies.
Access is restricted to engineers assigned to the project.
Credentials are shared using temporary one-time URLs (valid 1β7 days).
API keys and passwords are managed in 1Password with enforced 2FA.
All activity within GoHighLevel is logged and auditable.
Access is revoked immediately when no longer required.
At Rest β API keys and credentials are encrypted in n8n and 1Password.
In Transit β All traffic is encrypted using TLS/SSL.
No Proprietary Layer β We rely on industry-standard encryption protocols and provider-level encryption.
Security Practices β We enforce 2FA, role-based access, and least-privilege access principles.
Clients are notified within 24 hours of any data breach or security incident.
Our process includes investigation, remediation, and formal reporting.
Preventative measures include reputable hosting providers, firewalls, and layered security.
We maintain Cybersecurity Insurance to cover unforeseen incidents.
Data deletion is available on request via email.
By default, we retain client information to simplify re-engagement.
Clients may request:
Full deletion of credentials, logs, or records.
Export of any data held.
Correction of stored details.
Our services are strictly B2B. We do not knowingly collect or store data of individuals under 18.
Some data may be transferred outside Australia (e.g. Hostinger in India, OpenAI in the U.S.). We only work with vendors with strong privacy and security practices.
We take reasonable steps to ensure compliance with the APPs and, where relevant, international standards such as GDPR.
Analytics β We use anonymised metadata (e.g. workflow usage) to improve services.
AI Training β Client data is never used to train LLMs or AI models.
Marketing β We may contact you directly regarding new services or features. You can opt out at any time.
To protect our business and clients, we maintain:
Professional Indemnity Insurance β up to $1 million.
Public Liability Insurance β up to $10 million.
Cybersecurity Insurance β active.
Our website may use cookies and analytics tools (e.g. Google Analytics) to:
Track visitor activity
Improve website performance
Understand marketing effectiveness
You may disable cookies in your browser, but some features may not function correctly.
If you have concerns about how we handle your data:
Contact us at hello@trademagnet.com.au.
We will respond within 30 days.
If unresolved, you may escalate your complaint to the Office of the Australian Information Commissioner (OAIC).
You have the right to:
Access the information we hold about you.
Request corrections to your personal data.
Request deletion of your data.
Opt out of marketing communications.
Trade Magnet (Modll Pty Ltd)
E: hello@trademagnet.com.au
W: www.trademagnet.com.au
