Privacy Policy
Last updated: 25 April 2026
This platform ("Evolve Beyond AI" or "the Platform") is operated by Magicks Pty Ltd (ABN to be confirmed), an Australian company trading as Evolve Beyond AI. Evolve Beyond AI is an extensible platform for career development tools and resources.
References to "we," "us," or "our" in this policy refer to Magicks Pty Ltd. References to "you" or "your" refer to users of the Platform.
This Privacy Policy applies to all personal information collected through the Evolve Beyond AI platform, including the core platform and any active extensions. Extensions are optional features that may be activated on the platform — for example, the Evolve Readiness Assessment, the Workbook, and the Evolve Challenge are provided by the Evolve Assessment extension; the Journal, Job Application Helper, and AI Engine are separate extensions. The specific data collected depends on which extensions are active. This policy does not cover third-party websites linked from the Platform; please review their privacy policies separately.
We collect the following categories of personal information. Some categories are collected by the core platform; others are collected only when specific extensions are active on your account.
Account Information
Your name and email address, provided when you create an account. (Core platform)
Career Profile
Your industry, job title, and career goals, provided during the Readiness Assessment process. See our Data Collection Policy for details on how this information is used. (Evolve Assessment extension)
Readiness Assessment Responses
Your answers to the Readiness Assessment questions, which generate your personalised Evolve score and results. (Evolve Assessment extension)
Workbook & Challenge Entries
Free-text responses you provide in the Workbook and Evolve Challenge features (available to subscribers). (Evolve Assessment extension)
Journal Entries
Free-text journal entries, mood selections, and associated metadata. Journal entries are private to your account. Your AI privacy setting controls whether journal content may be processed by AI. (Journal extension)
CV & Job Application Content
CV text and job advertisement text you enter into the Job Application Helper — either by pasting directly or by uploading a Word document (.docx). When you upload a file, it is read in memory to extract the text and then discarded immediately; the original file is never written to disk or stored in our database. Only the extracted text is saved to your account. A non-AI privacy check runs on this content first — it scans for names, phone numbers, email addresses, postal addresses, dates of birth, citizenship, government IDs, and other identifying details, then replaces them with placeholders. Only the masked version is sent to AI for analysis. You see exactly what was masked and can choose whether to update your saved CV with those placeholders too. (Job Application Helper extension)
AI Conversations & Usage
Messages you send to the AI assistant (chatbot), AI-generated analysis results, and usage counts for credit tracking. Conversations are associated with your account and are not shared with other users. (AI Engine extension)
Technical Data
Standard web server logs including IP address, browser type, and access times. We do not use third-party tracking or analytics cookies. (Core platform)
We use the information we collect to:
Deliver the service — manage your account, process transactions, and provide access to active extensions and their features.
Personalise your experience — where an extension collects profile data (such as career information), use it to tailor content and recommendations to your situation.
Segment and communicate — categorise users by attributes to send relevant product updates, resources, and offers. You can opt out of marketing communications at any time.
Provide AI-powered features — when you use an AI feature (such as CV review, the application guide, cover letter generation, AI insights on your assessment results or workbook entries, or the AI assistant chatbot), your content is sent to an AI provider for processing. Before transmission, a non-AI privacy check (described in section 5 below) replaces personal details with placeholders so the AI only sees the substantive content. See "Data Sharing" below for details on which AI providers may be used.
Improve the Platform — analyse aggregate, de-identified usage patterns to improve platform features, content, and user experience.
Process transactions — manage subscriptions and purchases through our payment processor (Stripe). We do not store your payment card details.
Privacy Check before AI
Whenever you trigger an AI feature on this platform — CV review, application guide, cover letter generation, AI insights on assessment or workbook content, or the chatbot — your content first passes through a non-AI privacy check that we run on our own servers. This check uses pattern matching (not AI) to detect:
Detected items are replaced with placeholders (e.g. [NAME], [PHONE]) before any AI provider sees the content. The privacy check itself runs entirely on our servers — no third party is contacted for this step. After the check, we show you exactly what was masked so you can review and, where applicable (e.g. CV content), choose to update your saved copy with those placeholders too.
Pattern matching is not perfect — uncommon names, foreign phone formats, or names embedded in sentences may not be detected. If you have content you don't want any AI to see, the safest path is not to submit it.
We process your personal information under the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Where applicable to users in other jurisdictions, we rely on consent (provided when you create an account and use platform features), contractual necessity (to deliver the services you signed up for), and legitimate interests (to improve the Platform and communicate relevant offers).
We do not sell your personal information. We share data only with:
Stripe — for payment processing. Stripe's privacy policy governs their handling of your payment data.
AI providers — when you use AI-powered features, your content (with personal details removed where applicable) is sent to a third-party AI service (currently OpenAI or Anthropic, as configured by your platform administrator). These providers process your content to generate responses and do not use it to train their models. Their respective privacy policies govern their handling of this data.
Hosting providers — our platform infrastructure providers (e.g., Vercel, Neon) who process data on our behalf under strict data processing agreements.
We may disclose information where required by Australian law or to protect our legal rights.
Your data is stored in secure, encrypted databases. Passwords are hashed using industry-standard algorithms (bcrypt). All communication between your browser and our servers is encrypted via TLS/HTTPS. While no system is perfectly secure, we take reasonable steps to protect your information from unauthorised access, loss, or misuse.
We retain your personal information for as long as your account is active or as needed to provide the services. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law or for legitimate business purposes (e.g., transaction records).
Under the Australian Privacy Act, you have the right to:
Access your personal information held by us.
Correct any inaccurate or out-of-date information.
Request deletion of your personal information (subject to legal obligations).
Opt out of marketing communications at any time.
Complain to the Office of the Australian Information Commissioner (OAIC) if you believe your privacy has been breached.
To exercise any of these rights, contact us at the email address below.
The Platform is operated from Australia. If you access the Platform from outside Australia, your information may be transferred to and processed in Australia. By using the Platform, you consent to this transfer. If you are located in the European Economic Area or United Kingdom, we will take appropriate safeguards to ensure your data is protected in accordance with applicable law.
The Platform is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will delete it promptly.
We may update this Privacy Policy from time to time. Material changes will be communicated via the Platform or by email. The "Last updated" date at the top of this page indicates when the policy was last revised. Continued use of the Platform after changes constitutes acceptance of the updated policy.
If you have questions about this Privacy Policy or wish to exercise your rights, please contact: