Skip to content

Privacy Policy

Last updated: September 8th, 2025

The Pillars Pty Ltd (“The Pillars”, “we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share your personal information when you access our website (thepillars.io), participate in our programs, or engage with our services.

By using our services, you consent to the practices described in this policy.

1. Who We Are

The Pillars is an Australian company delivering personal and organisational performance programs. We provide services to individuals and client organisations, and we take data privacy and protection seriously across all jurisdictions in which we operate, including Australia, the United Kingdom, the European Union, and the United States.

2. What Information We Collect

We may collect the following types of information:

Personal information

  • Name
  • Email address
  • Contact details
  • Organisation name (if applicable)
  • Program participation details
  • Responses to assessments or surveys, and where applicable, vitality data
  • Feedback or communications

Usage data

  • IP address
  • Browser type
  • Device type
  • Referring website
  • Interaction logs (e.g. page visits, time on site)

Sensitive data

We may collect limited sensitive information (e.g., information about wellbeing, vitality or self-assessments) for the purpose of providing personalised insights or analysis. This data is always treated with strict confidentiality and security.

3. How We Use Your Information

We use your information to:

  • Deliver and personalise our programs and services
  • Analyse performance and outcomes of our interventions
  • Provide customer support
  • Send relevant updates, reports, or communication
  • Improve our services through aggregated data analysis
  • Comply with legal obligations

We do not use your information for direct marketing unless you opt in.

4. How We Store Your Data

All data is securely stored using encrypted cloud-based infrastructure hosted in regions compliant with applicable data protection laws.

We implement strict access controls, data encryption, and role-based access for internal users, stored on the Microsoft Cloud environment. Data is regularly backed up and monitored for security events.

5. Data Sharing and Disclosure

We do not share or disclose individual user data with client organisations, third parties, or any unauthorised recipients.

We only share data in the following ways:

Individual Reporting

We may share individual data with the respective participant and their guide/coach for the purposes of:

  • Measuring program impact
  • Monitoring trends
  • Reporting outcomes
  • Providing a basis for individual decision making and guiding/coaching sessions

Individuals can request to remove identifiable markers such as names or email addresses from our database by emailing us at privacy@thepillars.io.

Aggregate Group Reporting (Anonymised)

We may share anonymised, aggregated group data with client organisations for the purposes of:

  • Measuring program impact
  • Monitoring trends
  • Reporting outcomes
  • Providing a basis for organisational decision making

This data cannot be used to identify individuals.

Identifiable Group-Level Reporting

With permission, we may use aggregate group-level data (for example identifiable through the name of the organisation, but not the group or participant) may be shared only with the explicit agreement of the client organisation and only where lawful and appropriate, for example in client acquisition to case studies.

Third-Party Service Providers

We may use trusted service providers (e.g., for analytics, cloud storage, assessment tools) under strict data processing agreements. These providers must comply with this Privacy Policy and relevant data protection laws.

6. Your Rights

Depending on your location, you may have the following rights under privacy law:

  • Access – Request a copy of your personal data
  • Correction – Request correction of inaccurate data
  • Deletion – Request deletion of your data (subject to legal retention requirements)
  • Objection/Restriction – Object to processing or request limits on how data is used
  • Portability – Request a portable version of your data
  • Withdraw Consent – Withdraw consent where processing is based on consent

You can exercise these rights by contacting us (see Section 10 below).

7. Data Retention

We retain your data only for as long as necessary to fulfil the purposes outlined in this policy or to comply with legal, contractual, or audit obligations. We may anonymise data for longer-term research or analytics purposes.

8. Cookies and Analytics

We use cookies and analytics tools to understand how our site and services are used. These may collect usage data but do not identify individual users unless combined with account information (which we do not do without consent).

You can control cookie settings via your browser or device settings.

9. International Data Transfers

We may transfer your data to countries outside of your jurisdiction (e.g., between the EU, Australia, UK, and US). In such cases, we ensure appropriate safeguards are in place (e.g., Standard Contractual Clauses under the GDPR) to protect your data.

10. Contact Us

If you have any questions about this Privacy Policy, or wish to exercise your data rights, please contact:

The Pillars Pty Ltd

Email: privacy@thepillars.io

Attn: Data Protection Officer

11. Changes to This Policy

We may update this Privacy Policy from time to time. If material changes are made, we will notify users via the website or email (where appropriate). Continued use of our services constitutes your acceptance of the revised policy.