Hangrr
Request a flight

Privacy policy

Last updated: 29 May 2026

1. About this policy

This Privacy Policy explains how Hangrr Pty Ltd (ABN 99 300 697 660) (Hangrr, we, our, us) collects, uses, discloses and protects personal information when you use the Hangrr website at hangrr.com.au, the Hangrr web and mobile applications, and any related services (together, the Platform).

We comply with the Australian Privacy Act 1988 (Cth) (the Privacy Act) and the Australian Privacy Principles (APPs) set out in that Act. This policy applies to all personal information we hold, regardless of how it was collected.

By using the Platform, you consent to the collection, use and disclosure of your personal information as described in this policy.

2. What personal information we collect

The kinds of personal information we collect depend on how you use the Platform.

From all visitors:

  • Device and browser information (IP address, browser type, operating system, referring URL);
  • A first-party visitor identifier (the hgr_vid cookie, valid for up to 365 days, scoped to .hangrr.com.au so it carries between the marketing site and the application);
  • Page views, links clicked, and which marketing campaign (UTM tags) brought you to the site;
  • Approximate location derived from your IP address.

From customers requesting flights:

  • Your name, email address and phone number;
  • Details of the trip you are requesting (departure and destination, dates, passenger numbers, special requirements);
  • Messages you exchange with operators through the Platform;
  • Payment method tokens (your full card number is collected and stored by our PCI-DSS compliant payment processor, not by Hangrr - see Section 5).

From operators registering on the Platform:

  • Your name, role, contact details, and business identifiers (such as ABN and ACN);
  • Your CASA Air Operator's Certificate (AOC) details and other regulatory approvals;
  • Insurance certificates, drone operator credentials (RPA / RePL / ReOC), and other onboarding documents you upload;
  • Information about your fleet, bases, services, and pricing;
  • Banking and tax information required to pay you (collected by our payment processor, not stored by Hangrr - see Section 5);
  • Identity verification information required by our payment processor for Know-Your-Customer (KYC) checks.

From all users with an account:

  • Authentication information (email address, password hash, or social-login identifiers - managed by our identity provider);
  • Records of your activity on the Platform (bookings, bids, messages, reviews);
  • Support communications you send us.

3. How we collect personal information

We collect personal information:

  • Directly from you when you fill in a form, post a request, create an account, upload documents, send a message, or contact support;
  • Automatically when you browse the Platform, via the cookies and tracking described in Section 7;
  • From third parties in limited cases - including our identity provider (authentication), our payment processor (payment and identity verification), and the publicly available CASA register when we verify an Operator's AOC.

4. How we use personal information

We use personal information to:

  • Operate the Platform - matching customers with operators, processing payments through escrow, releasing funds on completion;
  • Verify operators against CASA records and review insurance documentation;
  • Communicate with you about your account, bookings, bids, messages and disputes;
  • Send service-related notifications and, where you have not opted out, marketing emails;
  • Improve the Platform - understand which features are used, which articles drive interest, and which user journeys break;
  • Detect and prevent fraud, misuse, security incidents and breaches of our Terms of Service;
  • Comply with our legal obligations, including tax and dispute-resolution records; and
  • Enforce our rights and respond to lawful requests from regulators, courts or law-enforcement agencies.

5. Who we share personal information with

We do not sell your personal information. We share it only as needed to run the Platform or to comply with the law, with the following categories of recipients:

  • Operators: when you accept an operator's bid, we share the contact details and trip information they need to perform the flight (your name, phone, email, trip particulars). Before acceptance, operators see only the trip information from your request and not your identity.
  • Customers: when you bid as an operator, customers see your business name, your profile information, your bid details, and messages you send.
  • Payment processor: processes all customer payments and operator payouts. Card and bank details are collected and stored by the payment processor directly, not by Hangrr.
  • Identity provider: manages account authentication.
  • Cloud hosting providers: host the Platform's infrastructure and store uploaded documents on encrypted storage.
  • Email delivery and support tools: send transactional and marketing emails.
  • Professional advisers and regulators: lawyers, auditors, CASA, the Australian Taxation Office and other authorities where required.
  • Acquirers: in the event of a merger, acquisition or sale of business assets, your information may be transferred to the acquiring entity, subject to the protections in this policy.

6. Overseas disclosure

Some of the third parties we use may store or process personal information outside Australia, including in the United States and the European Union. We take reasonable steps to ensure that overseas recipients handle your information in a way consistent with the APPs.

7. Cookies and tracking

We use first-party cookies and similar technologies on the Platform. The most important is hgr_vid, a long-lived first-party visitor identifier scoped to .hangrr.com.au so we can recognise the same visitor on the marketing site and inside the application. We use this to attribute conversions back to the marketing page or campaign that first brought you to us.

We also capture standard session and analytics signals - page views, links clicked, the marketing source (UTM tags) you arrived from, and timestamps. This data is sent to Hangrr's own infrastructure rather than to a third-party advertising network.

You can clear or block cookies through your browser settings. Doing so may limit some Platform functionality (for example, account sign-in or multi-step forms).

8. Marketing communications

We may send you marketing emails about features, articles, and offers we think you'll find relevant. Every marketing email includes an unsubscribe link. You can also opt out by emailing hello@hangrr.com.au.

Opting out of marketing does not stop transactional or service-related communications (such as booking confirmations, payment receipts, or account security notices), which you cannot opt out of while you have an active account or booking.

9. Storage and security

We hold personal information on cloud infrastructure hosted in Australia and (for some services) overseas. We use industry-standard measures to protect personal information from misuse, loss, unauthorised access, modification and disclosure, including:

  • Encryption in transit (HTTPS) and at rest;
  • Role-based access controls and authentication for our own staff;
  • Logging and monitoring of access to sensitive records;
  • Vendor selection focused on providers with established security practices and certifications.

No method of transmission or storage is perfectly secure. If we become aware of a data breach that is likely to result in serious harm to you, we will notify you and the Office of the Australian Information Commissioner (OAIC) as required by the Notifiable Data Breaches scheme.

10. How long we keep personal information

We retain personal information only for as long as we need it for the purposes set out in this policy, or for as long as we are required to retain it by law (for example, tax records under the Income Tax Assessment Act, or financial records under the Corporations Act).

When personal information is no longer required and there is no legal obligation to keep it, we will take reasonable steps to destroy or de-identify it.

11. Your rights

Under the Privacy Act, you may:

  • Access the personal information we hold about you;
  • Correct personal information that is inaccurate, out of date, incomplete, irrelevant or misleading;
  • Request deletion of your personal information, subject to any legal or contractual obligations we have to retain it (for example, completed bookings and the records associated with them);
  • Withdraw consent for marketing communications (see Section 8);
  • Complain if you think we have breached the APPs (see Section 14).

To exercise any of these rights, contact us at hello@hangrr.com.au. We will respond within a reasonable time, usually within 30 days. We may need to verify your identity before acting on a request.

12. Children

The Platform is not intended for use by anyone under 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us and we will take steps to delete it.

13. Changes to this policy

We may update this policy from time to time. The current version is always published at /legal/privacy. Where a change is material we will notify you by email to the address registered to your account.

14. Contact and complaints

Privacy queries and access / correction requests: hello@hangrr.com.au

If you believe we have breached the Privacy Act or the APPs, please contact us first so we can investigate and respond. We will acknowledge your complaint within a reasonable time and aim to resolve it within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC): oaic.gov.au, phone 1300 363 992, or by mail to GPO Box 5288, Sydney NSW 2001.

Hangrr Pty Ltd (ABN 99 300 697 660) is the entity responsible for the personal information described in this policy.