Last updated: 4 June 2026

This Privacy Policy explains how EnergyIQ Pty Ltd trading as IQ LAB (IQ LAB, we, us or our) collects, holds, uses, discloses and protects personal information.

IQ LAB operates the IQ LAB® website at https://iqlab.com.au/ and provides energy management, monitoring, procurement, reporting and related platform services for Australian business customers.

By using our website, contacting us, creating an account, using the IQ LAB platform, submitting onboarding information, signing a Letter of Authority, connecting energy data, using procurement tools, or otherwise interacting with us, you acknowledge that we will handle personal information in accordance with this Privacy Policy.

1. About this Privacy Policy

‍

This Privacy Policy applies to personal information collected by IQ LAB through:

a. our website;

b. enquiry forms, demo requests and contact forms;

c. account creation and platform access;

d. onboarding forms and customer setup processes;

e. Letters of Authority and other customer authorisations;

f. customer support and communications;

g. uploaded documents, including bills, contracts and energy-related records;

h. energy monitoring, billing, procurement, reporting and related platform services;

i. Consumer Data Right-enabled data access facilitated through Adatree under the Business Consumer Data Consent access model;

j. solar, battery, inverter, submetering and asset data integrations;

k. procurement, tender, and request for proposal workflows;

l. energy comparison and sign-up workflows;

m. marketing communications and newsletters; and

n. any other interaction you have with IQ LAB.

This Privacy Policy should be read together with our Website Terms of Use, Platform Terms and Conditions, CDR and Energy Data Notice, Security and Data Handling Statement, Letter of Authority, and any applicable order form, proposal, subscription terms or service schedule.

2. Australian privacy law

‍

We handle personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles, where they apply to us.

We also aim to handle energy data, CDR-enabled data and customer data in a transparent, secure and commercially responsible way.

This Privacy Policy does not limit any privacy rights you may have under applicable law.

3. What is personal information?

‍

Personal information means information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether the information or opinion is true or not and whether it is recorded in a material form or not.

In a business context, this may include names, job titles, business contact details, email addresses, phone numbers, platform user details, login activity, support communications and other information connected to individuals using or interacting with IQ LAB.

4. Information we collect

‍

The types of personal information we may collect include:

a. name;

b. job title or role;

c. business name;

d. ABN, ACN or other business identifiers;

e. work email address;

f. phone number;

g. billing contact details;

h. account login details and user permissions;

i. platform usage information;

j. support enquiries and communications;

k. marketing preferences;

l. payment and subscription administration information;

m. information submitted through our website, forms or onboarding processes;

n. information contained in a Letter of Authority, site appendix, order form, proposal or customer authorisation;

o. documents uploaded or supplied to IQ LAB, including bills, contracts, invoices, energy agreements, metering documents, retailer correspondence and related records;

p. information about sites, meters, NMIs, MIRNs, energy accounts, retailers, metering providers, network tariffs, solar systems, battery systems, inverters, asset feeds and related energy infrastructure;

q. energy usage, billing, contract and reporting information, where connected to an identifiable individual or business contact;

r. CDR-enabled energy data where consented to by an eligible business customer or authorised representative;

s. information required to support our procurement, comparison, reporting, and related energy services; and

t. any other information you provide to us or authorise us to access.

5. Business information and energy data

‍

IQ LAB primarily provides services to business customers. Much of the information we handle relates to businesses, sites, meters, energy accounts, energy usage, contracts, invoices, tariffs, reports, procurement activities and sustainability reporting.

Some business information may also contain personal information, particularly where it identifies a director, employee, authorised representative, account contact, billing contact, platform user or other individual.

Where business information includes personal information, we handle that personal information in accordance with this Privacy Policy.

6. Sensitive information

‍

We do not generally seek to collect sensitive information, such as health information, biometric information, racial or ethnic origin, political opinions, religious beliefs, trade union membership or criminal record information.

You should not provide sensitive information to IQ LAB unless we request it and you consent to us collecting it, or unless it is required by law.

If we receive sensitive information that is not required for our services, we may delete, de-identify or securely restrict access to that information where appropriate.

7. How we collect information

‍

We may collect personal information directly from you when you:

a. visit our website;

b. submit an enquiry or demo request;

c. download a resource;

d. subscribe to updates or marketing communications;

e. create an IQ LAB account;

f. invite users to an account;

g. complete onboarding forms;

h. sign or provide a Letter of Authority or other customer authorisation;

i. complete a site appendix, order form, proposal, service schedule or subscription form;

j. upload bills, contracts, invoices or other documents;

k. contact us by email, phone, meeting, video call or messaging platform;

l. use the IQ LAB platform;

m. launch or participate in a tender, request for proposal process, comparison, or sign-up workflow;

n. purchase, use, or request additional platform services;

o. connect data sources or authorise data access;

p. authorise API connections or third-party integrations;

q. complete a Consumer Data Right-enabled consent process;

r. interact with our support team;

s. make payments or subscribe to a plan; or

t. otherwise provide information to us.

We may also collect information from third parties where authorised or reasonably necessary to provide our services, including:

a. energy retailers;

b. metering providers;

c. metering coordinators;

d. distributors;

e. network providers;

f. data holders;

g. Adatree and related CDR-enabled data services;

h. solar, battery, inverter and asset monitoring providers;

i. API-connected platforms and technology providers;

j. finance providers, contractors, consultants, suppliers and implementation providers;

k. payment processors, including Stripe;

l. accounting systems, including Xero;

m. business partners, referral partners or authorised representatives;

n. publicly available business sources; and

o. other service providers or third parties connected with the services we provide.

Where you sign a Letter of Authority, complete onboarding, authorise data access, connect an integration, launch a procurement workflow or provide another form of authority, we may rely on that authority to request, access, receive, use and disclose relevant information for the purposes described in this Privacy Policy, our Platform Terms and Conditions, our CDR and Energy Data Notice, the applicable Letter of Authority and any applicable customer agreement.

8. Why we collect, use and disclose information

‍

We collect, use and disclose personal information for purposes connected with our business and services, including to:

a. operate, support, and improve our website, platform, and services;

b. respond to enquiries and demo requests, and create and manage customer accounts;

c. onboard customers, sites, meters, and users, and act on customer authorisations such as a Letter of Authority or platform permission;

d. request, receive, manage, and disclose energy-related information with retailers, metering providers, distributors, network providers, data providers, and other relevant parties in order to provide our services;

e. provide energy monitoring, analysis, bill validation, reporting, procurement, comparison, and related services;

f. manage subscriptions, payments, invoices, and accounting records;

g. provide customer support and send service, account, and relevant marketing communications;

h. maintain records and meet our legal, accounting, audit, compliance, and dispute obligations; and

i. protect our rights, customers, systems, and legitimate interests.

9. Website, cookies and analytics

‍

When you use our website, we may collect information such as:

a. IP address;

b. browser type;

c. device type;

d. pages visited;

e. time and date of visits;

f. referral source;

g. general location information;

h. interaction data; and

i. form submission data.

We may use cookies, pixels, tags, analytics tools and similar technologies to operate the website, understand website performance, improve user experience, measure marketing activity and support security.

You may be able to disable cookies through your browser settings. Some parts of the website may not work properly if cookies are disabled.

10. Account creation and platform users

‍

When a customer creates an IQ LAB account, we may collect and use information about account administrators, authorised users, billing contacts, technical contacts and other customer representatives.

This may include:

a. name;

b. email address;

c. role or job title;

d. business contact details;

e. account permissions;

f. login activity;

g. user activity;

h. invited users;

i. support history; and

j. platform usage information.

Customers are responsible for ensuring that only authorised users are invited to their account and that user access is kept accurate and up to date.

11. Onboarding information

‍

During onboarding, we may collect information required to set up a customer account, including:

a. customer entity details;

b. ABN or ACN;

c. site details;

d. meter identifiers, including NMI or MIRN;

e. retailer information;

f. metering provider information;

g. network tariff information;

h. contract details;

i. historical bills and invoices;

j. energy usage data;

k. solar, battery, inverter or asset information;

l. contact and billing details;

m. authorised representatives;

n. Letters of Authority, site appendices and customer authorisations;

o. plan and subscription information; and

p. other information required to configure the platform or provide services.

You must only provide onboarding information if you are authorised to do so.

12. CDR-enabled energy data

‍

IQ LAB accesses certain Consumer Data Right-enabled energy data through Adatree under the Business Consumer Data Consents (BCDC) access model. Adatree is the Accredited Data Recipient.

An eligible business customer, or an authorised representative of that customer, consents through Adatree’s CDR consent process to Adatree disclosing their CDR energy data to IQ LAB for the purposes set out in that consent.

IQ LAB is not itself accredited under the CDR. We use CDR-enabled energy data only for the purposes covered by the relevant consent and in accordance with this Privacy Policy, to provide services such as energy monitoring, analysis, bill validation, reporting, procurement, and comparison support.

If consent is not given or is later withdrawn, we may be unable to provide some features that rely on that data. The detailed terms that apply to CDR-enabled data access, consent, withdrawal, and handling are set out in our CDR and Energy Data Notice.

13. Solar, battery, inverter, metering and asset data

‍

IQ LAB may connect with or receive data from solar systems, battery systems, inverters, submetering devices, metering providers, monitoring hardware, asset feeds or related technology providers where authorised by the customer.

This may include API-based connections, direct data feeds, device integrations, monitoring portals, metering data services or other authorised data access arrangements.

This data may be used to provide monitoring, reporting, alerts, analysis, recommendations, performance tracking, solar and battery insights, cost analysis, procurement support, emissions reporting and related platform functionality.

The availability, accuracy and frequency of this data may depend on third-party systems, device performance, site connectivity, API access, hardware configuration and customer authorisations.

14. Bill IQ and automated analysis

‍

IQ LAB may use uploaded bills, invoices, energy data, meter data, tariff data, retailer information, CDR-enabled data and other customer information to support automated or semi-automated analysis.

This may include Bill IQ, bill validation, tariff checks, demand analysis, contract checks, forecasting, reporting, alerts, recommendations, anomaly detection and other platform insights.

These tools are designed to support decision-making and improve visibility. They do not replace customer review, professional advice or final customer approval where required.

From time to time, automated or system-generated outputs may be incomplete, delayed or affected by the quality, availability or accuracy of source data.

Where we use computer programs to make, or to substantially assist in making, a decision using personal information, the kinds of personal information used may include account and contact details, site and meter information, energy usage and consumption data, billing and tariff information, contract information, and related energy data. The kinds of outputs these programs produce, or substantially assist in producing, may include bill validation results, tariff and contract checks, demand and usage analysis, forecasts, anomaly alerts, savings and cost estimates, emissions calculations, reports, and procurement recommendations.

These outputs are intended to support decisions made or reviewed by our customers and by IQ LAB, rather than to make final decisions about an individual without human involvement. If you would like more information about how these tools use personal information, you can contact us at info@iqlab.com.au.

15. ESG and Scope 2 reporting

‍

IQ LAB may use customer data, energy usage information, billing information, contract information, GreenPower information, emissions factors and related data to support ESG and Scope 2 reporting.

IQ LAB’s ESG reporting functionality is currently focused on Scope 2 electricity-related reporting, unless otherwise agreed in writing.

Reporting outputs may depend on customer-provided data, third-party data, applicable reporting standards, emissions factors, retailer information and available records.

Customers remain responsible for reviewing and approving any reports, disclosures or submissions made using IQ LAB outputs.

16. Procurement, comparison, metering and value-added services

‍

IQ LAB uses customer information to provide procurement, comparison, tender, metering, and related energy services.

Where authorised by the customer, including under a Letter of Authority, platform permission, or other customer authorisation, we may include customer sites, meters, and accounts in tenders, quote requests, and comparisons, request and exchange relevant information with retailers, metering providers, distributors, network providers, finance providers, and other relevant parties, and support sign-up, contract processing, and ongoing account management.

IQ LAB may receive fees, commissions, or other commercial benefits in connection with these services. These may be incorporated into rates or charges, or paid separately to IQ LAB, and are disclosed in the applicable Letter of Authority, proposal, customer agreement, or acceptance process.

Customer approval may be required before entering into energy contracts, accepting offers, appointing providers, or making binding procurement decisions, as set out in the applicable Letter of Authority, Platform Terms and Conditions, or customer agreement.

17. Payments and accounting

‍

IQ LAB may collect and use billing and payment-related information to manage subscriptions, invoices, payments, receipts, account status, and accounting records.

We use third-party providers, including Stripe for payment processing and Xero for accounting and invoicing.

IQ LAB does not store full payment card details directly. Payment card information is handled by Stripe or another authorised payment processor in accordance with its own terms, privacy policy and security standards.

We may store limited payment and billing information, such as customer name, billing contact, billing address, invoice records, payment status, subscription details, and transaction references.

18. Marketing communications

‍

We may use customer and prospect contact details to send relevant business communications, such as product and platform updates, energy market insights, newsletters, renewal reminders, onboarding and service information, event invitations, and relevant offers.

We may send these communications directly or through a reputable email marketing or communications provider.

You can unsubscribe from marketing communications by using the unsubscribe link in the message or by contacting us at info@iqlab.com.au.

Even if you unsubscribe from marketing communications, we may still send service, account, billing, legal, security, onboarding or operational communications where required.

19. Who we disclose information to

‍

We may disclose personal information to third parties where reasonably necessary for the purposes described in this Privacy Policy, including:

a. employees, contractors and authorised representatives of IQ LAB;

b. cloud hosting and technology providers;

c. Adatree and related CDR-enabled service providers;

d. energy retailers;

e. metering providers;

f. metering coordinators;

g. distributors;

h. network providers;

i. solar, battery, inverter and asset monitoring providers;

j. payment processors, including Stripe;

k. accounting and invoicing providers, including Xero;

l. email, communications and marketing providers;

m. analytics and website service providers;

n. customer support and software providers;

o. finance providers, solar providers, battery providers, consultants, contractors and implementation partners;

p. professional advisers, including accountants, auditors, insurers and legal advisers;

q. business partners, referral partners or implementation partners where relevant and authorised;

r. regulators, government agencies, courts, tribunals or law enforcement bodies where required or permitted by law; and

s. any other person or organisation where you authorise us to disclose information.

We do not sell personal information to third parties.

20. Overseas disclosure

‍

IQ LAB’s platform infrastructure is hosted in Australia.

We do not outsource platform operations outside Australia. However, some third-party service providers we use, such as payment processors, accounting software providers, communications providers, analytics providers or other software providers, may process limited personal information in accordance with their own privacy and security terms.

Where this occurs, we take reasonable steps to use reputable providers and manage personal information in accordance with the Privacy Act and Australian Privacy Principles.

21. Data storage and security

‍

IQ LAB stores platform data using Australian-hosted cloud infrastructure.

We take reasonable technical, organisational and operational steps to protect personal information from misuse, interference, loss, unauthorised access, modification and disclosure.

These steps may include:

a. access controls;

b. user permissions;

c. secure authentication;

d. encryption in transit and at rest;

e. system monitoring;

f. internal data handling procedures;

g. staff and contractor access controls;

h. secure cloud infrastructure;

i. backup and recovery processes; and

j. review of security practices.

No system, platform, website, data transmission or storage method can be guaranteed to be completely secure. Customers are responsible for managing their own user access, passwords, devices, internal permissions and authorised representatives.

22. Data retention

‍

We retain personal information for as long as reasonably necessary for the purposes for which it was collected, including to provide services, manage accounts, maintain records, meet legal and accounting obligations, resolve disputes, enforce agreements, support audits, respond to regulatory requests and protect our legitimate business interests.

If a customer cancels or stops using IQ LAB, we may retain certain records where required or permitted for legal, accounting, audit, dispute, compliance, security and legitimate business purposes.

Where information is no longer required, we may delete, de-identify, archive or securely restrict access to it.

23. Access and correction

‍

You may request access to personal information we hold about you.

You may also request correction of personal information if you believe it is inaccurate, out of date, incomplete, irrelevant or misleading.

To make a request, contact us at info@iqlab.com.au.

We may need to verify your identity or authority before responding. We will respond within a reasonable time and in accordance with applicable law.

In some circumstances, we may refuse access or correction where permitted by law. If we refuse a request, we will provide reasons where required.

24. Managing users and account access

‍

Customer account administrators are responsible for managing user access within their organisation, including adding users, removing users, assigning permissions and ensuring that only authorised individuals can access the account.

If an individual leaves a customer organisation, changes role or no longer requires access, the customer should update or remove that user’s access promptly.

IQ LAB may suspend or restrict access where we reasonably believe there is unauthorised use, security risk, misuse, non-payment or breach of applicable terms.

25. Data deletion requests

‍

You may request deletion of personal information by contacting us at info@iqlab.com.au.

We will consider deletion requests in accordance with applicable law and our legal, accounting, audit, dispute, compliance, security and legitimate business requirements.

Some information may need to be retained even after a deletion request, including records required for tax, accounting, legal, regulatory, security, dispute or contractual purposes.

26. Notifiable Data Breaches

‍

If we become aware of a data breach involving personal information, we will assess the incident and take steps required under the Privacy Act and the Notifiable Data Breaches scheme, where applicable.

Where required by law, we will notify affected individuals and the Office of the Australian Information Commissioner.

27. Children

IQ LAB provides services to business customers and is not directed at children under 18.

We do not knowingly collect personal information from children under 18 through the website or platform.

28. Complaints

‍

If you have a privacy concern or complaint, please contact us first so we can try to resolve it.

Email: info@iqlab.com.au

Please include enough detail for us to understand and respond to your concern.

We will consider your complaint and respond within a reasonable time.

If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner at oaic.gov.au.

29. Changes to this Privacy Policy

‍

We may update this Privacy Policy from time to time.

The updated version will be published on our website with the updated date.

If we make material changes that affect how we handle personal information, we may take reasonable steps to notify customers or users, depending on the nature of the change.

30. Contact

‍

If you have any questions about this Privacy Policy or how we handle personal information, please contact us at:

EnergyIQ Pty Ltd trading as IQ LAB

Suite 1.08, 71 Queens Road

Melbourne VIC 3004

Australia

Email: info@iqlab.com.au