Skip to main content (M for menu)
Back to Documentation

Security & Privacy

DSX takes the security and privacy of your data seriously. Learn about our security measures and how we protect your information.

Data Protection

Your data is encrypted at rest and in transit using industry-standard encryption

Secure Authentication

Multi-factor authentication available for enhanced account security

Australian Hosting

All data stored in Australian data centers for data sovereignty

Privacy First

Compliant with Australian Privacy Act and NDIS data requirements

Security Measures

Encryption

  • In Transit - All data transmitted via HTTPS/TLS 1.3
  • At Rest - Database encryption using AES-256
  • Backups - Encrypted backups stored securely

Authentication

  • Secure password requirements
  • Session management with automatic timeouts
  • Account lockout after failed attempts
  • Optional multi-factor authentication

Infrastructure

  • Hosted on Google Cloud Platform (Australia)
  • Regular security patches and updates
  • Network firewalls and DDoS protection
  • Continuous monitoring and logging

Privacy Protection

Data Collection

We collect only the information necessary to provide our services:

  • Account information (email, name)
  • Provider profile data (for verified providers)
  • Usage data (for improving the platform)

Data Use

Your data is used to:

  • Provide and improve DSX services
  • Display provider information to users
  • Generate aggregated, anonymized statistics
  • Communicate service updates

Data Sharing

We do not sell your data. Data may be shared:

  • With your consent
  • To comply with legal requirements
  • In aggregated, anonymized form for research

Your Rights

Under Australian privacy law, you have the right to:

  • Access - Request a copy of your data
  • Correction - Update incorrect information
  • Deletion - Request deletion of your account
  • Complaint - Lodge complaints with the OAIC

Account Security Best Practices

Password Security

  • Use a strong, unique password
  • Don't reuse passwords from other sites
  • Consider using a password manager
  • Change your password if you suspect it's compromised

Session Security

  • Log out when using shared computers
  • Don't save passwords on public computers
  • Monitor your account for suspicious activity

Phishing Awareness

  • DSX will never ask for your password via email
  • Check the URL before entering credentials
  • Report suspicious emails to support

Security Concern? If you believe your account has been compromised or notice suspicious activity, contact us immediately atinfo@dsx.org.au

Compliance

DSX complies with:

  • Australian Privacy Act 1988
  • Australian Privacy Principles (APPs)
  • NDIS Quality and Safeguards Commission requirements
  • ACSC Essential Eight guidelines

Related Policies

Related Topics