Privacy Policy

NeverTrust.ai ("we", "us", or "our") is committed to protecting your personal information and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

By submitting your information through our waitlist form or otherwise engaging with our website at nevertrust.ai (the "Site"), you acknowledge that you have read and understood this Privacy Policy.

NeverTrust.ai is an AI agent security company based in Australia.

For privacy enquiries, you may contact our Privacy Officer at: hello@nevertrust.ai

We only collect personal information that is reasonably necessary for our functions and activities. The types of personal information we may collect include:

3.1 Information You Provide Directly

When you register for our waitlist, we collect:

• Work email address — required, used to contact you about the waitlist and product launch
• Company name — optional, helps us understand your organisation
• Job title — optional, helps us tailor communications to your role
• Use case description — optional, helps us understand how you are using AI agents and what your security needs are

3.2 Information Collected Automatically

When you visit our Site, we may automatically collect certain technical information, including:

• IP address and general geographic location (country/region level)
• Browser type and version
• Pages visited and navigation patterns
• Referring URL
• Date and time of access

This information is collected through Vercel Analytics, a privacy-conscious analytics service. We do not use cookies for tracking or advertising purposes at this time.

3.3 Sensitive Information

We do not intentionally collect sensitive information (as defined in the Privacy Act), including health information, racial or ethnic origin, political opinions, or similar categories. Please do not submit such information through our waitlist form.

We use personal information collected from you for the following purposes:

• Waitlist management — to record your interest in NeverTrust.ai and manage your position on the waitlist
• Product communications — to notify you when our product becomes available, share updates on our development progress, and provide information about launch dates and pricing
• Design partner programme — to identify and contact potential design partners for early access and roadmap input
• Product improvement — to understand the market's use of AI agents and inform our product development priorities
• Legal compliance — to comply with applicable laws, regulations, and legal process
• Site analytics — to understand how visitors use our Site and improve its content and performance

We will not use your personal information for purposes other than those set out above without your consent, unless permitted or required by law.

5.1 Third-Party Service Providers

We may disclose your personal information to third-party service providers who assist us in operating our Site and delivering our services. These providers are required to handle your information in accordance with this Privacy Policy and applicable law. Current third-party providers include:

• Vercel Inc. — website hosting and analytics (based in the United States)

When personal information is disclosed to overseas recipients, we take reasonable steps to ensure those recipients do not breach the APPs in relation to that information. However, under APP 8.1, you acknowledge that if such a recipient breaches the APPs, that entity will not be covered by the Privacy Act and you may not have recourse under the Privacy Act.

5.2 Email Service Provider

We use Resend for email delivery services. Resend processes email addresses for the purpose of sending confirmation emails on our behalf.

5.3 Required Disclosures

We may also disclose personal information where required or authorised by law, including to law enforcement agencies or regulators, or to enforce our legal rights.

5.4 Business Transfers

If we merge with, are acquired by, or sell substantially all of our assets to a third party, personal information held by us may be transferred to that third party. We will notify you of any such transfer and any choices you may have regarding your information prior to the transfer completing.

5.5 We Do Not Sell Your Data

We do not sell, rent, or trade your personal information to third parties for their own marketing or commercial purposes.

By submitting your email address through our waitlist form, you consent to receiving communications from us about our product, including launch notifications, early access invitations, and updates relevant to AI agent security.

All marketing emails will include an unsubscribe mechanism. You may opt out of marketing communications at any time by clicking "unsubscribe" in any email we send you or by contacting us at hello@nevertrust.ai. Opting out of marketing communications will not affect our ability to send you transactional or legal communications.

We comply with the Spam Act 2003 (Cth) in all email communications.

We take reasonable steps to protect the personal information we hold from misuse, interference, and loss, and from unauthorised access, modification, or disclosure. Our security measures include:

• Encryption of data in transit using TLS/HTTPS
• Hosting on Vercel's infrastructure, which maintains industry-standard security certifications
• Restricted internal access to collected waitlist data

While we implement these safeguards, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee the absolute security of your information.

In the event of a data breach that is likely to result in serious harm to you, we will notify you and the Office of the Australian Information Commissioner (OAIC) in accordance with our obligations under the Notifiable Data Breaches scheme.

We retain your personal information for as long as necessary to fulfil the purposes for which it was collected, including:

• Waitlist data — retained until you request deletion, withdraw consent, or until we determine the information is no longer needed for our business purposes
• Analytics data — retained in aggregated, non-identifiable form indefinitely for product improvement purposes

When personal information is no longer required, we will take reasonable steps to destroy or de-identify it in a secure manner.

Our Site does not currently use tracking cookies or advertising pixels. We use Vercel Analytics, which is designed to be privacy-preserving and does not use cookies to track individual users across sessions.

If we introduce cookies in future, we will update this Privacy Policy and implement an appropriate cookie consent mechanism.

Under the Australian Privacy Principles, you have the following rights in relation to your personal information:

• Access — you may request access to the personal information we hold about you
• Correction — you may request that we correct personal information that is inaccurate, incomplete, or out of date
• Deletion — you may request that we delete your personal information where we no longer have a lawful basis for holding it
• Withdrawal of consent — where we process your information based on consent, you may withdraw that consent at any time

To exercise any of these rights, please contact us at hello@nevertrust.ai. We will respond to your request within a reasonable timeframe and in any event within 30 days. We may need to verify your identity before processing your request.

We will not charge a fee for access requests unless the request is complex or time-consuming to fulfil, in which case we will advise you of any applicable fee before proceeding.

If you believe we have handled your personal information in a manner inconsistent with the Privacy Act or the APPs, we encourage you to contact us first so we can address your concerns:

Email: hello@nevertrust.ai

We will acknowledge your complaint within 5 business days and aim to resolve it within 30 days. If you are not satisfied with our response, or if we have not responded within 30 days, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

• Website: www.oaic.gov.au
• Phone: 1300 363 992

Our Site may contain links to third-party websites. We are not responsible for the privacy practices of those websites and encourage you to read their privacy policies before providing any personal information.

Our Site and services are not directed at children under the age of 15, and we do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us and we will promptly delete it.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the effective date at the top of this page. We encourage you to review this page periodically.

If we make changes that significantly affect how we handle your personal information, we will notify waitlist registrants by email prior to the changes taking effect.

For any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal information, please contact us: