Privacy Policy

Last updated: 19 May 2026

This policy explains how Purpose Led AI ("PLAI", "we", "us") collects, uses, and protects information when you visit our website, fill in a form, sign up to hear from us, or otherwise share your details with us.

We've written this in plain language because we think you deserve to actually understand it.

Who we are

PLAI (Purpose Led AI) is an AI training and consulting organisation working with nonprofits, INGOs, and mission-driven organisations globally. We operate across Canada, Australia, and internationally.

Data controller: PLAI - Purpose Led AI Pty Ltd

Contact for privacy questions: team@weareplai.com

What we collect

We only collect information you give us directly. We don't use tracking pixels, advertising cookies, or behavioural profiling tools.

When you contact us or sign up

We collect:

  • Your name
  • Your email address
  • Your organisation and role (if you share them)
  • Anything you write in a message or form field
  • Country or region (if relevant to the enquiry)

When you visit the website

Our website host may collect basic technical information (e.g., approximate location, browser type, pages visited) to keep the site running and secure. This isn't used to identify you personally or build a profile.

What we don't do

  • No advertising or marketing pixels
  • No third-party behavioural tracking
  • No selling or renting your data to anyone, ever
  • No profiling for automated decision-making

Sensitive information

We don't collect sensitive information (health, race, religion, political views, etc.) unless it's genuinely necessary for delivering a service you've asked for — and only with your consent.

Why we collect it

We only use your information for the reason you gave it to us:

  • To respond to enquiries you send via our contact form
  • To send you communications you've signed up for (newsletter, programme updates, event invitations)
  • To deliver services if you become a client or training participant
  • To improve our work by understanding what's resonating with our community

Our legal basis (for those who care about GDPR language): consent for marketing communications, legitimate interest for responding to direct enquiries, and contract performance for client work.

Who we share it with

We use a small number of trusted tools to run our business. Your data may pass through:

  • Email and marketing tools (Ortto) — to send communications you've opted into
  • Customer/CRM tools (Notion, Google Workspace) — to track conversations and projects
  • Hosting and analytics — our website host's standard infrastructure
  • Accounting (Xero) — only if we have a financial relationship with you

We don't share your data with anyone else for their own purposes. We don't sell it. We don't trade it.

We may disclose information if legally required (e.g., a valid court order), but we'll resist and notify you where we can.

Where your data lives

PLAI operates internationally, and the tools we use may store data in Canada, Australia, the United States, or the European Union. Where data leaves your home region, we rely on the standard contractual protections those providers have in place (GDPR Standard Contractual Clauses, equivalent Canadian and Australian arrangements).

How long we keep it

  • Contact form enquiries: up to 2 years after our last meaningful interaction, unless you ask us to delete sooner
  • Newsletter / mailing list: until you unsubscribe (one click in any email)
  • Client records: for the duration of our engagement plus 7 years for accounting and tax compliance

Your rights

Regardless of where you live, you can:

  • Ask what we hold about you
  • Correct anything that's wrong
  • Ask us to delete it (subject to legal retention requirements)
  • Withdraw consent to marketing at any time
  • Object to how we're using it
  • Get a copy of your data in a portable format
  • Complain to your local privacy regulator if you think we've got it wrong

If anything we hold about you is wrong or out of date, please tell us — we'll fix it.

Email team@weareplai.com and we'll respond within 30 days. Usually much faster.

If you're in the EU/UK, you can also complain to your data protection authority. If you're in Canada, that's the Office of the Privacy Commissioner. In Australia, it's the OAIC.

Security

We use reasonable technical and organisational measures to protect your information — encrypted storage, access controls, vetted vendors, and a documented data breach response process. No system is perfect; if something goes wrong that affects you, we'll tell you.

Changes to this policy

We'll update this policy as our practices evolve. The date at the top tells you when it was last changed. For significant changes, we'll notify you directly if we have your email.

Questions?

Email team@weareplai.com and a real human will respond.