Privacy policy

Last updated: 3rd June, 2026

Rally Group respects your privacy and is committed to handling personal information with care, transparency and integrity.

This Privacy Policy explains how we collect, use, store and disclose personal information when you visit our website, contact us, subscribe to our updates, attend one of our events, or work with us as a client, supplier or collaborator.

For the purposes of this policy, “Rally”, “we”, “us” and “our” refers to Rally Group [insert legal entity and ABN if applicable].

Personal information we collect

We may collect personal information that you provide to us directly, including:

  • Your name

  • Your role, organisation or business name

  • Your email address and phone number

  • Information you submit through website forms, email, event registrations or enquiry forms

  • Information provided during meetings, workshops, interviews or client engagements

  • Billing, payment or administrative information

  • Any other information you choose to share with us

We may also collect limited technical information when you use our website, such as your IP address, browser type, device information, pages visited and how you interact with the website.

Where we collect sensitive information, such as information about workplace culture, organisational matters, employee experiences or stakeholder views, we will only do so where it is reasonably necessary for our work and where we have appropriate consent or another lawful basis to collect it.

How we collect personal information

We collect personal information when you:

  • Contact us by email, phone, website form or social media

  • Subscribe to a newsletter or mailing list

  • Register for an event, briefing, workshop or webinar

  • Engage Rally to provide strategy, advisory, facilitation, brand, leadership or organisational alignment services

  • Participate in interviews, surveys, workshops or stakeholder engagement processes

  • Provide information as part of a proposal, contract, invoice or supplier relationship

  • Interact with our website or digital platforms

We may also collect personal information from third parties where it is reasonable to do so, such as from publicly available sources, referrals, client representatives, event partners or professional networks.

Why we collect and use personal information

We collect and use personal information to:

  • Respond to enquiries

  • Provide our services

  • Manage client relationships and projects

  • Prepare proposals, scopes of work and contracts

  • Deliver workshops, interviews, research, strategy sessions and advisory work

  • Communicate with clients, stakeholders, suppliers and collaborators

  • Send updates, insights, event invitations or marketing communications

  • Improve our website, services and client experience

  • Manage billing, administration, compliance and record-keeping

  • Meet our legal, regulatory and professional obligations

We do not sell personal information.

Marketing communications

We may use your contact details to send you updates, insights, event invitations or other communications that may be relevant to you.

You can unsubscribe from marketing emails at any time by using the unsubscribe link in the email or by contacting us directly.

Cookies and website analytics

Our website may use cookies and similar technologies to improve functionality, understand website traffic and measure engagement.

Cookies are small files stored on your device. You can adjust your browser settings to refuse cookies or alert you when cookies are being used. Some parts of the website may not function properly if cookies are disabled.

We may use analytics tools to understand how visitors interact with our website. These tools may collect information such as pages visited, time spent on the site, device type and general location data.

Disclosure of personal information

We may disclose personal information where reasonably necessary to:

  • Our employees, contractors and professional advisers

  • Technology, hosting, CRM, email marketing, analytics, payment or administrative service providers

  • Event partners, venues or collaborators where required for event delivery

  • Clients or project stakeholders where relevant to a specific engagement

  • Regulators, courts, law enforcement bodies or government agencies where required or authorised by law

  • Any other third party with your consent

Where we work with contractors, suppliers or technology providers, we take reasonable steps to ensure personal information is handled appropriately.

Overseas disclosure

Some of the technology platforms or service providers we use may store or process information outside Australia.

Where personal information is disclosed overseas, we take reasonable steps to ensure it is handled in a way that is consistent with Australian privacy requirements. The OAIC guidance notes that APP entities are generally expected to take reasonable steps before disclosing personal information to an overseas recipient. (OAIC)

Security of personal information

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification or disclosure. This may include secure digital storage, password protection, access controls, confidentiality obligations and appropriate internal processes.

No method of online transmission or storage is completely secure. However, we take privacy and information handling seriously and regularly review how information is managed.

The OAIC’s guidance on APP 11 requires entities covered by the Privacy Act to take reasonable steps to protect personal information and to destroy or de-identify it when it is no longer needed, unless retention is required by law. (OAIC)

Retention of personal information

We retain personal information for as long as reasonably necessary for the purpose for which it was collected, including to provide services, manage client relationships, keep business records, meet legal obligations and resolve disputes.

When personal information is no longer required, we take reasonable steps to destroy, delete or de-identify it.

Accessing or correcting your personal information

You may request access to the personal information we hold about you, or ask us to correct it if you believe it is inaccurate, incomplete or out of date.

To make a request, contact us using the details below. We may need to verify your identity before responding.

Privacy complaints

If you have a concern about how we have handled your personal information, please contact us first so we can try to resolve it promptly and fairly, at hello@rallygroup.com.au.

We will acknowledge your complaint and aim to respond within a reasonable timeframe.

If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner.

Links to other websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices, content or security of those websites. You should review their privacy policies before providing personal information.

Changes to this policy

We may update this Privacy Policy from time to time. The latest version will be published on our website with the updated date shown at the top of the page.

Continued use of our website or services after an updated policy is published will be taken as acceptance of the updated policy.