Privacy Policy

Digital Discovery Pty Ltd ACN 668 639 156 trading as See Me Please (See Me Please, we, us, our) considers privacy to be important. This Privacy Policy (Policy) sets out how we collect, hold, use and disclose information about all individuals in Australia who deal or interact with us including, without limitation, user testers, client organisations and subscribers (you). If you are tester or organisation based outside of Australia, please refer to the relevant privacy policy or contact See Me Please at hello@seemeplease.com.

See Me Please operates a digital native, user testing platform aimed at providing organisations with insights and feedback from diverse and disabled users to improve the usability of their services, known as ‘See Me Please’.

See Me Please clients are service providers and organisations (Client Organisations). Members of our Client Organisations utilise our platform to access digital accessibility insights and feedback provided by user testers (User Testers).

This Privacy Policy explains how we handle your personal data, whether you are a Client Organisation, a User Tester or if you subscribe to our news and updates.

See Me Please is dedicated to following data protection laws that govern the collection and management of your personal information. In line with this commitment, we:

• Ensure full transparency about how we collect and use your personal data.
• Only gather personal data that is essential for the services we provide.
• Clearly define the purpose for collecting your data and limit its use and sharing to those specific purposes.
• Implement appropriate measures to protect the security of the personal data we hold.

We recognise that the nature of our work involves handling potentially sensitive personal data. We treat all personal information collected by us in accordance with this Policy and applicable privacy laws including, but not limited to, the Australian Privacy Act 1988 (Cth) (Privacy Act) (the Privacy Act together with other applicable privacy laws, Privacy Laws).

If there is any inconsistency between applicable Privacy Laws and this Policy, the applicable Privacy Laws will prevail to the extent of the inconsistency.

Personal information is information or an opinion of an individual whose identity is apparent or can be reasonably ascertained. As part of our business, we may collect personal information from you. We collect a variety of personal information that is reasonably necessary for the purposes of conducting and improving our business, products and services.

By creating an account with us, filling out a contact form or otherwise engaging with us or providing information to us, you consent to us collecting, processing, and using your personal information in accordance with this Policy.

If you provide any information to us, which may include personal data, you warrant and represent that you are entitled to do so.

Where See Me Please manages information on behalf of Client Organisations or User Testers, we do so in accordance with Privacy Laws and the contractual arrangements we have with those parties.

2.1 Registering an Account- Onboarding as a User Tester

Should you meet See Me Please’s user testing eligibility criteria, you may be able to commence the process of registering an Account (otherwise known as User Tester Onboarding). When you create a user testing account with See Me Please, we collect personal information to register and manage your account. You may also update your profile with additional details after registration.

Once your participant account is set up, you will be considered for paid user testing and research studies and may be invited to participate in specific user testing projects. We may also use your registration details to communicate with you, such as notifying you about potential user testing, research opportunities or reminding you of upcoming study sessions you've selected to join.

Please note that we are unable to create your account or offer you research opportunities if the required information to register an account and satisfy eligibility criteria is not provided. For further information, please refer to the "Participants" section of our Privacy Notice.

See Me Please collects and processes USer Tester’s personal data in a number of instances, which have been set out below. We generally collect this information directly from you. The nature of our business means that we are unable to invite you to participate in user testing opportunities you decide to remain anonymous.

2.2 During User Tester Account Registration

When you register an account as a user tester, we collect a range of personal data to set up your account, including:

• Email
• Password (Hashed)
• Name
• Gender
• Town/suburb location
• Date of birth
• Occupation status
• Mobile phone number
• user preferences and assisted technology preferences and information which may include (without limitation) screen readers and voice controls;
• transactional information which may include (without limitation) your method of payment or bank account details for the purpose of compensating you;
• identification information and documentation;

If a user tester breaches See Me Please’s Terms and Conditions when using the platform and services, they may become ineligible to take part in future user testing projects. Should this occur, the status will be noted on the participant’s account record.

Each person retains the absolute right to decline to opt-in to the User Tester Panel or to participate in any use research projects.

2.3 Opting into a User Testing Project

Once accepted to join the User Tester Panel (and you have registered an account), each User Tester will be asked to provide informed project-specific consent prior to participating in any individual project. The project-specific consent will outline details regarding who will have access to their data and how their data will be used for each specific project.

User Testers retain the right to decline participation in any project if they do not agree with the specific data-sharing requirements associated with that project.

To participate in and complete user testing projects, you will generally be required to provide details about yourself, including your opinions and preferences.

The exact personal data that you are required to provide is dependent on the scope of the project being conducted.

2.4 User Tester Personal Information Collected by Us

Once a person has decided to join the User Tester Panel and has successfully registered an account including satisfying eligibility critieria, the Personal information of that User Tester may be collected in a number of ways, including:

• through our website at https://seemeplease.com and its subdomains, web applications, mobile applications, proprietary software and desktop clients (collectively Platform);
• directly from the User Tester, including through digital accessibility testing and the provision of insight and feedback;
• through marketing research and other user participation events;
• through any of our other business activities or events; and
• through our partner organisations.

Personal information of User Testers collected by us may include:

• name, contact details (including street address, postal address, email address, phone number), gender and age;
• videos, photographs, audio recordings, screen recordings or other materials provided by the User Tester including those that may contain their image, likeness, voice, written comments or other personal information;
• location information;
• user preferences and assisted technology preferences and information which may include (without limitation) screen readers and voice controls;
• transactional information which may include (without limitation) bank account details for the purpose of compensating you;
• identification information and documentation, specifically for the purpose of participating in user testing projects that require identity assurance;
• usernames and passwords (which may be inadvertently shared in the course of user testing);
• preferences and opinions;
• any other information that the User Tester chooses to send to us; and
• usage data and logs, which may include information such as their Internet Protocol (IP) address, browser type, browser version, device type, make and model clickstream/heatmap data, Single Sign-On profile information, the pages of our Platform visited, the features and functions of our Platform used, activities or actions they do while using our Platform, the time and date of their visit to our Platform, the time spent on any pages of our Platform, and other log related information relating to their use of our Services.

2.5 Use of User Tester Personal Information

We may use the personal information of User Testers for:

• understanding digital accessibility and usability friction and informing organisations about real-world accessibility challenges;
• undertaking research and capability building related to accessible online services;
• collecting and developing aggregated insights on digital accessibility, usability and inclusivity and benchmarking data; and
• building innovative models and technologies using data.

All aggregated data (be it anonymised or identifiable) and any analytical insights or models derived from the use of personal information shall remain the exclusive property of See Me Please, and any use or access by Client Organisations shall be strictly subject to a non‐exclusive, revocable licence that does not confer any ownership rights unless otherwise agreed.

2.6 Disclosure of User Tester Data

User Testers are engaged by us to test the accessibility and user experience of digital services and to provide us with feedback and insights. Such feedback and insights may be provided by User Testers in the format of videos, photographs, audio recordings, screen recordings or other digital or written materials including those that may contain the User Tester’s image, likeness, voice, opinions, preferences and other personal information (Tester Data).

Tester Data is shared by us with Client Organisations as specified in the project information provided to the User Tester before their participation. We provide Tester Data to Client Organisations, to provide them with our services including without limitation to providing them with the feedback and insights of User Testers.

We endeavour to maintain the protection of Tester Data by providing it to Client Organisations via a secured, authenticated portal and in anonymised or aggregated form, where possible.

User Testers may decline to participate in any project if they are not comfortable with the data-sharing requirements.

See Me Please takes all reasonable steps to ensure that Tester Data is only used by Client Organisations for user research or capability uplift related to the design and usability of online services and is not shared with stakeholders outside the Client Organisation, however this cannot be guaranteed. See Me Please cannot control how other parties interpret and use Tester Data.

By providing Tester Data to See Me Please, you acknowledge and agree that:

• participating in testing and providing Tester Data is entirely voluntary;
• See Me Please is authorised to collect, use, share and disclose your Tester Data and personal information in accordance with this Privacy Policy and any other project specific consents provided by you;
• See Me Please will share your Tester Data and personal information with Client Organisations; and
• See Me Please will not be held liable for any use, non-use, or misuse of your Tester Data or personal information by Client Organisations or third parties.

3.1 Client Organisation Personal Information Collected by Us

When you sign up for an account with See Me Please as a representative of a Client Organisation, we collect personal data from you in your capacity as a member of that organisation. We process this data on behalf of our client (the data controller) for the purpose of registering your account with See Me Please. By creating an account, you will be able to access the See Me Please platform and utilise our services to view your organisation’s user research insights or broader research insights and benchmarking data.

Please note that we cannot set up your account without the necessary information. As our current and prospective client organisations are typically companies, corporations, or government agencies, personal data collected is generally limited to the details of nominated contact persons or employees interested in accessing insights. This information is processed under various circumstances, as outlined below. We will collect this data directly from you (e.g., through a webform or event registration) or from other sources, such as your employer (our client) or LinkedIn. Due to the nature of our business, we are unable to provide user insights services anonymously.

3.2 How We Collect Data on Organisations

Personal information of Client Organisations may be collected in a number of ways, including:

• through our Platform;
• directly from that party, including through conversations or written correspondence;
• through any of our other business activities or events; and
• through our partner organisations.
• Personal information of members from our Client Organisations collected by us may include:
• name and contact details (including street address, postal address, email address, phone number);
• location information;
• reasons for using any of our products and services;
• Working with Vulnerable People Clearances
• any other information that the Client Organisation chooses to send to us; and
• usage data and logs, which may include information such as Internet Protocol (IP) address, browser type, browser version, device type, make and model clickstream/heatmap data, Single Sign-On profile information, pages of our Platform visited, the features and functions of our Platform used, activities or actions while using our Platform, the time and date of visit(s) to our Platform, time spent on any pages of our Platform, and other log related information relating to use of our Services.

3.3 Use of Client Organisation Data

We may use personal information of Client Organisations for:

• providing and delivering our products and services;
• developing and improving our products, services and user satisfaction;
• providing support (including technical support) to the Client Organisation in relation to the use of our products and services;
• promoting and marketing our products and services;
• internal research and statistical purposes (including market segmentation and customer value analysis) and internal business operations (including fulfilling any legal requirements);
• enabling us to forward other information or material which we believe may be of interest to that party, or which the party has indicated it may be interested in receiving, which may include (without limitation) our newsletter, accessibility research and insights, news and industry developments; and
• any other purpose reasonably related to our business interests.

3.4 Disclosure of Client Organisation Data

We do not disclose the personal information of Client Organisations to any third party, other than those requiring this information to assist us or those that are directly related to the purposes for which the information was collected, including:

• to external service providers, so that they can provide products and services in connection with the operation and improvement of our business including, without limitation, our professional advisors, consultants, engineers, administrators, interpreters and data entry service providers;
• to our affiliates, including but not limited to other organisations and businesses within our group of organisations, employees and contractors;
• to provide services to, or respond to or fulfill requests from the Client Organisation;
• as permitted under the Privacy Laws or any other applicable law;
• if the Client Organisation would reasonably expect that their personal information would be passed to the person to whom the personal information is disclosed;
• any relevant authority or enforcement body where we reasonably believe that disclosure is required to bring legal action against a third party;
• entities that we propose to merge with or be acquired by; and
• with the consent of the Client Organisation.

All aggregated data (be it anonymised or identifiable) and any analytical insights or models derived from the use of personal information shall remain the exclusive property of See Me Please, and any use or access by Client Organisations shall be strictly subject to a non‐exclusive, revocable licence that does not confer any ownership rights unless otherwise agreed.

Granular, project-specific insights that See Me Please is commissioned to deliver on behalf of client organisations will not be shared with other organisations. However, See Me Please may use these project insights more broadly for purposes such as research, benchmarking, and developing innovative models and solutions.

4.1 Personal Information Collected by Us

If you subscribe to our newsletter or marketing database or otherwise deal or interact with us in any way, your Personal Information may be collected:

• through our Platform;
• directly from you, including through conversations or written correspondence with us;
• through any of our other business activities or events;
• through our partner organisations; and
• through persons seeking employment with us and/or by otherwise having some form of contact with a person, such as by personal contact, mail, telephone, email, video teleconferencing, Internet or other forms of telecommunication.
• Personal information collected by us may include:
• your name and contact details (including email address, phone number);
• any other information that you choose to send to us; and
• usage data and logs, which may include information such as your Internet Protocol (IP) address, browser type, browser version, device type, make and model clickstream/heatmap data, Single Sign-On profile information, the pages of our Platform that you visit, the features and functions of our Platform you use, activities or actions you do while using our Platform, the time and date of your visit to our Platform, the time spent on any pages of our Platform, and other log related information relating to your use of our Services.

4.2 Use of Personal Information

We may use personal information for:

• providing support to you (including technical support) in relation to the use of our products and services;
• promoting and marketing our products and services to you;
• internal research and statistical purposes (including market segmentation and customer value analysis) and internal business operations (including fulfilling any legal requirements);
• enabling us to forward to you other information or material which we believe may be of interest to you, or which you have indicated you may be interested in receiving, which may include (without limitation) our newsletter, accessibility research and insights, news and industry developments; and
• any other purpose reasonably related to our business interests.

4.3 Disclosure Generally

We do not disclose your personal information to any third party, other than those requiring this information to assist us or those that are directly related to the purposes for which the information was collected, including:

• to external service providers, so that they can provide products and services in connection with the operation and improvement of our business including, without limitation, our professional advisors, consultants, engineers, administrators and data entry service providers;
• to our affiliates, including but not limited to other organisations and businesses within our group of organisations, employees and contractors;
• to provide services to, or respond to or fulfill requests from, you;
• as permitted under the Privacy Laws or any other applicable law;
• if you would reasonably expect that your personal information would be passed to the person to whom the personal information is disclosed;
• any relevant authority or enforcement body where we reasonably believe that disclosure is required to bring legal action against a third party;
• entities that we propose to merge with or be acquired by; and
• with your consent.

Our Platform may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the privacy policy of every site which you visit.

We confirm that we have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party sites, products or services whatsoever.

You should be aware that your ability to opt-out of a third-party tool or platform will depend on the conditions governing your agreement with that third party.

We will implement and maintain security measures consistent with internationally recognised standards to protect all personal information which we hold from misuse, interference, loss, unauthorised access, modification or disclosure.

• The precautionary steps we take to protect personal information may include:
• providing Tester Data to Client Organisations via a secured, authenticated portal and in anonymised or aggregated form, where appropriate and possible;
• adopting measures to protect our computer systems and networks for storing, processing and transmitting personal information;
• adoption of procedural and personnel measures for limiting access to personal information by our staff;
• adoption of procedural measures and processes for limiting access to Tester Data to members of Client Organisations;
• regularly reviewing our information collection, storage and processing practices;
• conducting routine security reviews; and
• secured encrypted servers, password protection for electronic files and multifactor authentication procedures.

We also take steps to ensure that the personal information we collect is accurate, up-to-date and complete. These steps may include maintaining and updating personal information when it is apparent that updating is required, or we are otherwise advised by you that your personal information has changed.

Notwithstanding that we use our best endeavours to protect all personal information, we cannot completely guarantee the security of your personal information.

In the event of a data breach that is likely to result in serious harm to any individual, we will promptly assess the breach and notify affected individuals and the Office of the Australian Information Commissioner as required under the Privacy Act. We will take appropriate remedial steps to mitigate the effects of the breach and review our security measures to prevent recurrence.

We will retain personal information only for as long as is necessary to fulfil the purposes for which it was collected or as otherwise required or permitted by law. Once such purposes have been achieved or the retention period expires, personal information will be securely deleted or permanently de-identified, except where further retention is required for legal, regulatory, or legitimate business purposes.

Cookies are files with a small amount of data, which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your computer's or mobile device’s storage drive. Like many sites, we use cookies and other similar technologies to collect information and remember your preferences. You can instruct your browser to refuse all cookies, or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some features of our Services or our other products and services.

Web beacons (also known as clear gifs, pixel tags or web bugs) are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of users or to access cookies. Unlike cookies which are stored on the user’s computer or mobile device storage drive, web beacons are embedded invisibly on web pages (or in e-mail). Web beacons may be used to deliver or communicate with cookies, to count users who have visited certain pages and to understand usage patterns. Like many sites, we use web beacons to collect information which is done in accordance with this Policy.

We may disclose personal information to outsourced information technology service providers, including cloud computing providers and data storage providers, and other third party service providers who are not in Australia or may transfer or store your personal information outside Australia.

We will take reasonable steps to ensure such overseas recipients do not breach the Australian Privacy Principles contained in the Privacy Act (APPs) or are subject to laws or a scheme substantially similar to the APPs, however this cannot be guaranteed.

Overseas recipients are not bound by the APPs. If an overseas recipient handles your information in breach of the APPs, you will not be able to seek redress under the Privacy Act.