Privacy Policy
Idionic Pty Ltd (ABN 14 699 014 045) trading as Premya
Registered office: 79 St Georges Terrace, Perth WA 6000 · hello@idionic.com
Version 1.0 · Effective 22 June 2026
1. About this policy
1.1 This Privacy Policy explains how Idionic Pty Ltd (ABN 14 699 014 045) (Idionic, we, us, our), trading as Premya, handles personal information.
1.2 We are committed to protecting personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
1.3 This policy covers: (a) personal information we collect through our website and business dealings; and (b) how the Premya appliance handles information, which is fundamental to our "sovereign AI, on your premises" model.
2. The Premya sovereignty model — your data stays on your premises
2.1 Premya is designed so that your data stays on the appliance on your premises. This is the core of our product and the core of our privacy commitment.
2.2 Customer Data stays local. All data that you and your users put into, store on, or generate using a Premya appliance — including prompts, conversation text, documents, document content, file names, retrieved text, and the names and email addresses of your users — remains on the appliance, on your premises. In ordinary operation, this Customer Data is not transmitted to Idionic or to any third party.
2.3 We do not access your Customer Data. When we provide remote management and support, we do not access your Customer Data. Where support genuinely requires access to a part of the system that may contain Customer Data, we will seek your prior authorisation and act on your instructions.
2.4 Where the appliance is deployed for an organisation (for example, a law firm or business), that organisation is the entity responsible for the personal information held and processed on the appliance. Idionic does not control or access that information in ordinary operation. The organisation should refer to its own privacy policy for how it handles that information.
3. The operational "heartbeat" — metadata and counts only
3.1 To keep appliances healthy, licensed and supported, each Premya appliance sends Idionic a periodic operational "heartbeat" over a secured, mutually authenticated channel.
3.2 The heartbeat contains operational metadata and aggregate counts only. Specifically, it may include:
- the appliance identifier and licence key;
- the software version, and the names of the inference engine and AI models in use;
- the service tier;
- health status indicators (for example, whether the database, engine and vector store are operating);
- uptime; and
- aggregate counts — such as the number of users, documents, chunks, messages, conversations, and active users.
3.3 The heartbeat is designed never to contain any Customer Data. It does not include:
- any prompt, query or conversation text;
- any document content, file names or retrieved text; or
- any personal information of your users, such as their names or email addresses.
3.4 We use heartbeat data solely to monitor appliance health, manage licensing, and provide the managed services. We do not use it to profile individuals, and it does not allow us to read what your users do.
4. Personal information we collect directly
4.1 In running our business and website, we may collect limited personal information directly, such as:
(a) contact and business details — name, business name, role, email address, phone number — when you enquire, request a demo, become a customer, or correspond with us;
(b) customer-administration details — billing contact, direct-debit and payment details (handled by our payment provider), and the contact details of your nominated administrators;
(c) website information — see clause 5.
4.2 We collect this information directly from you, or from people authorised to act for you. If you provide us with another person's personal information, you must ensure you are entitled to do so.
5. Website information
5.1 When you visit premya.ai, we (and our hosting and analytics providers) may collect standard technical information such as IP address, browser type, pages visited and access times, and we may use cookies or similar technologies for the functioning, security and basic analytics of the site.
5.2 Gated areas of the site are protected by access codes. We record access to those areas (for example, that a valid code was used) for security purposes.
5.3 You can usually disable cookies in your browser, though some parts of the site may not function as intended.
6. How we use personal information
6.1 We use the personal information we collect to:
(a) respond to enquiries and provide demonstrations;
(b) supply, install, support, licence and bill the Premya appliance and services;
(c) manage our relationship with you and communicate with you;
(d) operate, secure and improve our website and services; and
(e) comply with our legal obligations.
6.2 We may send you service-related communications. We will only send marketing communications where permitted, and you can opt out at any time.
7. Disclosure of personal information
7.1 We may disclose personal information to:
(a) service providers who help us run our business (for example, website hosting, payment processing, email and accounting), under appropriate confidentiality obligations;
(b) our professional advisers (legal, accounting, insurance);
(c) a purchaser in connection with a sale of our business; and
(d) others where required or authorised by law.
7.2 We do not sell personal information.
7.3 Our website hosting and some service providers may store data outside Australia. Where personal information is disclosed overseas, we take reasonable steps to ensure it is handled consistently with the APPs. Your Customer Data on the appliance does not leave your premises in ordinary operation (clause 2).
8. Security and retention
8.1 We take reasonable steps to protect personal information we hold from misuse, interference, loss, and unauthorised access, modification or disclosure. The heartbeat channel is secured and mutually authenticated.
8.2 We make no certification or compliance claim (for example, ISO or SOC 2) unless and until expressly stated in writing.
8.3 We retain personal information only for as long as needed for the purposes above or as required by law, and then take reasonable steps to destroy or de-identify it.
9. Access, correction and complaints
9.1 You may request access to, or correction of, the personal information we hold about you by contacting us at hello@idionic.com. We will respond within a reasonable time and in accordance with the Privacy Act.
9.2 If you have a privacy complaint, please contact us at hello@idionic.com. We will investigate and respond. If you are not satisfied, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
10. Changes
10.1 We may update this policy from time to time by posting the updated version on our website. The current version applies.
11. Contact
Idionic Pty Ltd — Privacy
79 St Georges Terrace, Perth WA 6000
hello@idionic.com
Premya — an Idionic company. Idionic Pty Ltd ABN 14 699 014 045, 79 St Georges Terrace, Perth WA 6000.