M
Monitrax
Version v1.0-2026-05-24·Effective from 2026-05-24

Security Statement

Effective from: 24 May 2026

This Security Statement summarises Monitrax's security approach.

It is intended to provide a high-level overview. It does not disclose sensitive security architecture and does not guarantee that Monitrax is immune from security incidents.

1. Security approach

Monitrax takes a risk-based approach to security.

We use technical, organisational, and administrative controls designed to protect personal information, financial information, and CDR data where applicable.

Security controls may vary depending on the system, feature, provider, environment, and stage of product rollout.

2. Account security

Monitrax may use controls such as:

  • secure authentication providers;
  • password protection through authentication infrastructure;
  • multi-factor authentication where available;
  • session management;
  • login monitoring;
  • suspicious activity detection;
  • account recovery controls.

You are responsible for keeping your login credentials secure and notifying us promptly if you suspect unauthorised access.

3. Data protection

Monitrax may use controls such as:

  • encryption in transit;
  • encryption at rest;
  • access controls;
  • restricted administrative access;
  • audit logging;
  • data minimisation;
  • backup and recovery controls;
  • secure cloud infrastructure;
  • deletion and retention controls.

Where you choose to provide a TFN, additional safeguards such as encryption at rest and restricted access apply.

4. Cloud and third-party providers

Monitrax uses third-party providers for hosting, authentication, payments, email, AI processing, data connections, monitoring, and other operational functions.

We take reasonable steps to select providers with appropriate security and privacy practices.

Third-party providers may have their own infrastructure, security controls, terms, and limitations.

5. Administrative access

Administrative access is restricted to authorised personnel or contractors who require access for legitimate operational, support, security, legal, or compliance reasons.

Administrative actions may be logged and reviewed.

6. Monitoring and incident response

Monitrax may use monitoring, logging, alerting, and investigation processes to detect and respond to security issues.

If we suspect an eligible data breach under the Privacy Act, we will assess the incident and notify affected individuals and the Office of the Australian Information Commissioner where required.

7. User responsibilities

You can help keep your account secure by:

  • using a strong, unique password;
  • enabling multi-factor authentication where available;
  • keeping your email account secure;
  • not sharing login credentials;
  • signing out on shared devices;
  • checking account activity;
  • reporting suspicious activity promptly.

8. Security limitations

No system is completely secure.

Monitrax does not guarantee that unauthorised access, data loss, cyberattack, interruption, or security incident will never occur.

This statement should not be treated as a warranty or guarantee.

Contact

ReNew Holding Company Pty Ltd ACN: 675 267 311 Email: admin@monitrax.com.au Postal address: 10 Fairview St, Guildford NSW 2161, Australia

Version: v1.0-2026-05-24 Effective from: 24 May 2026