Privacy Policy


How Meridian handles personal information.


This Privacy Policy explains how Meridian Allocation collects, uses, stores and discloses personal information through its website, enquiry forms, mailing lists and subscription service.

Operated by: Meridian Allocation
ABN: [INSERT ABN]
Last updated: July 2026

This policy should be read together with Meridian’s Terms, Cancellation Policy and Limitations & Disclosures.

Who operates Meridian

Meridian Allocation is operated by:

Legal or business name: [INSERT NAME]
ABN: [INSERT ABN]
Location: Victoria, Australia
Privacy contact: [INSERT EMAIL]

References to “Meridian”, “we”, “us” or “our” in this policy refer to the entity identified above.

[LEGAL REVIEW: Confirm whether Meridian is covered by the Privacy Act 1988 and the Australian Privacy Principles.]

Scope of this policy

This policy applies to personal information handled through:

  • the Meridian website

  • enquiry and waitlist forms

  • subscription checkout and billing

  • subscriber communications

  • research delivery and access systems

  • website analytics

  • customer-support communications

It does not govern the independent privacy practices of external websites or service providers.

Personal information collected

Depending on how a person interacts with Meridian, information collected may include:

  • name

  • email address

  • organisation or professional role

  • enquiry category and message

  • subscription status

  • billing and transaction references

  • payment status and limited payment metadata

  • communications with Meridian

  • technical information associated with website use

  • consent and communication preferences

Meridian does not require users to submit passwords, full payment-card numbers, government identification documents, tax information or detailed portfolio information through its enquiry forms.

If unnecessary sensitive or confidential information is submitted voluntarily, Meridian may delete or restrict its use where reasonably appropriate.

How information is collected

Meridian may collect information:

  • directly through forms submitted by users

  • when a user joins a waitlist or mailing list

  • during subscription checkout

  • when a user contacts Meridian by email

  • through subscription and access-management systems

  • through website analytics, cookies or similar technologies

  • from service providers involved in operating the website or subscription

How information is used

Meridian may use personal information to:

  • respond to enquiries

  • manage waitlist and subscriber records

  • process and verify subscriptions

  • provide research and subscriber access

  • send operational, billing and account communications

  • send research updates where permitted

  • administer cancellations and refund requests

  • maintain website functionality and security

  • diagnose technical issues

  • improve the website and research service

  • prevent misuse, fraud or unauthorised access

  • comply with legal, regulatory or contractual obligations

Meridian should not use personal information for a materially unrelated purpose unless authorised, consented to or permitted by law.

Enquiries and Tally forms

Meridian uses Tally to collect enquiries and may also use it for waitlist or feedback forms.

Information submitted through a Tally form may include:

  • name

  • email address

  • enquiry type

  • organisation

  • message or feedback

  • technical submission data

Tally processes information under its own privacy terms and service infrastructure.

Users should not submit full card details, passwords, identification documents or confidential financial information through a Tally form.

Service provider: Tally
Purpose: Forms and enquiry collection

Privacy information: here

Subscriptions and payments

Meridian uses Stripe or another identified payment provider to process subscription payments.

The payment provider may collect:

  • card or payment-method information

  • billing details

  • transaction information

  • fraud-prevention information

Meridian may receive limited information such as:

  • subscriber name and email

  • payment status

  • subscription plan

  • transaction identifier

  • billing date

  • partial payment-method details, where supplied by the provider

Meridian does not intend to receive or store full payment-card numbers.

Payment provider: STRIPE
Purpose: Checkout, billing and subscription management
Privacy information: here

Email and subscriber communications

Meridian may use Mailerlite to:

  • deliver monthly packets

  • send subscription and access information

  • provide research updates

  • manage mailing-list preferences

  • record delivery, opening or link-interaction information where enabled

Users may unsubscribe from optional marketing or research-update emails through the link included in the message.

Meridian may continue sending essential billing, access, legal or service-related communications while an account or subscription remains active.

Website analytics and cookies

Meridian may use cookies, pixels, local storage or similar technologies to:

  • operate the website

  • remember preferences

  • understand website traffic

  • measure page performance

  • identify technical problems

  • protect the website from misuse

Analytics provider: NONE CURRENTLY

Information collected may include:

  • browser and device type

  • approximate location derived from an IP address

  • pages visited

  • referral source

  • date and time of access

  • interactions with website elements

[INSERT COOKIE-CONSENT POSITION AFTER CONFIRMING THE ACTUAL TOOLS AND TARGET JURISDICTIONS.]

Third-party service providers

Meridian relies on third-party providers to operate its website and subscription service.

These may include:

  • Framer — website hosting and publishing

  • Tally — forms and enquiries

  • Stripe — payments and subscription management

  • mailerlite — research and subscriber emails

  • Squarespace domain

These providers may handle personal information only to the extent necessary to deliver their services, subject to their contracts, privacy policies and applicable law.

Meridian should maintain an up-to-date internal list of the providers that handle personal information.

Overseas processing and disclosure

Some of Meridian’s service providers may store, process or provide access to personal information outside Australia.

Likely countries or regions may include:

[INSERT COUNTRIES AFTER CHECKING EACH PROVIDER’S CURRENT DOCUMENTATION.]

The locations used by third-party providers may change as their infrastructure and subprocessors change.

Where applicable, Meridian will take reasonable steps concerning overseas handling as required by law.

Do not publish a specific country list until it has been checked against the current provider documentation.

Storage and security

Meridian takes reasonable administrative, technical and organisational measures intended to protect personal information from:

  • loss

  • misuse

  • interference

  • unauthorised access

  • unauthorised modification

  • unauthorised disclosure

Measures may include:

  • restricted account access

  • multifactor authentication where available

  • secure third-party service providers

  • password-management controls

  • software updates

  • access reviews

  • deletion of information that is no longer required

No internet transmission or storage system can be guaranteed to be completely secure.

Retention and deletion

Meridian retains personal information only for as long as reasonably required for:

  • providing the service

  • maintaining subscription and transaction records

  • responding to enquiries

  • resolving disputes

  • meeting tax, accounting or legal obligations

  • security and fraud prevention

Proposed retention periods:

  • general enquiries: [INSERT PERIOD]

  • waitlist records: [INSERT PERIOD OR UNTIL UNSUBSCRIBED]

  • subscriber and billing records: [INSERT PERIOD]

  • support communications: [INSERT PERIOD]

  • analytics information: [INSERT PROVIDER RETENTION PERIOD]

When information is no longer required, Meridian may delete, anonymise or securely dispose of it, subject to legal and operational requirements.

Access and correction

A person may contact Meridian to request access to personal information held about them or to request that inaccurate information be corrected.

Requests should include enough information to identify the relevant record.

Meridian may take reasonable steps to verify the requester’s identity before providing access or making a correction.

Access may be refused or limited where permitted or required by law. Where appropriate, Meridian will explain the reason.

Contact: support@meridianallocation.com

Marketing communications

Meridian may send research updates, launch announcements or other promotional communications where a person has subscribed or where otherwise permitted.

Recipients may unsubscribe through:

  • the unsubscribe link in the email

  • the relevant email-preference centre

  • a request submitted through the Contact page

Unsubscribing from optional communications does not necessarily stop essential subscription, payment, access or legal notices.

Privacy complaints

Questions or complaints about Meridian’s handling of personal information may be submitted to:

Privacy contact: Michael Gao, Founder
Email: support@meridianallocation.com
Contact page: here

The complaint should include sufficient information to explain the issue.

Meridian will acknowledge and assess privacy complaints within a reasonable period.

[INSERT THE REVIEWED COMPLAINT-ESCALATION PROCESS, INCLUDING ANY RIGHT TO CONTACT THE OAIC IF APPLICABLE.]

Data breaches

Meridian will assess suspected loss, unauthorised access or unauthorised disclosure of personal information and take reasonable steps to contain and respond to the incident.

Where the Notifiable Data Breaches scheme or another legal notification requirement applies, Meridian will follow the applicable assessment and notification obligations.

Meridian does not guarantee that every security incident will result in direct notification where notification is not legally required or reasonably necessary.

Changes to this policy

Meridian may update this Privacy Policy to reflect:

  • changes to its services

  • changes to service providers

  • new information-handling practices

  • legal or regulatory developments

  • operational or security requirements

The updated policy will state its effective or last-updated date.

Where a change materially affects how existing personal information is handled, Meridian will provide additional notice where reasonably appropriate or legally required.

Contact information

Questions, access requests, correction requests or privacy complaints may be submitted through the Meridian Contact page.

Operated by: [LEGAL NAME OR BUSINESS NAME]
ABN: [INSERT ABN]
Privacy email: [INSERT EMAIL]
Location: Victoria, Australia

Contact: /contact

Related pages:

  • Terms: here

  • Cancellation Policy: here

  • Limitations & Disclosures: here