Last Updated: 27 June 2026
Zeogly Pty Ltd (ABN 55 625 307 431) (“we”, “us”, or “our”) is an Australian software company based in the Australian Capital Territory. We operate the following services:
This Privacy Policy explains how we collect, use, disclose, and protect personal information across these services. We are committed to compliance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
This Privacy Policy describes our information handling practices. If you do not want your information handled as described, please do not use the relevant service.
We collect personal information across our services as follows:
Where practicable and lawful, you may interact with us anonymously or using a pseudonym. For general enquiries submitted via the contact form, you may choose not to provide your full name. For account-based services (Agents Wallet), accurate identity information is required to deliver the service — anonymity is not practicable for those services.
Where we have indicated that a field is required, failure to provide that information means we may be unable to deliver the relevant service. Optional fields are marked as such.
2.1 zeogly.com Contact Form
2.2 Agents Wallet
Marketing communications: Zeogly does not send unsolicited marketing communications. Agencies and agents who register for Agents Wallet are not automatically enrolled in marketing communications.
Contacts who scan an agent’s QR code: When a contact scans an agent’s QR code, they are taken to a page where they can save the agent’s pass directly to their Google Wallet. Zeogly does not collect any personal information from that contact. The pass installation is handled by Google’s own platform and is governed by Google’s Privacy Policy.
Data controller and processor roles (Agents Wallet): Zeogly Pty Ltd acts as the data controller for personal information it collects and holds under this Policy. Where a subscribing agency provides agent profile data to Zeogly for processing via the Agents Wallet platform, Zeogly processes that data solely to deliver the service. The subscribing agency is responsible for ensuring it has collected that data lawfully and has any authority or consent required to provide it to Zeogly for that purpose. The agency’s obligations in this regard are set out in the Agents Wallet Terms of Service.
2.3 Website and Technical Data
We use the personal information we collect for the following purposes:
We do not sell, rent, or trade your personal information to third parties for their marketing purposes.
Our purposes for handling your personal information: Consistent with APP 6 of the Privacy Act 1988 (Cth), we use and disclose personal information for the primary purpose for which it was collected — as described above. Where we use personal information for a secondary purpose, we do so only where that use is permitted by APP 6: for example, sending marketing communications where you have separately consented, or complying with a legal obligation.
The Agents Wallet service creates and manages digital passes. The following information is embedded in passes and transmitted to the relevant wallet platform provider:
Changes to an agent’s headshot, professional title, and agency branding (logo and name) are pushed to all saved passes automatically while the agent’s subscription is active. An agent’s name, once set on an issued pass, does not change remotely.
4.1 Google Wallet
Zeogly Pty Ltd holds Google Wallet API credentials (including an assigned issuer ID) and operates under the Google Wallet API program. Production pass issuance to live devices will commence once production certification is confirmed. Agents Wallet issues Generic passes (digital business card type) via the Google Wallet API. The visible pass displays the agent’s name, professional title, phone number, email address, profile photograph (headshot), and agency name and logo only — no Agents Wallet or Zeogly branding appears on the pass face. Zeogly holds the API credentials and is responsible for all passes issued through the Agents Wallet platform. The subscribing agency is not a party to the Google Wallet API agreement. Pass data is transmitted to and stored on Google’s infrastructure. Google processes this data as part of providing the Google Wallet service. Google’s handling of that data is governed by Google’s Privacy Policy and the Google Wallet API Terms of Service.
Google Wallet and Android are trademarks of Google LLC. Agents Wallet is not affiliated with or endorsed by Google LLC.
Pass holder opt-out: A pass holder may stop receiving pass updates (such as changes to an agent’s profile, title, or agency branding) at any time by removing the pass from their Google Wallet. Removal triggers a notification to us via webhook and we update our pass status records to reflect the removal. Once removed, no further pass maintenance pushes — such as agent profile changes, agency branding updates, or pass-sharing QR code updates — are sent to that pass holder’s device. Zeogly does not send marketing communications to pass holders.
Pass interaction data: Pass interaction data received from Google (such as a pass holder adding or removing a pass from their device) is used solely to maintain pass status records. It does not trigger any outbound communications. Webhook data received from Google consists of pass object identifiers, event types, and related metadata — it does not include information that identifies the pass holder by name or contact details and is not linked to any personal information held by Zeogly. This data is retained for the duration of the associated agent’s active subscription and deleted within 30 days of the subscription end date.
4.2 Apple Wallet (PassKit) — Coming Soon
Agents Wallet will support Apple Wallet passes via Apple PassKit in a future release. This policy will be updated to cover Apple Wallet data handling when that feature launches.
Passes are informational only. We do not store or transmit payment card information. No financial data is held within any pass.
We use the following third-party services to operate our platforms:
We do not share personal information with third parties except as described above or as required by law. We require third-party processors to be bound by a data processing agreement or equivalent data protection terms before transferring personal information to them. We encourage you to review their privacy policies using the links provided.
We retain your personal information for as long as your account is active or as necessary to provide the relevant service. Specific retention periods:
The periods above describe our standard scheduled deletion. Where a formal deletion request is submitted under Section 7, the timelines in Section 7 govern.
Under the Privacy Act 1988 (Cth) and the Australian Privacy Principles, you have the right to:
Contacts who scan an agent’s QR code: Zeogly does not collect personal information from contacts who scan an agent’s QR code and install the pass. Pass installation is handled by Google’s own platform and governed by Google’s Privacy Policy. If you have a query about a pass issued through the Agents Wallet platform, visit zeogly.com/wallet-support or contact us at support@zeogly.com.
How to opt out of communications: Email support@zeogly.com with the subject line “Opt Out” and we will suppress your contact details from all non-essential communications within 5 business days.
Timeframes for responding to your requests: We will acknowledge access, correction, and deletion requests within 5 business days of receipt and complete them within 30 days, except where a longer period is required by applicable law.
If we are unable to correct your personal information as requested, we will notify you of our reasons. Upon your request, we will take reasonable steps to associate a statement that you consider the information to be inaccurate, out of date, incomplete, irrelevant, or misleading with the relevant record, and to make that statement available to anyone who has access to the information.
How to request deletion of your personal information:
Email support@zeogly.com with the subject line “Data Deletion Request”. Please include: (1) your full name, (2) the email address associated with your account or the communications you received, and (3) the service(s) you are requesting deletion from. We will acknowledge your request within 5 business days and complete the deletion within 30 days of the later of (a) the date of the request and (b) the subscription end date, except where retention is required by applicable law (for example, financial transaction records required for tax compliance). We will confirm in writing once deletion is complete.
We implement technical and organisational measures to protect your personal information from unauthorised access, disclosure, alteration, or misuse. These include encrypted data storage, token-based authentication, and access controls on our systems. Agents Wallet uses a two-tier QR code model for pass distribution. An agent’s QR code (displayed on their shareable profile page) is fixed — it can be scanned by any number of contacts to save the agent’s pass to their Google Wallet. Each contact who saves the pass receives their own copy of the pass containing a separate pass-sharing QR code. This pass-sharing QR code rotates after each successful use: once a pass holder shares the agent’s card with a new contact and that contact saves the pass, the original pass holder’s pass-sharing QR code is automatically invalidated and a new one is issued. This means each pass holder can forward the agent’s contact details to one new person at a time.
No method of transmission over the internet is completely secure. We cannot guarantee absolute security, but we take reasonable steps consistent with industry best practice to protect your data.
If you become aware of a security issue affecting your account or our services, please contact us immediately at support@zeogly.com.
We take reasonable steps to ensure that personal information we collect, use, and disclose is accurate, up to date, and complete. We rely on agency admins and agents to keep their profile data current via the Agents Wallet platform. Where we become aware that personal information we hold is inaccurate or out of date, we will take reasonable steps to correct it.
Notifiable Data Breaches: We comply with the Notifiable Data Breaches (NDB) scheme under Part IIIC of the Privacy Act 1988 (Cth). If we become aware of a potential data breach, we will assess within 30 days whether it constitutes an “eligible data breach” — one that is likely to result in serious harm to one or more affected individuals. If we determine that an eligible data breach has occurred, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) as soon as practicable after making that determination. Notification will include a description of the breach, the kinds of information involved, and the steps we recommend affected individuals take in response.
zeogly.com does not use analytics, advertising, or tracking cookies. Standard web server logs may record connection data for security and operational purposes.
The Agents Wallet service uses essential session cookies for authentication and service delivery only. No analytics, error monitoring, or tracking tools are used in the Agents Wallet dashboard. We do not use advertising, analytics, or tracking cookies.
Some of the third-party services we use process or store personal information outside Australia. Supabase infrastructure is located in Sydney, Australia (AWS ap-southeast-2). Account and session data does not leave Australia. Agent profile photographs and agency logos stored in Supabase Storage may be cached on Supabase’s global content delivery network for delivery performance; origin storage remains in ap-southeast-2. We rely on Supabase’s Data Processing Addendum (available at supabase.com/dpa) as the contractual safeguard under APP 8.1 for any personal information processed through Supabase’s CDN nodes outside Australia. The following providers process Zeogly-controlled personal information in the United States:
Stripe, Inc. (payment processing) — payment card data is entered directly into Stripe’s platform and is not held by or transferred to Stripe by Zeogly. Stripe processes payment data as an independent data controller; the APP 8.1 cross-border disclosure framework does not apply to Stripe’s payment processing. Stripe’s handling of payment data is governed by Stripe’s Privacy Policy.
Where cross-border transfers of Zeogly-controlled personal information occur, we satisfy our obligations under APP 8.1 by requiring each overseas recipient to handle personal information consistently with the Australian Privacy Principles through their data processing agreement or equivalent data protection terms. We do not transfer personal information overseas to any party not identified in Section 5.
Our services are designed for professional business use by licensed real estate professionals, real estate agencies, and their clients. They are not directed at individuals under the age of 18. We do not knowingly collect personal information from anyone under 18. If you believe we have collected information from a person under 18, please contact us and we will take steps to delete it promptly.
We may update this Privacy Policy from time to time. Material changes will be notified to registered users by email at least 14 days before they take effect. The current policy is always available at zeogly.com/privacy. Continued use of our services after changes take effect means the updated policy will apply to your information.
Changes required to comply with updates to the Google Wallet API Terms of Service or other third-party platform terms on which our services depend may take effect immediately. We will notify registered users of any such change as soon as reasonably practicable.
For all privacy-related queries, access requests, and complaints:
If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
This Privacy Policy is governed by the laws of the Australian Capital Territory, Australia. Any dispute arising from this Privacy Policy that is not resolved through the Office of the Australian Information Commissioner complaint process will be subject to the jurisdiction of the courts of the Australian Capital Territory.
Google Wallet and Android are trademarks of Google LLC. Apple Wallet and iPhone are trademarks of Apple Inc. Agents Wallet is not affiliated with or endorsed by Google LLC or Apple Inc.