This Privacy Policy outlines the rigorous framework under which Hermia ("the Platform", "we", "us", or "our") processes operational data payloads. This governance structure is engineered to maintain absolute compliance with the Privacy Act 1988 (Cth) (including the Australian Privacy Principles), the UAE Federal Decree-Law No. 45 of 2021 on Personal Data Protection (PDPL), and all corresponding local statutory obligations governing transactional data routing within real estate sectors.
The Client (the subscribing real estate agency, firm, or licensed corporate user) acts strictly as the Data Controller. The Client maintains absolute ownership, statutory liability, and directional authority over the methods of gathering, storing, and utilizing all buyer, tenant, or general prospect metrics.
Hermia functions solely as a Data Processor, executing systemic data ingestion, triage parsing, categorization, and pipeline automation sequences entirely based on the direct technological settings and infrastructure mapping commands established by the Client.
Hermia does not source, harvest, discover, or generate leads. The Platform is a Tier 0 triage data layer that solely manipulates existing information packets directly supplied by the Client via secure software webhooks. Hermia never gathers raw personal information independently from consumers or public domains. The Client bears sole statutory responsibility for establishing a valid lawful basis and acquiring explicit opt-in consent from individuals before routing data payloads through the Platform's operational pipelines.
To eliminate systemic structural exposure, Hermia operates an insulated, credential-free database interface. Integration channels linking to Customer Relationship Management (CRM) tools or mail distribution infrastructure utilize tokenized OAuth 2.0 communication pathways and isolated API parameters. At no phase of structural data parsing does Hermia store, log, cache, or maintain readable access to the raw cleartext database passwords or baseline master credentials belonging to the Client or its personnel.
Information passing through the automated processing arrays is managed across three strict technical classes:
All data transformation routines execute strictly within highly secure, volatile cloud memory units. Data attributes are transiently retained only for the fleeting duration required to filter, parse, and securely transmit the clean data structure directly into the Client's destination CRM software environment.
To secure regional operations across Australia and the UAE, all international pipeline components are encrypted utilizing rigid end-to-end 256-bit protocols. All network routing, traffic management, and perimeter firewalls are managed through specialized corporate data protection networks that strictly meet SOC2 compliance standards.
Because Hermia does not maintain a permanent, centralized database of consumers or prospects, any individual seeking to exercise data access, rectification, or structural erasure rights under the Australian Privacy Principles or UAE PDPL must submit their inquiry directly to the respective real estate agency acting as the Data Controller.
Upon receiving a certified instructional command from the Client, Hermia will instantly process secondary clearing routines to purge any matching operational execution records within volatile server storage arrays inside 30 days.