Contact Us
Close menu

FORTISMAN – PRIVACY POLICY

Last updated 12 May 2025

1. Who we are

FortisMan Pty Ltd (ABN 46 670 119 463) operates fortisman.com and its subdomains. We are based in Adelaide, South Australia.

Contact our Privacy Officer at privacy@fortisman.com or +61 499 969 747.

2. What we collect

  • Basic details: name, email, IP address
  • Sensitive details: health, lifestyle, financial answers (with consent)
  • Usage data: browser type, pages visited, cookies
  • Marketing preferences: newsletter opt‑in status

3. Why we collect

  • To set up and secure your account, communicate with you, and personalise our services.
  • To calculate your FortisScore and tailor recommendations (only after consent).
  • To analyse site performance, improve functionality, and prevent fraud.
  • To send updates and offers if you’ve opted in.

4. Consent & lawful bases

Sensitive questionnaire fields remain disabled until you provide clear consent. Without consent, you cannot submit those sections.
Under EU GDPR, we rely on these lawful bases:

  • Consent: for sensitive data and marketing communications
  • Legitimate interests: for analytics, security, and fraud prevention
  • Contract performance: to create and maintain your account
  • Legal obligations: for tax and record‑keeping requirements

5. Cookies & tracking

We use essential cookies for security, analytics cookies (Google Analytics 4), and marketing pixels (Meta, Google Ads). You can manage choices via our cookie banner or “Cookie Settings” link.

6. Service providers

We use trusted third‑party providers solely to run our business operations:

  • AWS (hosting)
  • Mailchimp (email communications)
  • Stripe (payment processing)

Overseas transfers occur only under recognised adequacy arrangements or Standard Contractual Clauses. We never sell your personal information.

7. Security & retention

We protect data with industry‑standard measures (TLS encryption, secure storage).

  • Marketing data: retained 24 months after last contact
  • Questionnaire & program data: retained 5 years after completion
  • Payment & tax records: retained 7 years (by law)

8. Your rights

You can request access, correction, or deletion of your personal information, or withdraw consent anytime by emailing our Privacy Officer.

Additional EU rights:

  • Right to object, restrict processing, and data portability
  • Lodge a complaint with your local Data Protection Authority or the Irish Data Protection Commission (dpc.ie)

California privacy rights (CCPA/CPRA):
If you are a California resident, you may:

  • Request categories of personal information we collect/share
  • Request deletion of your personal data
  • Opt‑out of sale of personal data (we don’t sell your data)
  • Not receive discriminatory treatment for exercising these rights

Submit California privacy requests by emailing privacy@fortisman.com.

9. Data breaches

We investigate suspected breaches within 72 hours. If there’s risk of serious harm, we notify affected individuals and regulators promptly.

10. Updates to this policy

Material changes will be posted here and notified by email and site banner at least 14 days in advance. Continued use after notification equals acceptance.