Last updated: 22 March 2026
Effective date: 22 March 2026
GridSentinel is operated by GridSentinel (ABN 85 935 002 307) ("we", "us", "our"). This Privacy Policy explains what personal information we collect, why we collect it, how we use and protect it, and your rights.
GridSentinel is operated by an individual developer and may not meet the turnover threshold that triggers mandatory coverage under the Australian Privacy Act 1988 (Cth). We nonetheless commit to the privacy practices described in this document as a matter of principle, and we handle your personal information in a manner consistent with the Australian Privacy Principles (APPs).
Contact: hello@gridsentinel.app
We collect only the information necessary to operate the service. This section serves as our collection notice under APP 5.
Information • Why we collect it
Name • Account creation and communications
Email address • Account creation, service notifications, and updates
Battery type • Configuring the correct driver and API connection
Amber Electric API key • Connecting to the Amber API to read live electricity prices
Battery OAuth tokens (Tesla) or credentials (Sigenergy, FoxESS) • Sending automation commands to your battery
NEM region • Correct timezone handling for your account
Consequence of not providing information: If you do not provide your name, email, and API credentials, we cannot create your account or operate the automation service.
Information • Why we collect it • Retention
Engine decisions (mode, price, SoC, reason) • Transparency log for your review in-app • 90 days, then auto-deleted
Battery state of charge • Included in each decision record • 90 days (part of decision record)
Import and export price at time of each cycle • Included in each decision record • 90 days (part of decision record)
Application error logs • Debugging and service improvement • 30 days (AWS CloudWatch)
API request timestamps and user identifiers • Service operation and debugging • 30 days (AWS CloudWatch)
Error logs may contain technical data including your user ID and anonymised request information. These are used only for debugging and are not shared with third parties.
We use your information only for the purposes described in ยง1. Specifically, we do not:
We share limited information with the following parties to operate the service:
Amazon Web Services (AWS)
All GridSentinel infrastructure runs in the ap-southeast-2 (Sydney) region. Your data is stored and processed in Australia. AWS acts as a data processor on our behalf and is bound by its own privacy commitments. AWS Privacy Policy
Amber Electric
GridSentinel connects to the Amber Electric API using your API key to fetch live electricity prices and (in future) your metered usage data. Your API key is stored encrypted. We do not share your name, email, or other personal information with Amber. Amber Privacy Policy
Tesla / Sigenergy / FoxESS / other battery providers
GridSentinel connects to your battery's cloud API using credentials you authorise. These credentials are stored encrypted. We do not share your name, email, or other personal information with battery providers. The connection is entirely credential-based.
No other third parties. We do not use third-party analytics, advertising platforms, or data brokers. We do not share your personal information with any party not listed above.
Overseas transfers: We do not transfer your personal information outside Australia. All data is stored and processed in AWS ap-southeast-2 (Sydney).
Despite these measures, no system is completely secure. We cannot guarantee the absolute security of your information.
In the event of a data breach involving your personal information, we will notify you and, where required, the Office of the Australian Information Commissioner (OAIC) as soon as practicable and in any event within 30 days of becoming aware of the breach. The notification will describe what information was involved, what we are doing to address the breach, and what steps you can take to protect yourself.
You have the right to:
Access: Request a copy of the personal information we hold about you. We will respond within 30 days.
Correction: Request that we correct personal information that is inaccurate, incomplete, or out of date.
Deletion: Request deletion of your account and associated personal information. We will action deletion within 30 days. Note that decision logs are deleted automatically after 90 days via our TTL mechanism โ they may remain for up to 90 days after your account deletion request is processed.
Complaints: If you believe we have not handled your personal information appropriately, contact us first at hello@gridsentinel.app. We will respond within 30 days. If you are unsatisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).
To exercise any of these rights, email hello@gridsentinel.app.
GridSentinel does not use cookies or web tracking technologies in the mobile app. The GridSentinel website (gridsentinel.app) does not use analytics or advertising cookies. The only information collected via the website is what you voluntarily submit through the waitlist form.
GridSentinel is not directed at anyone under 18 years of age. We do not knowingly collect personal information from minors. If you believe a child has provided us with personal information, please contact us at hello@gridsentinel.app and we will delete it promptly.
We may update this Privacy Policy from time to time. We will notify you of material changes by email or in-app notification before they take effect. The "Last updated" date at the top of this document reflects the most recent revision.
GridSentinel Privacy
GridSentinel (ABN 85 935 002 307)
New South Wales, Australia
Email: hello@gridsentinel.app
Office of the Australian Information Commissioner (OAIC)
Website: oaic.gov.au
Phone: 1300 363 992