Privacy Policy

Drivelo Pty Ltd | ABN 29 306 632 853 | 344 City Road, Southbank VIC 3006, Australia

Version 2.0 · Effective 5 May 2026 · Contact hello@drivelo.com.au

1. Purpose

Drivelo Pty Ltd ABN 29 306 632 853 ("Drivelo", "we", "us" or "our") is committed to protecting your privacy. This Privacy Policy explains how Drivelo collects, holds, uses, discloses, stores, secures and otherwise manages personal information in accordance with the Privacy Act 1988 (Cth) ("Privacy Act"), the Australian Privacy Principles ("APPs") and the Notifiable Data Breaches scheme.

Drivelo operates nationally across all Australian states and territories. This Policy applies to all personal information collected through the Drivelo website, mobile applications, booking and payment systems, communications channels, and related services (together, the "Platform").

2. Who this Policy applies to

This Policy applies to personal information collected from:

learner drivers and prospective learner drivers ("Learners")
parents, guardians or other adults arranging lessons or supervising under-18 Learners
driving instructors and prospective driving instructors ("Instructors")
website and app visitors
support, sales and business contacts
referees, references and emergency contacts.

3. What personal information we collect

Learner information

name, date of birth, gender (where voluntarily provided)
phone number and email address
suburb, postcode, pickup, drop-off and lesson location details
learner permit, provisional or full driver licence number, class, expiry and issuing state/territory (where required for compliance)
supervising-driver or parent/guardian details where the Learner is under 18
booking history, lesson preferences, payment history
communications, support requests, ratings and reviews
device, browser, operating system, IP address, cookies, analytics and usage data
any other information you voluntarily provide.

Instructor information

name, trading name, ABN/ACN, contact details and business address
driver licence and instructor accreditation/authority details (e.g. TfNSW DI Licence, Safe Transport Victoria Driving Instructor Authority, TMR DI Licence, WA DoT instructor licence, SA DIT instructor accreditation, Tasmanian DI accreditation, Access Canberra DI accreditation, NT MVR DI authority)
Working with Children Check, Blue Card (QLD), Ochre Card (NT), Working with Vulnerable People registration (TAS/ACT) or equivalent clearance details, including expiry
insurance details (compulsory third party, comprehensive motor vehicle including business/instruction use, public liability and professional indemnity) and expiry dates
vehicle details, registration, dual-control configuration and roadworthy/inspection status
bank or payout details (held primarily by our payment provider)
police check or criminal history outcomes where lawfully required
ratings, reviews, support history and performance data
documents provided for onboarding, compliance or verification.

Other information

We may also collect information you submit through forms, surveys, waitlists, email, social media, support channels or referral programs, and from publicly available sources where lawful.

4. How we collect personal information

Where reasonably practicable, we collect personal information directly from you, including when you:

create or update an account
complete onboarding, identity verification or Booking forms
make, receive or modify a Booking
contact our support team
subscribe to updates or marketing
respond to surveys, promotions or research
use our website, app, messaging tools or call recordings (where notice is given).

We may also collect information from third parties where permitted by law, including payment providers, identity-verification services, accreditation registries, state-government licensing bodies (where permitted), insurers, social-media platforms, analytics providers, public registers, and where another user has authority to refer you.

5. Why we collect, hold, use and disclose personal information

We collect, hold, use and disclose personal information for purposes including to:

provide, operate and improve the marketplace, Booking, payment, payout and support services
create and manage accounts and connect Learners with Instructors
process payments, refunds, credits, payouts and chargebacks
verify identity, licences, accreditations, insurance, vehicle and child-safety clearances
communicate about Bookings, service updates, support, disputes, safety matters and legal notices
send marketing communications where permitted, including by email, SMS and in-app notification
personalise content, recommendations and pricing
investigate fraud, safety incidents, complaints, disputes, breaches of terms and unlawful conduct
carry out research, analytics, product development and reporting (often using de-identified data)
exercise legal rights, defend claims and respond to subpoenas, regulators or law enforcement
comply with legal, regulatory, accounting, tax and child-safety obligations.

6. Sensitive information

Some information we collect from Instructors may be sensitive information under the Privacy Act, such as criminal history check outcomes, Working with Children-type clearance details, or health information disclosed for safety reasons. We will only collect sensitive information with your consent or where collection is required or authorised by law and is reasonably necessary for our functions.

7. Disclosure of personal information

We may disclose personal information to:

Learners, Instructors and parents/guardians where needed to arrange and deliver lessons
payment processors, banks and financial service providers
technology, hosting, cloud-storage, email, SMS, communications, analytics, mapping and customer-support vendors
identity-verification, document-checking, fraud-prevention and anti-money-laundering vendors
insurers, lawyers, accountants, auditors and other professional advisers
state and federal regulators, licensing bodies, courts, tribunals and law-enforcement agencies where required or authorised by law
child-safety regulators where there are reasonable grounds for concern
buyers, lenders or successors in the event of a corporate transaction, subject to confidentiality protections.

Drivelo does not sell personal information.

8. Overseas disclosure

Some service providers we use (including cloud hosting, analytics, email/SMS, payment and customer-support tools) may store or process personal information outside Australia, including in the United States, the European Union, the United Kingdom, Canada, Singapore and Japan.

Before disclosing personal information overseas, Drivelo takes steps reasonable in the circumstances to ensure the recipient handles the information consistently with the APPs (e.g. through contractual protections), unless an APP exception applies. Once disclosed overseas, the information may also be subject to the laws of the recipient's country.

9. Direct marketing

We may send you marketing communications about Drivelo's services, promotions or related offers, by email, SMS, push notification or post, in compliance with the Spam Act 2003 (Cth) and the Do Not Call Register Act 2006 (Cth).

Every commercial electronic message will identify Drivelo as the sender and contain a functional unsubscribe option. You can opt out at any time by using the unsubscribe link, replying STOP to SMS, updating your preferences in-app, or contacting privacy@drivelo.com.au. Opt-outs will be honoured within five business days.

10. Cookies, analytics and online advertising

We use cookies, pixels, SDKs, analytics and similar technologies to operate the Platform, understand traffic and usage, personalise content, prevent fraud, improve services and support marketing (including remarketing). You can control cookies through your browser settings, but some features may not function properly if cookies are disabled. Where required by law, we will obtain your consent before using non-essential cookies or trackers.

11. Security

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification or disclosure, including through encryption in transit, access controls, role-based permissions, vendor due diligence, staff training and incident-response procedures.

No internet transmission or storage system is completely secure, and we cannot guarantee absolute security.

12. Notifiable Data Breaches

If Drivelo experiences an "eligible data breach" under Part IIIC of the Privacy Act — that is, unauthorised access, disclosure or loss of personal information that is likely to result in serious harm to one or more individuals and that we cannot prevent — we will:

promptly assess the breach (and complete our assessment within 30 days where practicable)
take reasonable steps to contain and remediate
notify the Office of the Australian Information Commissioner (OAIC)
notify affected individuals of the breach and recommended steps, where required.

13. Access and correction

You may request access to, or correction of, the personal information we hold about you by contacting our Privacy Officer at privacy@drivelo.com.au. We may require identity verification before processing a request and may charge a reasonable cost-recovery fee for access (we do not charge to lodge a request).

We will respond within a reasonable time, ordinarily within 30 days. We may refuse access or correction in limited circumstances permitted by the APPs and will provide written reasons.

14. Retention and deletion

We retain personal information only for as long as reasonably necessary to fulfil the purposes for which it was collected, to comply with legal, tax, accounting, child-safety and regulatory obligations, to resolve disputes, and to enforce our agreements. When personal information is no longer required, we take reasonable steps to destroy or de-identify it, unless retention is required or authorised by law.

15. Children's privacy

Drivelo's services are not intended for use by children under 16 without parent or guardian involvement. Where we knowingly collect personal information from a person under 16, we will obtain appropriate parent or guardian consent unless an exception applies.

16. Complaints

If you believe we have breached the Privacy Act or the APPs, please contact our Privacy Officer at privacy@drivelo.com.au. We will acknowledge your complaint within 7 days and aim to provide a substantive response within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au, by phone on 1300 363 992, or in writing to GPO Box 5288 Sydney NSW 2001.

17. Changes to this Policy

We may update this Policy from time to time. The current version will be published on our website with the effective date. Material changes will be notified by email or in-app notice.

18. Contact details

Privacy enquiries, access requests, correction requests and complaints can be sent to:

Privacy Officer

Drivelo Pty Ltd

Email: privacy@drivelo.com.au

Address: 344 City Road, Southbank VIC 3006, Australia

See all Drivelo policies

Questions about any policy? Email hello@drivelo.com.au.

For urgent safety risks, call 000 (Triple Zero) first, then notify Drivelo.