Last updated: February 08, 2026

This Privacy Policy explains how SPECERE GROUP PTY LTD (ACN 684 159 199) (Specere, Specere.ai, we, us, our) collects, uses, stores, and discloses personal information when providing the Specere platform, including Specere.ai, Specere CRM, SpecereShift, associated plugins, voice features, and related services (Services).

This Policy applies globally. Additional jurisdiction-specific provisions apply where required by law.

1. Scope and Role

Specere provides enterprise software services to organisations. In most cases:

- the customer organisation is the data controller (or equivalent); and

- Specere acts as a service provider / processor on the customer’s instructions.

Customers are responsible for ensuring they have appropriate authority, notice, and consent to provide personal information to the Services.

2. Information We Collect

2.1 Information Provided by Customers and Users

We may collect personal information submitted through the Services, including:

- names, email addresses, job titles, and contact details;

- account credentials and access logs;

- operational data entered into the CRM or scheduling tools;

- voice recordings and audio files;

- automated voice-to-text transcriptions; - communications and support requests.

2.2 Automatically Collected Information

We may collect technical and usage information, including:

- IP addresses and device information;

- log files and usage analytics;

- cookies or similar technologies used for functionality and analytics.

3. Voice Recording and Transcription

The Services include functionality that records voice interactions and performs automated voice-to-text transcription.

You acknowledge and agree that:

- recordings and transcriptions are processed automatically;

- transcription accuracy is not guaranteed;

- Specere does not routinely monitor or verify recorded content; and

- customers are responsible for ensuring lawful recording, notice, and consent under applicable local laws.

Specere is not responsible for failures to obtain consent or for reliance on transcriptions.

4. How We Use Information

We use information to:

- provide, operate, and maintain the Services;

- authenticate users and manage access;

- process recordings and generate AI-assisted outputs;

- provide support and respond to inquiries;

- improve performance, reliability, and security;

- comply with legal obligations.

AI Training

Customer data, including recordings and transcriptions, is not used to train AI models unless: - explicitly agreed in writing; and - supported by appropriate lawful authority and consents.

5. Disclosure of Information

We may disclose information:

- to service providers and subprocessors (such as cloud hosting, analytics, payment processors);

- where required by law or legal process;

- to protect the rights, security, or integrity of Specere or others.

We do not sell personal information.

6. Data Storage, Residency and Security

Information is stored and processed using reputable cloud infrastructure providers, including Amazon Web Services (AWS).

Specere primarily utilises AWS infrastructure that includes data centre locations in Sydney and Melbourne, Australia for the Asia Pacific region.

While infrastructure is regionally configured, Specere does not guarantee that all customer data (including AI-processed data, backups, metadata, system logs, or redundancy copies) will be stored exclusively within a specific data centre and may be replicated, processed, or backed up in other jurisdictions where required for resilience, redundancy, support operations, or lawful processing.

Where customers have specific data residency requirements, these must be agreed in writing.

AI Processing and Infrastructure

AI-assisted processing, including voice-to-text transcription and automated outputs, may utilise cloud-based compute resources globally operated by Specere or its service providers.

Specere implements reasonable contractual and technical safeguards to ensure such processing aligns with applicable privacy laws and customer agreements.

Security and Compliance

Specere implements technical and organisational security measures appropriate to the nature and sensitivity of the data processed, including access controls, encryption safeguards, monitoring controls, and role-based permissions.

SpecereShift and associated systems are developed and operated in alignment with recognised information security standards and frameworks, including ISO 27001 certified security practices where applicable.

While Specere applies robust security measures, no system is completely secure.

Customers remain responsible for maintaining the security of their access credentials and internal user controls.

7. Data Retention

We retain personal information only for as long as necessary to:

- provide the Services;

- meet contractual obligations; or

- comply with legal requirements.

Data may be deleted or de-identified upon request, subject to legal and contractual constraints.

8. Australian Privacy (Privacy Act 1988)

Where the Australian Privacy Act 1988 (Cth) applies, Specere complies with the Australian Privacy Principles.

Individuals may request access to or correction of personal information by contacting us using the details below.

For services involving NDIS providers, participant data must only be used for authorised purposes and in accordance with applicable NDIS requirements.

9. International Users

European Union and United Kingdom (GDPR)

Where applicable, individuals may have rights to access, rectify, erase, restrict, or object to processing of personal data, and to data portability.

Processing is conducted on the basis of contractual necessity, legitimate interests, or other lawful bases.

United States (California)

Where applicable, California residents may have rights under the CCPA/CPRA, including rights to access and delete personal information.

Specere does not sell or share personal information for targeted advertising.

10. Cross-Border Transfers

Information may be processed and stored in Australia and other jurisdictions where Specere or its service providers operate.

Appropriate safeguards are used where required by law.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Updated versions will be published on our website.

12. Contact

For privacy or data protection inquiries, contact:

SPECERE GROUP PTY LTD
Email: [email protected]