Privacy Policy – Global Thinking AI
Last Updated: January 2026
At Global Thinking AI, your privacy is central to our mission. We are committed to protecting personal information and complying with the Privacy Act 1988 (Australia), the Australian Privacy Principles (APPs), and the Privacy Act 2020 (New Zealand), as well as the GDPR and CCPA where applicable.
1. Overview & Our Role
Global Thinking AI provides a white-label software solution (the “GlobalThinkingApp”) and custom AI automation services.
- As a Data Controller: We are responsible for the personal information of our direct clients and website visitors.
- As a Data Processor: When our clients use our platform to manage their customers’ data, we act as a service provider (Processor). In these cases, the privacy policy of our client applies.
- In accordance with NZ IPP 3A, where we receive personal information indirectly (via our clients), we rely on our clients to ensure notice has been provided, or we take reasonable steps to ensure the individual is aware of our processing role.
2. Information We Collect
We collect information through your direct interactions with us and through automated means:
- Contact & Account Data: Name, email, phone number, company details, and credentials.
- Business & Consultation Data: Information shared during Discovery Calls or consultations.
- Payment Data: Processed securely through third-party gateways, including Stripe, PayPal, and Wise, or via direct invoicing information.
- Technical Data: IP addresses, browser types, and usage patterns collected via cookies.
3. AI & Automation Data Processing
To provide our high-performance services, we utilise a stack of advanced AI and automation tools.
- AI Models: We use platforms such as Anthropic (Claude), Google (Gemini), and OpenAI (ChatGPT). We prioritise using API-based connections, which ensure that your data is not used to train their generalised public models.
- Workflow Automation: Tools like Make.com and n8n are used to route data between applications.
- We use AI to assist in business workflows. Where AI is used to make or significantly influence decisions regarding individuals, we ensure human oversight is available and provide transparency upon request regarding the logic used.
4. Disclosure & Third-Party Sub-Processors
We disclose data only to essential sub-processors required to deliver our service.
- Core Infrastructure: Our platform is powered by HighLevel, Inc., which maintains global security standards.
- Dynamic Sub-Processor Disclosure: Global Thinking AI utilises a Core AI Stack. A current list of our core sub-processors (including infrastructure, payment, and AI partners) can be found on our Core Sub-Processor List Page.
5. International Data Transfers
Global Thinking AI is based in Australia/New Zealand, but our infrastructure providers are primarily based in the United States. By using our services, you acknowledge that your personal information may be transferred to and stored in the United States. We ensure these providers maintain rigorous security standards (SOC2 or Data Privacy Framework).
6. Storage & Security
We implement “Privacy by Design.” We use encryption (SSL), secure API headers, and restricted access protocols. No method of transmission over the internet is 100% secure.
7. Your Rights & Choices
Under Australian and New Zealand privacy laws, you have the right to:
- Access & Correction: Request a copy of your data or update inaccuracies.
- Opt-Out: Unsubscribe from marketing communications.
- AI Transparency: Request information about how AI is being used in your workflows.
- Deletion: Request that we erase your personal data (subject to legal retention requirements).
8. Retention of Information & Account Termination
We retain personal information only for as long as necessary to provide our services.
- Upon Termination: In accordance with our Terms & Conditions, clients may export their contact and lead data. Once an account is deactivated, Global Thinking AI will retain data for a limited period to comply with legal obligations before it is securely deleted.
9. Changes to This Policy
We may update this policy to reflect changes in our AI tech stack. Any changes will be posted on this page with the revised “Last Updated” date.
10. Contact Us
For all privacy inquiries or to exercise your rights, please contact our Privacy Officer at the email address below. We aim to respond to all requests within 30 days.