Skip to content

Privacy Policy

Last updated: 21 May 2026

This is a working draft pending formal legal review. It reflects our current practice and our obligations under the Australian Privacy Act 1988, including the Notifiable Data Breaches (NDB) scheme.

Who we are

Retenta (operated by Zac Simandl, t/as Retenta) provides Canvas LMS backup and restore verification services. You can contact us at zac@retenta.io.

What we collect

  • Contact details you provide (name, work email, organisation) via our forms.
  • For customers: the Canvas course content within your agreed backup scope.
  • Basic, privacy-preserving usage analytics (no cookies, via Cloudflare Web Analytics).

How we use it

To respond to your enquiry, deliver requested resources, provide the service you have contracted, and send occasional compliance updates you can unsubscribe from at any time. We do not sell personal information.

Where it is stored

Backup data is stored in Microsoft Azure (Australia East) under immutable retention. Contact data is held in our CRM (HubSpot) and email provider (Resend). See our Trust Center for the full sub-processor list.

Data breach notification

If an eligible data breach occurs that is likely to result in serious harm, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) in accordance with the Notifiable Data Breaches scheme.

Your rights

You may request access to, correction of, or deletion of your personal information by emailing zac@retenta.io. You may also complain to the OAIC.