Privacy Policy
Who we are
Empiric (empiric.au) is an Australian-based digital publication producing evidence-based analysis across crypto, personal finance, and capital markets. We are committed to operating in full compliance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
We treat this policy as a living document. As our services expand, we will update it to accurately reflect how we collect and manage personal information. The effective date at the top of this page indicates the current version.
What we collect
At this stage, Empiric collects only the information necessary to provide our newsletter service. We do not collect information beyond what is required.
| Information | How collected | Why |
|---|---|---|
| Email addressRequired | Newsletter signup form | To deliver Empiric newsletters and updates |
| Subscription metadataAutomatic | Generated on signup | Subscription status, signup date, engagement data (opens, clicks) |
| UTM parametersAutomatic | URL parameters at signup | To understand which channels drive subscriptions — no personal identification |
We do not collect names, phone numbers, addresses, financial information, or any sensitive information as defined under the Privacy Act 1988 (Cth) unless explicitly required for a specific future service — in which case this policy will be updated prior to collection.
How we use it
Your email address is used solely for the purposes for which it was collected. We will not use it for any secondary purpose without your consent.
Current uses: Delivering Empiric newsletters and editorial updates. Notifying subscribers of publication launch and significant milestones. Internal analytics to understand newsletter performance at an aggregate level.
We will never: Sell your personal information to third parties. Use your email address for unsolicited commercial messaging unrelated to Empiric. Share your information with advertisers or sponsors for targeting purposes.
All email communications from Empiric will comply with the Spam Act 2003 (Cth), including a clear and functional unsubscribe mechanism in every message.
Third-party processors
We use a limited number of trusted third-party services to operate Empiric. Each is selected for quality, reliability, and privacy standards consistent with our own. We do not authorise any third party to use your personal information for their own purposes.
| Service | Purpose | Data shared |
|---|---|---|
| Beehiivbeehiiv.com | Newsletter platform — subscriber management, delivery, and analytics | Email address, subscription metadata |
| Vercelvercel.com | Website hosting and content delivery | Standard web server logs (IP address, browser type, pages visited) — not linked to subscriber identity |
| Cloudflarecloudflare.com | DNS, security, and performance | Standard network traffic data — not linked to subscriber identity |
As Empiric grows and additional services are introduced — such as analytics platforms, affiliate networks, or comment systems — this section will be updated prior to any new data sharing arrangements taking effect.
Overseas disclosure
In accordance with Australian Privacy Principle 8, we disclose that your personal information is transferred to and stored in the United States of America via Beehiiv Inc., and may also be processed in other countries through Vercel Inc. and Cloudflare Inc., both of which operate global infrastructure.
Before transferring personal information overseas, we take reasonable steps to ensure the recipient handles information in a manner consistent with the Australian Privacy Principles. Beehiiv, Vercel, and Cloudflare each maintain privacy frameworks and security practices consistent with internationally recognised standards.
By subscribing to Empiric, you consent to your email address being stored and processed in the United States by Beehiiv Inc. as our primary newsletter platform.
Your rights
Under the Australian Privacy Principles, you have the right to access, correct, and in certain circumstances request deletion of your personal information held by Empiric.
Access and correction — You may request a copy of the personal information we hold about you, or request that inaccurate information be corrected. We will respond within a reasonable timeframe and no later than 30 days.
Unsubscribe — Every Empiric newsletter contains a clear unsubscribe link. Upon unsubscribing, your email address will be removed from our active mailing list. You may also request complete deletion of your data by contacting us directly.
Complaints — If you believe we have mishandled your personal information, you may contact us directly. If your concern is not resolved to your satisfaction, you have the right to lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
Data retention
We retain your email address and associated subscription data for as long as you remain a subscriber. If you unsubscribe, we will remove you from our active list immediately. Residual data may be retained in backup systems for up to 90 days before being permanently deleted.
If you request complete deletion of your data, we will action this within 30 days and confirm once complete.
Security
We take reasonable steps to protect the personal information we hold from misuse, interference, loss, and unauthorised access, modification, or disclosure. These steps include using reputable third-party platforms with established security practices, HTTPS encryption across all Empiric web properties, and limiting access to subscriber data to operational necessity only.
No method of transmission over the internet is completely secure. While we take all reasonable precautions, we cannot guarantee absolute security. In the event of a data breach that is likely to result in serious harm, we will notify affected individuals and the OAIC in accordance with the Notifiable Data Breaches scheme under the Privacy Act 1988 (Cth).
Changes to this policy
This policy will be updated as Empiric evolves. When material changes are made, we will notify active subscribers via email prior to the changes taking effect. The effective date at the top of this document will always reflect the current version.
We treat compliance as a continuous obligation — not a one-time document. Monitoring of relevant legislative and regulatory changes, including OAIC guidance and any amendments to the Privacy Act 1988 (Cth), is ongoing.
Contact us
For any privacy-related enquiries, access requests, correction requests, or complaints, please contact us directly. We are committed to responding promptly and taking your privacy seriously.