Hello Romy is operated by Melbourne Travel Project Pty Ltd (ABN 63 635 946 093), an Australian company. This policy explains what personal information we handle, why, and how we look after it.
Hello Romy is a software platform offered to licensed travel agencies. We provide the platform; subscribing agencies use it to communicate with their own clients. In privacy terms, the agency is the controller of their clients' personal information, and Hello Romy is a processor acting on the agency's instructions.
When an agency uses Hello Romy, the platform may handle:
We do not sell personal information. We do not use end-client information to train AI models or for any purpose beyond delivering the agency's service to its own clients.
Hello Romy uses the WhatsApp Business Platform to deliver concierge messages from a travel agency to that agency's own clients. We are not a marketing or broadcast service.
Messages are sent on behalf of an agency to clients with whom that agency has an existing commercial relationship and who have consented to be contacted via WhatsApp by their travel agency. End-clients can opt out of WhatsApp messaging at any time by replying STOP, and the platform will honour that request.
We handle personal information for limited, defined purposes:
To deliver the service we use a limited number of trusted third-party infrastructure providers — for example, for hosting, messaging delivery, payment processing and authentication. All providers are bound by contracts that require appropriate confidentiality and security standards. A current named list is available to subscribing agencies on request to admin@helloromy.ai.
Some providers operate outside Australia. Where information is transferred outside Australia, we take reasonable steps to ensure it is protected to a standard consistent with Australian privacy law.
We retain personal information for as long as it is needed to deliver the service to the subscribing agency, plus a reasonable period after account closure for legal, regulatory, billing and security purposes. End-client information is deleted at the agency's instruction in line with their own privacy obligations to that client.
You have rights in relation to your personal information, including the right to access, correct or request deletion of information we hold. End-clients should direct requests to the travel agency they engaged. Agencies and their staff can contact us directly at admin@helloromy.ai.
Australian users can also lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
We use enterprise-grade security practices including encryption in transit and at rest, access controls and logging, and the security capabilities of our underlying infrastructure providers. No system is perfectly secure, but we take security seriously and respond promptly to issues.
We may update this policy from time to time. The "Last updated" date at the top of the page reflects the most recent change. Material changes will be notified to subscribing agencies via the email associated with their account.
Questions about this policy or about how your information is handled:
Melbourne Travel Project Pty Ltd
ABN 63 635 946 093
Privacy and data: admin@helloromy.ai
General: matt@helloromy.ai
Victoria, Australia