Privacy Policy

Neoma Pty Ltd (ABN 18 687 659 196) provides workforce consulting and employee reskilling programs. While not legally required to do so, Neoma has chosen to operate in accordance with the Australian Privacy Principles (APPs) and has voluntarily adopted the Notifiable Data Breaches scheme.

Neoma functions as a service provider to organisations. Employees interact directly with Neoma’s platforms to complete assessments and training. If you’re a participant and wish to access your data, please contact your employer in the first instance — they will coordinate with Neoma on your behalf.

Employee participants

Name, work email address, job title, department, assessment results, learning progress, and manager-provided performance information.

Enterprise clients

Contact details, organisation information, and communication records.

Website visitors

Website usage data collected through Google Analytics and contact form submissions.

Diversity information — including gender, ethnicity, and disability — is collected on a voluntary basis with explicit consent. Providing this information is always optional. Data is reported only in anonymised, aggregate form and never identifies individuals to employers.

We use personal information for the following purposes:

• Delivering and administering programs
• Reporting program outcomes to employers (in aggregate or as agreed)
• Improving the quality of our services
• Communicating with clients and participants
• Meeting legal and regulatory obligations
• Developing and enhancing our platform

We do not use artificial intelligence to grade open-ended responses or make decisions about individuals’ suitability for roles.

Information may be shared with employing organisations in accordance with contractual arrangements, and with third-party service providers who help us deliver our services.

We do not sell personal information to third parties.

We use the following categories of service providers:

• Cloud hosting: Supabase
• CRM: Salesmate
• Business intelligence: Apollo.io
• Collaboration: Microsoft 365, Slack
• Meeting transcription: Granola.ai
• Analytics: Google Analytics
• Email notifications: Resend
• Form processing: Formspree

Some of our service providers store or process data outside Australia, primarily in the United States. We review the security practices of all service providers before engaging them and ensure appropriate safeguards are in place.

We use Google Analytics to understand how visitors use our website. This includes information such as pages visited, time spent on the site, referring websites, browser type, and general geographic location.

You can opt out of Google Analytics by installing the Google Analytics opt-out browser add-on.

We take reasonable steps to protect personal information from misuse, interference, loss, and unauthorised access. Our measures include:

• Encryption of data in transit and at rest
• Role-based access controls
• Regular reviews of security practices
• Careful vendor selection with appropriate security certifications

• Assessment results & learning data: Contract duration plus 2 years
• Manager performance data: Contract duration plus 2 years
• Client contacts: Relationship duration plus 2 years, or until marketing consent is withdrawn
• Financial & contractual records: 7 years
• Anonymised analytics: Indefinitely

If you are an employee participant, please contact your employer in the first instance. All other individuals may contact Neoma directly using the details below. We will respond within a reasonable timeframe, usually within 30 days.

If you believe we have breached your privacy, please contact us using the details below. We will investigate your complaint and respond within 30 days. If you are not satisfied with our response, you may escalate your complaint to the Office of the Australian Information Commissioner (OAIC).

We may update this policy from time to time. The current version will always be available on our website with the date of last update shown below.

Last updated: July 2025