Legal
Privacy Policy
KB Technology Pty Ltd — Last updated: May 2026
This Privacy Policy describes how KB Technology Pty Ltd (trading as DOLIUM) collects, uses, discloses, and manages personal information. We are committed to protecting the privacy of all individuals who interact with us and to complying with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs) contained in Schedule 1 of that Act.
By accessing our website or otherwise providing us with your personal information, you acknowledge that you have read and understood this Policy.
About This Policy
This Policy applies to all personal information collected by KB Technology Pty Ltd in connection with the DOLIUM product, website, marketing activities, client engagements, and partner relationships. It covers information collected online (via our website at dolium.ai), through enquiry forms, email correspondence, and through our professional services.
This Policy may be updated from time to time. The current version and its effective date are displayed at the top of this page. We encourage you to review this Policy periodically.
If you have any questions about this Policy or our privacy practices, please contact us using the details in Section 12 before providing us with personal information.
Who We Are
KB Technology Pty Ltd is an Australian company operating under the trading name DOLIUM. We develop and deliver AI-enabled knowledge management and operational intelligence solutions, with a focus on defence, national security, and government clients.
- Legal entity: KB Technology Pty Ltd
- Trading name: DOLIUM
- Location: Canberra, ACT, Australia
- Contact email: dolium@kbtechnology.com
Where this Policy refers to “we”, “us”, or “our”, it refers to KB Technology Pty Ltd. Where it refers to “you” or “your”, it refers to any individual whose personal information we hold or collect.
Information We Collect
We collect personal information only where it is reasonably necessary for our business functions and activities. The types of personal information we may collect include:
Identity and contact information
- Full name and professional title
- Organisation or agency name
- Work email address and telephone number
- Mailing or business address
Enquiry and communication data
- Messages and enquiries submitted via our website contact or partner application forms
- Records of email correspondence with our team
- Notes from meetings, briefings, or consultations
Website usage data
- IP address and approximate geographic location (country/city level)
- Browser type and version, operating system
- Pages visited, referral URLs, and time spent on pages
- Device type and screen resolution
Cookies and tracking data
- Session identifiers and persistent preference cookies
- Analytics identifiers (see Section 8 for full details)
We do not intentionally collect sensitive information (as defined under the Privacy Act) such as health information, racial or ethnic origin, religious beliefs, or biometric data, unless you voluntarily provide it in correspondence and it is reasonably necessary for us to hold it.
How We Collect Information
We collect personal information in the following ways:
- Directly from you — when you complete a contact form, partner application, or briefing request on our website; when you email or phone us; or when you engage with us at events or industry forums.
- Automatically — when you visit our website, certain technical information is collected automatically via server logs, cookies, and analytics tools (see Section 8).
- From third parties — we may receive information about you from your organisation, referral partners, or publicly available professional directories (such as LinkedIn) where relevant to establishing a professional relationship.
- Through contracted services — when you or your organisation engage us for professional services, we may collect information necessary to perform those services and comply with contractual obligations.
Where it is reasonable and practicable, we collect personal information directly from the individual concerned. We will take reasonable steps to notify you at or before the time of collection about the purposes for which we are collecting the information.
How We Use Your Information
We use personal information for the primary purpose for which it was collected, and for related secondary purposes that you would reasonably expect. Specifically, we may use your information to:
- Respond to enquiries, briefing requests, and partner applications
- Provide, operate, and improve our products and services
- Communicate with you about DOLIUM capabilities, updates, and relevant content you have requested or would reasonably expect to receive
- Process and manage contractual engagements and professional services
- Analyse website usage patterns to improve user experience and content relevance
- Meet legal, regulatory, and compliance obligations
- Protect the security and integrity of our systems and services
- Conduct internal research, planning, and business development activities
We will not use your personal information for direct marketing unless you have consented to receive such communications, or where permitted by the Spam Act 2003 (Cth) for existing business relationships. You may opt out of marketing communications at any time by contacting us or using the unsubscribe link in any email we send.
Disclosure to Third Parties
We do not sell, rent, or trade personal information to third parties for their own marketing or commercial purposes.
We may disclose personal information to third parties in the following limited circumstances:
- Service providers: trusted third-party vendors who assist us in operating our website and delivering services (such as web hosting, email platforms, and analytics providers), who are contractually required to handle information securely and only as directed by us
- Professional advisers: legal, accounting, and business advisers, under obligations of confidentiality
- Government and regulatory bodies: where required or authorised by Australian law, or where we believe disclosure is necessary to prevent a serious threat to public safety
- Business transfers: in connection with any merger, acquisition, or sale of assets of KB Technology Pty Ltd, where personal information may be transferred as part of that transaction (subject to equivalent privacy protections)
- With your consent: where you have authorised us to share your information with a specific third party
We take reasonable steps to ensure that any third-party service providers to whom we disclose personal information are bound by appropriate confidentiality and data protection obligations consistent with this Policy.
Data Storage & Security
We take the security of personal information seriously and implement reasonable technical and organisational measures to protect it from misuse, interference, loss, and unauthorised access, modification, or disclosure.
Australian hosting. Our website and primary data systems are hosted on infrastructure located in Australia. We do not transfer personal information outside of Australia without first taking steps to ensure it will receive comparable protection to that provided under the APPs, or unless you have consented to the transfer.
Specific measures we employ include:
- Encrypted data transmission via HTTPS/TLS for all website communications
- Access controls limiting personal information to authorised personnel only
- Regular review of our data handling and security practices
- Prompt assessment and notification procedures in the event of an eligible data breach under the Notifiable Data Breaches scheme
No data transmission over the internet is completely secure. While we take reasonable precautions, we cannot guarantee the absolute security of information you transmit to us electronically. You do so at your own risk.
If we become aware of a data breach that is likely to result in serious harm to any individual whose information is affected, we will notify the Office of the Australian Information Commissioner (OAIC) and affected individuals in accordance with our obligations under Part IIIC of the Privacy Act.
Cookies & Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance functionality and analyse usage. A cookie is a small text file placed on your device when you visit a website.
Types of cookies we use:
- Essential cookies: necessary for the website to function correctly (e.g., session management, security tokens). These cannot be disabled without affecting core functionality.
- Analytics cookies: used to understand how visitors interact with our website (e.g., pages visited, time on site, referral sources). This information is aggregated and does not identify individuals. We use analytics tools such as Google Analytics or equivalent services.
- Preference cookies: remember choices you make to improve your experience (e.g., language, display preferences).
You can control cookies through your browser settings. Most browsers allow you to refuse or delete cookies. However, disabling cookies may affect certain website functionality. For more information on managing cookies, visit oaic.gov.au.
Where we use third-party analytics services (such as Google Analytics), those providers may collect and process data in accordance with their own privacy policies. We configure such tools to anonymise IP addresses where possible and do not permit them to use data collected on our site for their own advertising purposes.
Third-Party Links
Our website may contain links to third-party websites, including partner organisations, government portals, and industry resources. These websites are operated independently of DOLIUM and are not covered by this Privacy Policy.
We are not responsible for the privacy practices, content, or security of any third-party sites. We encourage you to review the privacy policies of any external websites you visit before providing personal information to them.
Data Retention
We retain personal information only for as long as is reasonably necessary to fulfil the purposes for which it was collected, or as required by applicable law, contractual obligations, or legitimate business needs.
Our general retention practices are as follows:
- Enquiry and contact form data: retained for up to 3 years from the date of last contact, unless a continuing business relationship exists
- Client and partner engagement records: retained for a minimum of 7 years following the end of the engagement, in accordance with standard commercial recordkeeping requirements
- Website analytics data: retained in aggregated or anonymised form; identifiable data typically retained for no longer than 26 months
- Email correspondence: retained in accordance with our internal records management policy, typically 3–7 years depending on content and context
When personal information is no longer required, we take reasonable steps to destroy or de-identify it securely.
Your Rights
Under the Privacy Act 1988 (Cth) and the Australian Privacy Principles, you have certain rights regarding your personal information.
Right of access. You may request access to personal information we hold about you. We will respond to such requests within a reasonable time (ordinarily 30 days) and provide the information in the format requested where reasonably practicable. We may charge a reasonable fee to cover administrative costs of retrieval.
Right of correction. If you believe personal information we hold about you is inaccurate, out of date, incomplete, or misleading, you may request that we correct it. We will take reasonable steps to correct the information within 30 days of your request.
Right to complain. If you have a concern about how we have handled your personal information, we encourage you to contact us first so we can attempt to resolve the matter. If you are not satisfied with our response, you have the right to lodge a complaint with the Office of the Australian Information Commissioner (OAIC):
- Website: www.oaic.gov.au
- Phone: 1300 363 992
- Post: GPO Box 5218, Sydney NSW 2001
Anonymity and pseudonymity. Where lawful and practicable, you have the option of interacting with us anonymously or using a pseudonym. However, in many cases we will only be able to provide full services if we can identify you.
To exercise any of your rights or make a privacy-related request, please contact us using the details in Section 12. We may need to verify your identity before processing your request.
Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or the way we handle your personal information, please contact us:
Privacy Enquiries
KB Technology Pty Ltd
Trading as DOLIUM
Canberra, ACT, Australia
Email: dolium@kbtechnology.com
We aim to acknowledge all privacy enquiries within 5 business days and to provide a substantive response within 30 calendar days. If your matter is complex or requires further investigation, we will notify you of the expected timeframe.
This Privacy Policy was last reviewed and updated in May 2026. Previous versions are available on request. This Policy applies to KB Technology Pty Ltd (ABN to be confirmed upon company registration) and its trading name DOLIUM.