Privacy Policy

Introduction

Geolytic Pty Ltd (“Geolytic”, “we”, “us”) operates the Geolytic geological data management platform and the Geolytic Field Logging application. This privacy policy explains how we collect, use, store, and protect information when you use our services.

By using our platform or applications, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Account Information

When your organisation sets up a Geolytic platform instance, we collect basic account information including names, email addresses, and organisational details for the purpose of account administration and support.

Geological and Project Data

The platform stores geological data uploaded or entered by your team — including drill hole data, assay results, sampling records, QAQC data, lease information, and related project files. This data belongs to your organisation and is stored within your dedicated platform instance.

Field Logging Application Data

The Geolytic Field Logging app collects GPS location data to associate geological observations and samples with their field coordinates. The app also collects basic device information (device model, operating system version) for compatibility and support purposes. Location data is only collected while the app is actively in use for field logging activities.

Error and Diagnostic Data

We use Sentry for error tracking and crash reporting across our platform and applications. This service may collect technical diagnostic information including error messages, stack traces, device type, and operating system version to help us identify and resolve issues. No geological data or personal content is included in error reports.

How We Use Your Information

We use the information we collect to:

Provide and maintain the Geolytic platform and field logging application; deliver support and respond to enquiries; identify and fix technical issues; improve our services based on usage patterns and feedback; and comply with legal and regulatory obligations.

We do not sell, rent, or share your data with third parties for marketing purposes. Your geological and project data is never used to train machine learning models or shared with other clients.

Data Storage and Security

The Geolytic platform runs on Fly.io (built on AWS infrastructure, Sydney, Australia) with database hosting provided by Neon (managed PostgreSQL). Data is encrypted in transit and at rest. Each client's data is logically isolated within their own platform instance.

We implement industry-standard security measures including encrypted connections (TLS), access controls, and regular backups. Access to client data is restricted to authorised Geolytic personnel for the purpose of platform support and maintenance.

Data Retention

We retain your data for as long as your organisation maintains an active Geolytic platform subscription. Upon cancellation, we will provide a complete export of your data and delete it from our systems within 90 days, unless a longer retention period is required by law or agreed upon.

Your Rights

You have the right to:

Access the personal information we hold about you; request correction of inaccurate information; request deletion of your personal information (subject to any legal retention requirements); request an export of your data in a standard format; and withdraw consent for optional data processing at any time.

To exercise any of these rights, contact us at info@geolytic.com.au.

Third-Party Services

We use the following third-party services in the operation of our platform:

Fly.io — application hosting (running on AWS infrastructure, Sydney, Australia).

Neon — managed PostgreSQL database hosting (AWS, Sydney, Australia).

Amazon S3 — file storage for user-uploaded documents and images (AWS, Sydney, Australia).

Amazon SES — transactional email delivery such as account notifications and invitations (AWS, Sydney, Australia).

Sentry — error tracking and crash reporting.

ALS Global — laboratory API integration for automated assay result import (initiated by the client).

Anthropic (Claude) — AI-assisted image analysis and error message rewriting (converting technical errors into plain-language explanations). Data sent to Anthropic's API is processed in real time and is not used to train models. See Anthropic's privacy policy for details.

Microsoft SharePoint — optional document library export integration, initiated and configured by the client. Uses Microsoft Azure AD for authentication via OAuth 2.0. Client credentials are stored encrypted. No data is sent to Microsoft unless the client explicitly configures and triggers an export.

These services are used solely for the operation and improvement of the Geolytic platform. We do not use advertising networks, social media trackers, or marketing analytics tools.

Children's Privacy

Our services are designed for professional use by geological and mining industry personnel. We do not knowingly collect information from anyone under the age of 16. If you believe we have inadvertently collected such information, please contact us and we will delete it promptly.

Changes to This Policy

We may update this privacy policy from time to time. Any changes will be posted on this page with an updated revision date. For material changes, we will notify affected clients via email.

Contact Us

If you have questions about this privacy policy or how we handle your data, contact us at: