Who we are
Centrio is a practice platform for Australian migration agents and education agents, operated by Dasdow Pty Ltd. This policy covers both parts of it: the Centrio web app (the portal you sign in to at app.centrio.com.au) and the Centrio browser extension for Chrome. They're one product, and this is one policy — but they handle data very differently, so we've kept them separate below.
The web app
The web app is where your practice actually stores its work, so it's where the real data lives. When you and your team use Centrio, we hold:
- Your account details — name, work email, phone, firm, and (if you're a registered agent) your MARN.
- Your client and case records — everything you enter about the people you act for: contact details, visa and course histories, documents you upload, notes, invoices and trust transactions.
- Basic service logs — sign-in times and IP addresses, kept so we can investigate security problems and show your team an audit trail.
We use this to run the service for you and to support you when you ask. We do not sell it, we do not use your client records to advertise to anyone, and we do not use them to train machine-learning models.
Your client records are yours. As far as Australian privacy law is concerned, you are the one responsible for the personal information you collect from your clients; we hold it on your behalf and act on your instructions. We handle it in line with the Privacy Act 1988 (Cth) and the Australian Privacy Principles.
The browser extension
The extension does one job: when you're signed in and you open a form — a visa application, a provider enrolment form, a government portal — it fills that form in with client details you already have stored in your Centrio account, so you don't retype them.
What it sends to us. One thing: a request for the client record you asked it to fill in. When you pick a client, the extension asks the Centrio app for that person's details and the app sends them back to your browser. It's the same request the web app makes when you open that client's file — you're fetching your own records, and we're not learning anything new about you by serving them.
What it doesn't send. To be specific:
- It does not record or transmit your browsing history, the pages you visit, or how long you spend on them.
- It does not send us the contents of the pages you open, the addresses of those pages, or the values sitting in their form fields. The only traffic between the extension and us is the client record you requested, travelling towards your browser.
- It contains no analytics, tracking pixels, advertising, or third-party scripts.
- It does not sell, rent, or transfer your data to anyone. It talks to your Centrio account and to nothing else.
What it stores. One thing, on your own computer, in Chrome's local extension storage: a sign-in token, so you don't have to log in to Centrio every time you use it. It stays on your machine. Signing out or removing the extension deletes it. Client details fetched for a form are held in memory only for as long as it takes to fill that form.
What it reads. When you ask it to fill a form, the extension looks at the fields on that page (name, date of birth, passport number, and so on) to work out what goes where. It looks only at the page you're actively working on, only when you invoke it, and only to match fields. What it sees on that page stays in your browser — it is used to place the values and is never sent back to us.
The client details it fills in are records you or your firm entered into Centrio, covered by the section above and governed by the same protections. The extension is a window onto your own data; it isn't gathering new data.
Who else sees it
Only the suppliers we need to actually run the platform — cloud hosting, database backups, email delivery, and card payments (your card number goes to our payment processor, never to us). They're bound to use it only to provide that service to us. We'll also hand over information if the law genuinely requires it.
Data is stored in Australia. Some suppliers may process it overseas; where they do, we require protections comparable to Australian law.
How long we keep it
While your account is open, we keep your data so you can use it. If you close your account, you can export your records first; we then delete them within 90 days, except where we're required to retain something (financial records, for instance) for longer.
Your choices
You can ask us for a copy of the personal information we hold about you, ask us to correct it, or ask us to delete it. Email support@centrio.com.au and we'll respond within 30 days. If you're unhappy with how we've handled a privacy question, you can complain to the Office of the Australian Information Commissioner at oaic.gov.au.
You can remove the extension at any time from Chrome's extensions page. That deletes the stored sign-in token immediately and stops the extension doing anything at all.
Changes to this policy
If we change how we handle data, we'll update this page and change the date at the top. If the change is significant — new data collected, a new use for it — we'll email account holders before it takes effect rather than expecting you to notice.
Questions about this page? Email support@centrio.com.au.