Privacy Policy
Arc Management
Last updated: 06 February 2025 · Effective date: 06 February 2025
1. About this policy
ARC Management ("we", "us", "our") is committed to protecting your personal information. This policy explains what information we collect, how we use it, and your rights in relation to it.
We operate in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs), including the reforms introduced under the Privacy and Other Legislation Amendment Act 2024.
If you have any questions about this policy, contact us at harry@arcmanagement.com.
2. What information we collect
We may collect the following personal information:
Contact and identity information
- Full name
- Email address
- Phone number
- Postal address
Account and business information
- OnlyFans account handle and URL
- Social media handles
- Account performance data and revenue figures you provide to us
- Login credentials for platforms you choose to share with us (stored securely)
Enquiry and communication information
- Messages you send us via our website, email, or social media
- Information you provide when completing our intake form or proposal documents
Website usage information
- IP address
- Browser type and device information
- Pages visited and time spent on our website
- Referral source
We collect information directly from you when you contact us, complete a form, sign an agreement, or use our services. We may also collect information through cookies and analytics tools on our website.
3. Why we collect your information
We collect and use your personal information to:
- Respond to your enquiries and assess whether our services are right for you
- Provide and manage our OnlyFans account management services
- Build and deliver your account strategy, content calendar, and marketing activities
- Manage your social media platforms on your behalf where authorised
- Send you performance reports, invoices, and service communications
- Improve our services and understand how our website is used
- Comply with our legal obligations
- Protect the security and integrity of our business
We will not use your information for any purpose that is not related to providing our services to you, without your consent.
4. Who we share your information with
We do not sell your personal information to third parties.
We may share your information with:
Our team members — staff and contractors who work on your account, on a need-to-know basis only. All team members are bound by confidentiality obligations.
Service providers — third-party tools we use to deliver our services, such as cloud storage providers, analytics platforms, and communication tools. These providers are required to handle your information securely and in accordance with applicable privacy laws.
Legal and regulatory bodies — where we are required by law, court order, or regulatory authority to disclose information.
We will not share your personal information with any other third party without your explicit consent, unless required by law.
5. Account access and credentials
Where you choose to provide us with login credentials or account access for the purpose of delivering our services, we handle this information with the highest level of care:
- Credentials are stored using secure, encrypted methods
- Access is restricted to authorised team members working on your account only
- We do not share your credentials with any external party
- Access is revoked upon termination of your agreement with us
You retain full ownership and control of all your accounts at all times.
6. How we store and protect your information
We take reasonable technical and organisational steps to protect your personal information from misuse, interference, loss, and unauthorised access, modification, or disclosure. These steps include:
- Encrypted storage of sensitive information
- Restricted access controls within our team
- Secure communication channels for sharing credentials and sensitive data
- Regular review of our security practices
While we take all reasonable precautions, no method of electronic transmission or storage is completely secure. We encourage you to contact us immediately if you believe your information has been compromised.
7. Data breaches
We comply with the Notifiable Data Breaches (NDB) scheme under the Privacy Act 1988. If we experience a data breach that is likely to result in serious harm to any individual whose information is involved, we will:
- Assess the breach promptly
- Notify the Office of the Australian Information Commissioner (OAIC) as soon as practicable
- Notify affected individuals directly where required
8. How long we keep your information
We retain your personal information for as long as necessary to provide our services and comply with our legal obligations. When your information is no longer needed, we will securely destroy or de-identify it.
After termination of your agreement with us, we retain basic records (such as invoices and communications) for a minimum of seven years for legal and accounting purposes. Account credentials and sensitive operational data are deleted within 30 days of termination.
9. Cookies and website analytics
Our website uses cookies and analytics tools (such as Google Analytics) to understand how visitors use our site. This information is collected in aggregate and is not linked to your personal identity.
You can disable cookies through your browser settings at any time. Note that some features of our website may not function correctly if cookies are disabled.
10. Your rights
Under the Australian Privacy Principles, you have the right to:
Access your information — request a copy of the personal information we hold about you.
Correct your information — ask us to correct any information that is inaccurate, incomplete, or out of date.
Make a complaint — if you believe we have handled your personal information in a way that breaches the APPs, you can make a complaint to us directly. We will respond within 30 days. If you are not satisfied with our response, you may refer your complaint to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
Withdraw consent — where we rely on your consent to process your information, you may withdraw that consent at any time by contacting us. Note that withdrawal of consent may affect our ability to provide certain services to you.
To exercise any of these rights, contact us at harry@arcmanagement.com.
11. Third-party platforms
Our services involve working with third-party platforms including OnlyFans, Reddit, Twitter/X, Instagram, and TikTok. These platforms have their own privacy policies and terms of service which govern how they handle personal information. We are not responsible for the privacy practices of these third-party platforms.
12. Links to other websites
Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites. We encourage you to read the privacy policies of any external site you visit.
13. Changes to this policy
We may update this privacy policy from time to time to reflect changes in our practices or in applicable law. The most current version will always be available on our website. We will notify existing clients of any material changes by email.
14. Contact us
For any privacy-related questions, requests, or complaints:
ARC Management
harry@arcmanagement.com
We aim to respond to all privacy enquiries within 30 days.
This privacy policy was prepared in good faith based on Australian privacy law as at February 2025. ARC Management recommends seeking independent legal advice to ensure this policy meets your specific legal obligations. This policy does not constitute legal advice.