Who we are
MSP Reports is a reporting platform operated by Athena Networks (“MSP Reports”, “we”, “us”). We are based in Australia and committed to handling personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
This policy explains how we handle personal information collected through mspreports.com.au and through the MSP Reports platform. If you have questions, contact us using the details in the Contact section.
Our two roles
We handle personal information in two distinct ways:
- As the organisation responsible for our own data. When you visit our website, request a demo, subscribe to updates, or become a customer, we decide how your information is handled and are responsible for it.
- As a service provider acting for our customers. When a managed service provider (MSP) uses MSP Reports, we process data from the systems they connect on their behalf and under their instructions. The MSP — our customer — remains responsible for that data and for the relationship with their own clients. Where the data of an MSP’s clients is involved, that MSP’s privacy policy and contract with us govern how it is handled. If you are an end client of an MSP, please direct privacy requests to your MSP in the first instance.
Information we collect
Through our website and sales process we may collect:
- Contact and enquiry details — your name, work email, company, role, company size, and anything you tell us when you request a demo, fill in a form, or email us.
- Subscription details — the email address you provide to receive product updates.
- Technical and usage information — basic analytics such as pages viewed, approximate location derived from IP address, device and browser type, and referring site. See Cookies & analytics.
You do not have to provide your personal information, but we may not be able to respond to your enquiry or provide the service without it.
Data we process for MSPs
When an MSP connects their tools to MSP Reports, the platform retrieves operational data so it can be compiled into branded, client-ready reports. This can include information drawn from the MSP’s professional services automation (PSA), remote monitoring and management (RMM), Microsoft 365, security, backup, and network systems — for example ticket and service metrics, device and patch status, user and licence counts, security and backup events, and uptime figures.
Some of this may include limited personal information (such as the names or email addresses of an MSP’s staff or client contacts). We process this data only to provide and support the service, on the instructions of the MSP, and we do not use it for our own marketing or sell it.
How we use information
We use personal information to:
- respond to enquiries, arrange demos, and provide quotes;
- provide, operate, support, and improve the MSP Reports platform;
- generate and deliver reports on the schedules our customers configure;
- send service communications and, where you have opted in, product updates;
- maintain security, prevent misuse, and meet our legal obligations.
Disclosure & sub-processors
We do not sell personal information. We disclose it only to:
- Service providers (sub-processors) that help us run the platform — including cloud hosting, an AI processing provider used to help summarise report content, email delivery, analytics, and payment processing. We require these providers to protect personal information consistent with this policy, and we can provide more detail about the categories of provider we use on request.
- the MSP customer whose tenant the data belongs to;
- others where you ask us to, or where we are required or permitted by law.
Hosting & security
MSP Reports is Australian-built and hosted in Australia, and aligned to ISO 27001 practices. We take reasonable steps to protect personal information from misuse, loss, and unauthorised access — including access controls, encryption in transit, and tenant separation so each MSP’s data is kept apart from others’.
If a data breach occurs that is likely to result in serious harm, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) in line with the Notifiable Data Breaches scheme.
Data retention
We keep personal information only for as long as needed for the purposes above or as required by law. Platform data is retained for the period set out in the customer’s agreement and deleted or returned on request after termination. Enquiry and marketing data is kept for up to 24 months after our last contact with you, or until you ask us to remove it, whichever is sooner.
Your rights
You can ask us to access or correct the personal information we hold about you, and to unsubscribe from marketing at any time. We will respond within a reasonable period. If you are an end client of an MSP, contact your MSP first, as they control that data. To make a request, use the details in Contact.
Cookies & analytics
Our website uses cookies and similar technologies to keep the site working and to understand how it is used so we can improve it. You can control cookies through your browser settings; disabling some may affect how the site works. We use privacy-focused analytics and do not use cookies to track you across other websites.
Overseas disclosure
We host platform data in Australia. Some of our service providers — such as email delivery and analytics — may store or process limited information overseas. Where this happens, we take reasonable steps to ensure your information is handled consistently with the APPs.
Changes
We may update this policy from time to time. The “last updated” date above shows when it last changed, and material changes will be notified where appropriate.
Contact & complaints
For privacy questions, requests, or complaints, contact us at josh@athenanetworks.com.au or via our contact page. If you are not satisfied with our response, you can contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.