Free Refund Policy Generator for GitHub App — Australian Privacy Act Compliant

🇦🇺 Key Australian Privacy Act Requirements

Australia's Privacy Act 1988 and its 13 Australian Privacy Principles (APPs) regulate how organizations with annual turnover over AUD $3 million collect, use, and disclose personal information. The OAIC (Office of the Australian Information Commissioner) enforces the law and can issue fines up to AUD $50 million for serious and repeated breaches.

• Notify individuals about data collection at or before the time of collection
• Only collect personal information that is reasonably necessary
• Provide individuals with access to their personal information
• Take reasonable steps to protect personal information from misuse or unauthorized access
• Notify the OAIC and affected individuals of eligible data breaches (Notifiable Data Breaches scheme)
• Cross-border disclosure requires that overseas recipients comply with the APPs

GitHub App — Specific Considerations

A Refund Policy for GitHub App businesses must specifically address the following considerations that are unique to this industry. Unlike generic templates, your policy needs to reflect how github app businesses actually collect and process data.

Data typically collected by GitHub App businesses: GitHub usernames and profile data, repository content and code (based on permissions), commit history and authorship data, pull request and issue content, organization membership data, webhook event data, installation and usage analytics

• GitHub App Marketplace privacy policy requirement
• Repository content access scope and confidentiality
• Minimum permission scope principle — request only necessary permissions
• Organization data and member information handling
• Webhook payload data retention policy
• Source code security — encryption at rest and access controls