Privacy Policy
Last Updated: 7 July 2026
1. Who We Are
Wahid AI is operated by Effective Risk Management Pty Ltd. We are committed to protecting the privacy and security of our customers' corporate, systems, and user data.
2. What We Collect
We collect organizational metadata, contact details, account configurations, and use-case evaluation parameters submitted through our intake pipelines. We do not ingest production records or database content unless explicitly configured.
3. How We Use It
Collectively, data is used to provide risk classification, coordinate human oversight reviews, link evidence packages, and maintain user access controls.
4. Legal Bases
We process personal information under the consent provided, performance of contracts, and legitimate interest in providing secure corporate GRC platforms.
5. Disclosure & Sub-processors
We do not sell, rent, or trade customer information. Sub-processors are limited to cloud hosting providers and service monitoring partners vetted under APRA CPS 234 security guidelines.
6. Data Residency
All customer database records, system logs, and backup files remain securely stored in Australian sovereign facilities.
7. Security
We employ administrative, physical, and technological security controls, including encrypted databases, multi-factor authentication, and role-based access restrictions.
8. Your Rights (Australian Privacy Principles)
Under the Australian Privacy Principles (APP), you have the right to request access, correction, deletion, or portability of your personal data.
9. Cookies & Tracking
We use strictly necessary cookies to maintain session states and authentication contexts. No third-party behavioral advertisement cookies are deployed.
10. Contact
For privacy requests, please contact our Data Governance Officer at contact@effectiverm.com.