Privacy policy
WritePath Education Last updated: 24 June 2026 · Version 2.0
1. About this Policy and who we are
This Privacy Policy explains how GISE Australia Pty Ltd (ABN 70 664 663 049), trading as WritePath Education ("WritePath", "we", "us", "our"), collects, holds, uses, discloses and protects personal information in connection with our websites at writepatheducation.com (and related subdomains), our online learning programs (including Daily Success and Trio Journals), and all related services (together, the "Service").
WritePath is a small business operator and, on the basis of its size and turnover, may not be an "APP entity" bound by the Privacy Act 1988 (Cth). Even so, we value your privacy and are committed to handling personal information responsibly, fairly and transparently. We use the Australian Privacy Principles (APPs) and good industry practice as a guide to how we handle personal information, and this Policy describes our actual practices.
This Policy is provided as notice of how we handle personal information. Where your consent is required for a particular use or disclosure, we will seek that consent separately (for example, at the point of collection).
In this Policy, "personal information" means information or an opinion about an identified individual, or an individual who is reasonably identifiable.
2. Important — children, account holders and consent
The Service is designed for students from Year 5 to Year 12, but it is purchased, set up and managed by an adult parent or guardian (the "Account Holder"). Children do not create accounts, enter payment details, or transact with us directly.
When you create an account, subscribe, or register a child, you confirm that:
- you are at least 18 years old and the parent or legal guardian of each child you register, or you are otherwise authorised to provide that child's personal information and to manage their use of the Service;
- you are responsible for supervising your child's use of the Service and for the accuracy of the information you provide; and
- you will obtain any further consents that may be required from anyone whose personal information you provide to us.
We collect a child's personal information to provide the Service the Account Holder has requested, on the basis of the Account Holder's authority to manage the account. We recognise that older students may have their own privacy interests and capacity, and we will have regard to a student's interests and capacity where appropriate or required. A parent or guardian may access, correct or request deletion of their child's personal information as described in this Policy.
If you believe a child has provided us with personal information without the appropriate parental authority, please contact us (section 20) and we will take reasonable steps to address it.
3. The personal information we collect
We collect only the personal information reasonably necessary to provide and operate the Service. The information we collect includes:
(a) Account Holder (parent/guardian) information
- name and contact details (including email address);
- account login and authentication information;
- billing and subscription information, including plan, billing history, and partial payment-method details (e.g. card type and last four digits). We do not collect or store full payment card numbers — payments are processed by our third-party payment and subscription providers (see section 8);
- communications you send us (e.g. support enquiries) and your marketing preferences.
(b) Student (child) information
- the child's first name and the email address used for sign-in and for feedback delivery;
- the child's year level and program enrolment;
- the child's submissions and work product — including written responses, quiz answers, and other work submitted through the Service;
- assessment outputs — feedback, scores, progress and learning-activity data;
- sign-in and usage records relating to the child's account.
(c) Technical and usage information (collected automatically)
- device, browser and operating-system information; IP address; approximate location derived from IP; pages viewed, links clicked, and dates/times of access;
- information collected through cookies and similar technologies (see section 7);
- analytics and performance data about how the Service is used.
Sensitive information
We do not ask for "sensitive information" (as defined in the Privacy Act — such as health, mental-health, religious, racial or similar information). Some learning tasks and, in particular, journal-style activities (such as Trio Journals) involve students writing freely, and a student may incidentally include sensitive or personal details in their writing. Where sensitive information is provided incidentally, we will handle it only as reasonably necessary to provide and assess the work, will not use it for any unrelated purpose, and will de-identify or delete it where appropriate. Please avoid including unnecessary sensitive information in submissions; if you have concerns about content a student has submitted, contact us (section 20).
4. How we collect personal information
We collect personal information:
- directly from you — when you create an account, subscribe, register a child, contact us, respond to communications, or otherwise use the Service;
- from your child's use of the Service — when a registered child signs in and submits work;
- automatically — through cookies, analytics and server logs when you interact with the Service;
- from third parties — including our payment and subscription providers (transaction status and partial payment details), and, where you choose to sign in using a social or identity provider (such as Google), the limited information that provider shares with us (typically your email address).
Where it is reasonable and practicable, we collect personal information directly from you. Where we collect a child's information, we collect it from the Account Holder and from the child's use of the Service under the Account Holder's supervision.
5. Why we collect, hold, use and disclose personal information
We collect, hold, use and disclose personal information for the following purposes:
- to provide, operate, maintain and deliver the Service, including delivering learning content and tasks, assessing submissions, and delivering feedback to both the student and the Account Holder at the same time;
- to set up and manage accounts, registrations and child profiles;
- to process subscriptions, billing, renewals, cancellations and refunds, and to issue tax invoices;
- to authenticate users and secure the Service;
- to communicate with you, including service, transactional and administrative messages;
- to provide customer support and respond to your enquiries, requests and complaints;
- to monitor, analyse, maintain, improve and develop the Service, our content and our programs, including through the use of de-identified and aggregated information;
- to personalise and improve learning outcomes and feedback;
- with your consent or where otherwise permitted, to send you marketing about our programs and offers (see section 9);
- to protect the safety, rights and property of WritePath, our users and others, and to detect, prevent and address fraud, misuse, security issues and technical problems;
- to comply with our legal obligations, and to establish, exercise or defend legal claims; and
- for any other purpose disclosed to you at the time of collection, or to which you consent.
We may use de-identified and aggregated information (which does not identify any individual) for any purpose, including analytics, research, and improving and developing the Service.
6. Use of artificial intelligence
WritePath uses artificial intelligence as part of operating the Service. Specifically:
- AI tools assist in producing learning content within our human-designed curriculum and editorial frameworks; and
- student submissions and responses are processed by third-party AI service providers (currently OpenAI) to assess the work and generate personalised feedback.
In connection with that processing:
- Where it occurs. This processing may take place on the AI provider's systems, which are located outside Australia (including in the United States). See section 8 (overseas disclosure).
- Training. We do not authorise these providers to use student submissions to train their AI models, or for any purpose other than performing the assessment service for us.
- Human design and oversight. The curriculum, learning objectives and feedback frameworks are human-designed. Students always produce their own work; the AI assesses what the student actually wrote. If you have a question or concern about feedback your child has received, you can contact us and a person will review it.
We are conscious of developing Australian guidance on automated decision-making and AI transparency, and we will update this section as our practices and the law evolve.
7. Cookies, analytics and tracking
We and our service providers use cookies and similar technologies to operate the Service, remember your preferences, keep you signed in, measure and analyse usage, and improve the Service. Some cookies are essential for the Service to function; others are for analytics and performance.
You can control cookies through your browser settings; however, disabling some cookies may affect how the Service works. We may use analytics services (such as Google Analytics) that collect usage information; those services handle information in accordance with their own terms and privacy policies.
8. Who we disclose personal information to
We do not sell your or your child's personal information.
We disclose personal information only as reasonably necessary for the purposes in section 5, including to:
- Service providers and processors who help us run the Service, such as: website and platform hosting and customer accounts (e.g. Shopify); subscription and payment processing (e.g. Simplee and the underlying payment processors — who handle your payment-card data under their own security standards); cloud, email and document infrastructure (e.g. Google Workspace and related Google services); identity and sign-in providers you choose to use (e.g. Google); AI service providers (see section 6); analytics providers; and other suppliers who assist us to operate, secure and improve the Service. These providers are authorised to use personal information only to perform services for us;
- professional advisers (such as lawyers, accountants and auditors) where reasonably required;
- regulators, law-enforcement and government bodies, where we are required or authorised by law, or where we reasonably consider disclosure necessary to comply with the law, enforce our terms, or protect the safety, rights or property of any person;
- a successor or acquirer in connection with a sale, merger, restructure, financing or other business transaction (including due diligence), subject to appropriate confidentiality protections; and
- any other person to whom you consent, or as otherwise permitted by law.
Overseas disclosure
Some of our service providers, and their systems and personnel, are located outside Australia — including in the United States (where, for example, our hosting, email and AI providers operate), and potentially other countries. This means your and your child's personal information may be stored on, or accessed from, servers located overseas.
We take reasonable steps to engage reputable providers and to put appropriate protections (such as contractual terms) in place with them. By using the Service, you acknowledge that your information may be stored or accessed overseas as described in this Policy. The data-protection laws of other countries may differ from those in Australia.
9. Direct marketing
We may use your contact details (as the Account Holder) to send you marketing communications about our programs, features and offers, where permitted by law. We do not direct marketing to children. Our marketing emails identify us as the sender and include a functional unsubscribe option. You can opt out at any time using that link or by contacting us (section 20), and we will process your request promptly. Opting out of marketing does not stop service, transactional or administrative messages necessary to provide the Service.
10. How we hold and secure personal information
We hold personal information in electronic form within our systems and those of our service providers. We take reasonable steps to protect personal information from misuse, interference and loss, and from unauthorised access, modification or disclosure — including access controls, authentication, and use of reputable infrastructure providers.
However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security. You are responsible for keeping your account credentials confidential and for activity that occurs under your account. (Our liability is addressed in our Terms of Service — see section 18.)
11. How long we keep personal information
We keep personal information only for as long as reasonably necessary for the purposes described in this Policy, including to provide the Service, maintain learning records, and meet our legal, accounting, tax and record-keeping obligations, and to establish, exercise or defend legal claims.
When personal information is no longer required for any lawful purpose, we will take reasonable steps to destroy it or ensure it is de-identified, except where we are required or permitted by law to retain it. We may retain de-identified and aggregated information indefinitely.
12. Accessing and correcting your information
You may request access to, or correction of, the personal information we hold about you (or about a child you have registered). To make a request, contact us using the details in section 20. We will respond within a reasonable time.
We will take reasonable steps to verify your identity (and your authority in relation to a child) before acting on a request. In some cases we may decline access or correction where appropriate (for example, where it would unreasonably affect another person's privacy, or where a request is frivolous or vexatious); if we do, we will give you reasons where it is reasonable to do so. We do not charge to make a request; we may charge a reasonable cost for giving access to information.
13. Managing your and your child's information
As the Account Holder, you can manage much of your information through your account (for example, updating the feedback email, registering or managing learners, and changing or cancelling your subscription). For changes we cannot action through your account — such as changing the account or student sign-in email, or requesting a copy or deletion of personal information — please contact us (section 20) and we will process your request in accordance with this Policy and applicable law. Deleting an account or child profile may end access to the Service and associated records, subject to our retention practices (section 11).
14. Data breaches
While we are not bound by the Notifiable Data Breaches scheme, we take data security seriously. If a data breach occurs that we consider is likely to cause serious harm to affected individuals, we will take reasonable steps to contain and address it and, where we consider it appropriate, notify affected individuals and take other reasonable remedial action.
15. Third-party links and services
The Service may contain links to, or integrate with, third-party websites, products and services that we do not control (including identity providers and payment processors). This Policy does not apply to those third parties. We are not responsible for their content, practices or privacy handling, and we encourage you to review their terms and privacy policies. Your dealings with third parties are at your own risk.
16. Users outside Australia
The Service is intended for users in Australia. If you access the Service from outside Australia, you do so on your own initiative and are responsible for compliance with local laws. By using the Service, you acknowledge that your information will be collected, processed and stored as described in this Policy, which is governed by Australian law.
17. Changes to this Policy
We may update this Policy from time to time to reflect changes to our practices, the Service, or the law. The current version is always available on our website and is effective from the date shown. Where we make material changes, we will take reasonable steps to bring them to your attention. Your continued use of the Service after an updated Policy is posted means you are on notice of the updated Policy. We encourage you to review this Policy periodically.
18. Liability
Our liability in connection with the Service — including in relation to data security and the matters covered by this Policy — is dealt with in our Terms of Service. Nothing in this Policy or our Terms of Service excludes, restricts or modifies any consumer guarantee, right or remedy you have under the Australian Consumer Law or any other law that cannot lawfully be excluded.
19. Governing law
This Policy is governed by the laws of the Australian Capital Territory, Australia, and you submit to the non-exclusive jurisdiction of the courts of that place and the Commonwealth of Australia.
20. How to contact us, and complaints
If you have a question, request, or complaint about how we handle personal information, please contact us:
WritePath Education (GISE Australia Pty Ltd) Email: hello@writepatheducation.com
We take privacy concerns seriously. Please give us enough detail to investigate. We will acknowledge your message and aim to respond within a reasonable time. General information about privacy in Australia is available from the Office of the Australian Information Commissioner (oaic.gov.au).
This Privacy Policy forms part of, and should be read together with, our Terms of Service.