Legal
Privacy Policy
Effective date: 19 February 2026
1. Introduction
NeverTrust.ai ("we", "us", or "our") is committed to protecting your personal information and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
By submitting your information through our waitlist form or otherwise engaging with our website at nevertrust.ai (the "Site"), you acknowledge that you have read and understood this Privacy Policy.
2. Who We Are
NeverTrust.ai is an AI agent security company based in Australia.
For privacy enquiries, you may contact our Privacy Officer at: hello@nevertrust.ai
3. Personal Information We Collect
We only collect personal information that is reasonably necessary for our functions and activities. The types of personal information we may collect include:
3.1 Information You Provide Directly
When you register for our waitlist, we collect:
- Work email address — required, used to contact you about the waitlist and product launch
- Company name — optional, helps us understand your organisation
- Job title — optional, helps us tailor communications to your role
- Use case description — optional, helps us understand how you are using AI agents and what your security needs are
3.2 Information Collected Automatically
When you visit our Site, we may automatically collect certain technical information, including:
- IP address and general geographic location (country/region level)
- Browser type and version
- Pages visited and navigation patterns
- Referring URL
- Date and time of access
This information is collected through Vercel Analytics, a privacy-conscious analytics service. We do not use cookies for tracking or advertising purposes at this time.
3.3 Sensitive Information
We do not intentionally collect sensitive information (as defined in the Privacy Act), including health information, racial or ethnic origin, political opinions, or similar categories. Please do not submit such information through our waitlist form.
4. How We Use Your Personal Information
We use personal information collected from you for the following purposes:
- Waitlist management — to record your interest in NeverTrust.ai and manage your position on the waitlist
- Product communications — to notify you when our product becomes available, share updates on our development progress, and provide information about launch dates and pricing
- Design partner programme — to identify and contact potential design partners for early access and roadmap input
- Product improvement — to understand the market's use of AI agents and inform our product development priorities
- Legal compliance — to comply with applicable laws, regulations, and legal process
- Site analytics — to understand how visitors use our Site and improve its content and performance
We will not use your personal information for purposes other than those set out above without your consent, unless permitted or required by law.
5. Disclosure of Personal Information
5.1 Third-Party Service Providers
We may disclose your personal information to third-party service providers who assist us in operating our Site and delivering our services. These providers are required to handle your information in accordance with this Privacy Policy and applicable law. Current third-party providers include:
- Vercel Inc. — website hosting and analytics (based in the United States)
When personal information is disclosed to overseas recipients, we take reasonable steps to ensure those recipients do not breach the APPs in relation to that information. However, under APP 8.1, you acknowledge that if such a recipient breaches the APPs, that entity will not be covered by the Privacy Act and you may not have recourse under the Privacy Act.
5.2 Email Service Provider
We use Resend for email delivery services. Resend processes email addresses for the purpose of sending confirmation emails on our behalf.
5.3 Required Disclosures
We may also disclose personal information where required or authorised by law, including to law enforcement agencies or regulators, or to enforce our legal rights.
5.4 Business Transfers
If we merge with, are acquired by, or sell substantially all of our assets to a third party, personal information held by us may be transferred to that third party. We will notify you of any such transfer and any choices you may have regarding your information prior to the transfer completing.
5.5 We Do Not Sell Your Data
We do not sell, rent, or trade your personal information to third parties for their own marketing or commercial purposes.
6. Marketing Communications
By submitting your email address through our waitlist form, you consent to receiving communications from us about our product, including launch notifications, early access invitations, and updates relevant to AI agent security.
All marketing emails will include an unsubscribe mechanism. You may opt out of marketing communications at any time by clicking "unsubscribe" in any email we send you or by contacting us at hello@nevertrust.ai. Opting out of marketing communications will not affect our ability to send you transactional or legal communications.
We comply with the Spam Act 2003 (Cth) in all email communications.
7. Data Security
We take reasonable steps to protect the personal information we hold from misuse, interference, and loss, and from unauthorised access, modification, or disclosure. Our security measures include:
- Encryption of data in transit using TLS/HTTPS
- Hosting on Vercel's infrastructure, which maintains industry-standard security certifications
- Restricted internal access to collected waitlist data
While we implement these safeguards, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee the absolute security of your information.
In the event of a data breach that is likely to result in serious harm to you, we will notify you and the Office of the Australian Information Commissioner (OAIC) in accordance with our obligations under the Notifiable Data Breaches scheme.
8. Data Retention
We retain your personal information for as long as necessary to fulfil the purposes for which it was collected, including:
- Waitlist data — retained until you request deletion, withdraw consent, or until we determine the information is no longer needed for our business purposes
- Analytics data — retained in aggregated, non-identifiable form indefinitely for product improvement purposes
When personal information is no longer required, we will take reasonable steps to destroy or de-identify it in a secure manner.
9. Cookies and Tracking Technologies
Our Site does not currently use tracking cookies or advertising pixels. We use Vercel Analytics, which is designed to be privacy-preserving and does not use cookies to track individual users across sessions.
If we introduce cookies in future, we will update this Privacy Policy and implement an appropriate cookie consent mechanism.
10. Your Rights and Choices
Under the Australian Privacy Principles, you have the following rights in relation to your personal information:
- Access — you may request access to the personal information we hold about you
- Correction — you may request that we correct personal information that is inaccurate, incomplete, or out of date
- Deletion — you may request that we delete your personal information where we no longer have a lawful basis for holding it
- Withdrawal of consent — where we process your information based on consent, you may withdraw that consent at any time
To exercise any of these rights, please contact us at hello@nevertrust.ai. We will respond to your request within a reasonable timeframe and in any event within 30 days. We may need to verify your identity before processing your request.
We will not charge a fee for access requests unless the request is complex or time-consuming to fulfil, in which case we will advise you of any applicable fee before proceeding.
11. Complaints
If you believe we have handled your personal information in a manner inconsistent with the Privacy Act or the APPs, we encourage you to contact us first so we can address your concerns:
Email: hello@nevertrust.ai
We will acknowledge your complaint within 5 business days and aim to resolve it within 30 days. If you are not satisfied with our response, or if we have not responded within 30 days, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC):
- Website: www.oaic.gov.au
- Phone: 1300 363 992
12. Links to Third-Party Sites
Our Site may contain links to third-party websites. We are not responsible for the privacy practices of those websites and encourage you to read their privacy policies before providing any personal information.
13. Children
Our Site and services are not directed at children under the age of 15, and we do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us and we will promptly delete it.
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the effective date at the top of this page. We encourage you to review this page periodically.
If we make changes that significantly affect how we handle your personal information, we will notify waitlist registrants by email prior to the changes taking effect.
15. Contact Us
For any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal information, please contact us:
NeverTrust.ai
Email: hello@nevertrust.ai