Privacy Policy

Last updated: 9 June 2026

PayCheckR is operated by Go Figure Payroll Pty Ltd (ACN 698 444 834) ("Go Figure Payroll", "we", "us", "our"). We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information in accordance with the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs).

This policy applies to the PayCheckR product at www.mypaychecker.com.au. Our marketing website at www.gofigurepayroll.com.au has its own privacy policy.

1. Information We Collect

Account information

• Name and email address (when you create an account)
• Authentication credentials (securely managed)
• Display name and contact preferences

Employment and pay information

• Job title, employer name, employment type (casual/full-time/part-time)
• Award or enterprise agreement details
• Pay period dates, shift hours, and gross pay amounts
• Detection results and pay comparison history

Payslip data

• Payslip documents (PDF, PNG, JPG) you upload for analysis
• Data extracted from payslips via our AI scanning service, including gross/net pay, hours worked, tax withheld, superannuation, employer name, employee name, and other payslip fields
• Uploaded payslip files are stored securely with encryption and are only accessible to you and a small number of authorised Go Figure Payroll personnel for support and security purposes

Payment information

• If you subscribe to PayCheckR Pro, payment is processed by Stripe. We do not store your credit card number, CVV, or full card details on our servers
• We store your Stripe customer ID and subscription status to manage your account tier
• Stripe may collect billing address and card details in accordance with their own Privacy Policy

Automatically collected information

• IP address, and approximate geolocation derived from it (country, state or region, city, timezone, and approximate latitude/longitude returned by our edge network or geolocation provider). Coordinates are city-level precision, not GPS-level
• The network operator (ISP) or Autonomous System Number (ASN) associated with the IP, where supplied
• Browser, browser version, operating system, device type (mobile, tablet, or desktop), and screen and viewport dimensions
• Hardware and accessibility hints exposed by your browser, including preferred language(s), Accept-Language header, color-scheme preference, reduced-motion preference, number of logical CPU cores, approximate device memory tier, and platform string
• The page you came from (Referer header) and the URL you landed on, including any utm_source, utm_medium, utm_campaign, utm_term, utm_content, gclid, or fbclid query parameters used by marketing campaigns
• Pages visited, timestamps, and an anonymous visitor identifier stored in your browser to count unique daily visitors and avoid double-counting page views

Invitation code activity

PayCheckR is invitation-gated. When you enter an invitation code on the signup page (whether or not the code turns out to be valid), we log the attempt with the automatically collected information above, plus the code text and the outcome (valid, not found, inactive, expired, usage limit reached, malformed, or rate-limited). If you go on to complete signup with a valid code, the redemption record is linked to your account so the team that issued the code can see who used it. Attempts that do not lead to a signup are retained in an anonymous log for security and abuse-prevention purposes.

1A. Collection Notices

We provide collection notices at the point of collection (for example, on the signup form, the payslip upload screen, and the contact form) that summarise: who we are, what information is being collected, why it is being collected, the third parties it will be disclosed to, the countries those third parties may store it in, and how you can access or correct your information. This Privacy Policy contains the full detail of those matters.

2. How We Use Your Information

Your information is used to:

• Provide the PayCheckR service - comparing your pay against applicable Modern Awards, Enterprise Agreements, or the National Employment Standards
• Extract data from uploaded payslips using our AI-powered scanning service to auto-fill pay check fields
• Process subscription payments via Stripe
• Send transactional emails (password resets, email verification) via Titan SMTP
• Improve the accuracy and functionality of the platform
• Analyse anonymised, aggregated usage data to improve the service
• Understand how visitors find PayCheckR (referrer, UTM parameters, campaign click IDs) so we can measure which channels are working and attribute signups to the campaign that drove them
• Detect and prevent abuse, including invitation-code probing, brute-force code guessing, automated signup attempts, and other security events. We may use IP, ASN, and code-entry attempt logs to identify and rate-limit suspicious traffic

We do not sell your personal information. We do not use your payslip data for advertising or marketing purposes.

3. Third-Party Services

We use trusted third-party service providers to operate PayCheckR, including providers for:

• Authentication and data storage - Google Firebase (operated by Google LLC, USA) for account authentication, Firestore database, and Firebase Storage for uploaded payslip files
• Website hosting and analytics - Vercel Inc. (USA) for hosting, content delivery, and anonymised, aggregated traffic analytics via Vercel Analytics
• Payment processing - subscription payments are handled by Stripe Payments Australia Pty Ltd (with parent Stripe Inc. in the USA). We do not store your full card details. See Stripe's Privacy Policy
• Document analysis - payslip scanning is performed by Anthropic PBC (USA) via the Claude API. Under the commercial Claude API terms we have agreed to (as at the date of this policy; see Anthropic's Commercial Terms), Anthropic does not retain or use your payslip data for model training
• Email delivery - transactional emails (password resets, verification) are sent via Titan SMTP (operated by Hostinger Operations UAB, with infrastructure in Lithuania, Singapore, and India)
• Security - Cloudflare, Inc. (USA) provides Turnstile bot protection on public forms (login, signup, password reset, contact)
• IP geolocation lookup - ip-api.com (operated outside Australia by Trace Media Limited) is used to translate an IP address into approximate city, state or region, country, timezone, ISP, and approximate latitude/longitude. We send the visitor IP and User-Agent transiently; we do not send any account data or payslip data

All third-party providers are required to maintain appropriate confidentiality and security safeguards. We only share the minimum data necessary for each provider to perform their function.

Overseas disclosure (APP 8): Some of the providers listed above store and process personal information outside Australia. The likely recipient countries are the United States (Google LLC, Vercel Inc., Stripe Inc., Anthropic PBC, Cloudflare Inc.), Lithuania, Singapore, and India (Hostinger Operations UAB / Titan SMTP infrastructure), and the operating jurisdiction of Trace Media Limited (ip-api.com), which is outside Australia. Before disclosing personal information to these providers, we take reasonable steps to ensure they handle it in a way consistent with the Australian Privacy Principles, including by entering into their standard data-processing agreements, relying on their published privacy and security certifications (such as SOC 2, ISO 27001, and PCI-DSS where applicable), and limiting disclosure to the minimum information necessary for the provider to perform its function.

4. Payslip Scanning

When you upload a payslip for auto-fill, the document is:

• Uploaded to Firebase Storage (encrypted at rest)
• Sent to Anthropic's Claude API for text extraction and structured-data parsing
• The service extracts structured data (pay amounts, dates, employer details) and returns it to our server
• Anthropic does not retain or use your payslip data for model training under their commercial Claude API terms
• Extracted data is stored in your account securely in Firestore

You can delete your uploaded payslips at any time from the Payslips page in your dashboard.

4A. Use of AI

We use AI (Anthropic's Claude API) for one purpose only: to read the content of a payslip you upload and extract structured fields (such as gross pay, hours, dates, and employer name) so we can pre-fill the pay-check form. The AI does not make any decision about whether you are underpaid - that comparison is performed by our own rules-based engine against Modern Award and Enterprise Agreement data published by the Fair Work Commission, and the result is informational only (see our Terms of Service, "Not Legal or Financial Advice").

You can choose not to use the AI extraction feature and instead enter your pay details manually. If you are concerned about a specific extracted value, you can edit any field before running a pay check, and you can delete your uploaded payslip at any time.

Anthropic does not retain or use your payslip data for model training under the commercial Claude API terms we have agreed to.

5. Storage and Security

We take reasonable steps to protect your information from misuse, loss, unauthorised access, modification, or disclosure:

• Data is stored on secure cloud infrastructure with encryption at rest and in transit
• Authentication uses industry-standard secure token management
• Admin access is restricted to authorised personnel with role-based access controls
• All API endpoints verify authentication before returning sensitive data
• HTTPS is enforced on all connections with HSTS headers
• Payslip files require authenticated access tokens - they cannot be accessed without authorisation

No system is completely secure. If we suspect an eligible data breach has occurred, we will assess the situation within 30 days as required under section 26WH of the Privacy Act 1988. If the breach is likely to result in serious harm, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) as soon as practicable under the Notifiable Data Breaches scheme (Part IIIC of the Privacy Act).

6. Cookies and Tracking

PayCheckR uses minimal cookies and tracking, but we want to be precise about it:

• Authentication tokens (essential) - stored in browser storage for session management when you are signed in
• Anonymous visitor ID - stored in your browser to count unique daily visitors and avoid double-counting page views. Not linked to your identity, account, or other sites; cleared if you clear your browser storage
• Session storage (campaign attribution) - when you arrive via a marketing link with UTM parameters or click IDs (gclid, fbclid), we record those values plus the page you came from in your browser's session storage so we can attach them to a signup or invitation redemption later in the same session. Cleared when you close the tab
• Session storage (guest mode and forms) - used for guest-mode calculator state, temporary form data, and (after you successfully enter an invitation code) the validated code and any account-tier assignment until signup completes. Cleared when you close the tab
• Vercel Analytics - we use Vercel's first-party analytics for aggregated traffic counts. Vercel processes your IP (truncated server-side) and User-Agent transiently to derive counts; it does not use third-party cookies and does not build cross-site profiles
• First-party visit log - in addition to Vercel Analytics, each page view is recorded in our own Firestore database with the fields listed under "Automatically collected information" above. This log lets us see which features are being used, where visitors are coming from, and identify abusive traffic. It is not shared with any third party for advertising

We do not use Google Analytics, Facebook Pixel, or any third-party advertising trackers.

7. Disclosure of Information

We do not disclose your personal information to third parties except:

• To the third-party service providers listed in Section 3, solely for operating the service
• Where required by law, court order, or government authority
• To protect the rights, safety, or property of PayCheckR, our users, or the public
• In connection with a sale, merger, or restructure of our business, in which case any acquirer will be bound by this Privacy Policy or an equivalent policy

8. Your Rights

Under Australian Privacy law, you have the right to:

• Access your personal information held by us
• Correct inaccurate or outdated information
• Delete your account and associated data (via Settings or by contacting us)
• Request a copy of your detection history and payslip data by emailing hello@mypaychecker.com.au - we will provide it in a commonly-used machine-readable format within 30 days
• Withdraw consent for optional data processing at any time

To make an access or correction request, email hello@mypaychecker.com.au from the email address registered to your account. We will acknowledge your request within 7 days and respond within 30 days. There is no charge for access. We may refuse access in the limited circumstances permitted by APP 12.3 (for example, where giving access would unreasonably impact another person's privacy or where the request is frivolous or vexatious) and will give you written reasons if we do. If we refuse correction, we will, at your request, take reasonable steps to associate a statement with the information that it is inaccurate, out-of-date, incomplete, irrelevant, or misleading (APP 13.4).

9. Data Retention

We retain personal information only for as long as necessary to provide the service or as required by law. Specifically:

• Account data is retained while your account is active
• Detection results are retained for your reference until you delete them
• Payslip files are retained until you delete them from your dashboard
• Payment records may be retained as required for tax and accounting purposes
• Upon account deletion, we remove your data within 30 days, except where legal obligations require longer retention
• Accounts inactive for more than 24 months will receive an email notice and may be closed and deleted if there is no response within 30 days
• Anonymised, aggregated usage statistics (which are no longer personal information) may be retained indefinitely
• First-party visit logs and invitation-code attempt logs are retained for as long as needed for security, abuse-prevention, and analytics purposes, and may be further anonymised or deleted from time to time. Daily aggregated counts (visitor counts by country) may be retained indefinitely once no longer linked to identifying data

10. Children's Privacy

PayCheckR is intended for use by individuals aged 16 and over. We do not knowingly collect personal information from children under 16 without the consent of a parent or guardian. If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us at hello@mypaychecker.com.au and we will delete the account and associated data.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be published on this page with an updated "Last updated" date. We encourage you to review this page periodically. Continued use of the service after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions or concerns about this Privacy Policy, how your information is handled, or wish to make a complaint, you can contact us at: