Find out what your board's governance is missing — before someone else does.

Directly from your browser to a private storage bucket on Google Cloud that we control — over an encrypted connection, using single-purpose upload links that expire after fifteen minutes and accept only the named file. Your documents never pass through our web server and are never emailed. Public access to the bucket is blocked at the platform level; there is no public path to your files.

Your documents are stored in Google Cloud’s Sydney region and stay there until deleted. The AI analysis runs on Google Cloud’s enterprise endpoints, which don’t guarantee an Australian processing region — so we don’t claim one. What we do claim, because the enterprise terms back it: your content is not used to train models and is not retained by the AI services after processing.

The automated systems that produce and deliver your report — the check runs in a dedicated cloud environment, separate from everything else we operate, with access scoped to exactly that. Nobody at Condense reads your documents in the normal course of a check; a person steps in only if a run fails or you ask us to intervene. We don’t share your documents with anyone, for any reason.

No. Every AI call — including the document text extraction — runs through Google Cloud’s enterprise endpoints under terms that prohibit using your content for model training. Nothing goes to consumer AI services, and we don’t keep your documents to tune our own tooling either.

Deletion is part of delivery, not a chore we remember later: once your report is delivered, an automated step removes your uploaded documents, your intake details, and the working data the check produced along the way, and writes a deletion record to a separate write-once audit store — the pipeline can add records there, never change or remove them. If a run pauses for more documents or fails before delivery, your documents and that working data are held in the same private storage so the run can resume without re-processing — and a storage rule removes everything within 30 days of submission regardless. So: deleted on delivery, and in any case gone within 30 days. Want them gone sooner? Email hello@condense.com.au from the address you submitted with and we’ll delete the run and confirm.

Because attachments can’t be recalled, and your findings deserve the same care as your documents. You get a notification email with a link to a report access page — never an attachment, never a raw download URL. The access page asks for your email address, and only when it matches the one from your submission and payment does it email you a fresh, short-lived download link. A forwarded or leaked link doesn’t expose your report. Payment itself is handled by Stripe — we never see your card details.

The read is AI — that’s what makes the systematic part possible: every document against every checklist item, at a price a small NFP can justify. The protection isn’t a promise to trust the machine: every finding cites the document it’s drawn from, so your board can check the evidence itself; and if your pack can’t support a useful assessment, the check pauses and says so rather than scoring what isn’t there. Behind it is a small senior team that built the method, watches the output, and answers when you email.

We pause and tell you, rather than score you on a half-empty pack. You’ll get an email listing what would get the assessment there; add documents through a secure link, or tell us to proceed with what we have — your report will then carry a clear note about the limited evidence base.