Security

Reviewed April 2026

Free tool • Australian-focused • Personal details removed before comparison where possible.

1. What this page covers

This page explains Bill Zap's security approach in plain English. It focuses on the protections users should reasonably expect without publishing every technical setting or supplier detail.

In short: bill uploads should be protected in transit, access to sensitive systems should be restricted, and direct personal details should be removed from comparison data where possible.

2. Core security principles

  • Least data possible: keep comparison data focused on rates, usage and tariff context.
  • Least access possible: limit who can access systems and data needed to run the service.
  • Defence in depth: use more than one control to protect uploads, processing and access.
  • Ongoing review: update processes as the product, risks and legal requirements change.

3. Practical controls users should expect

Protected uploads

  • Bill uploads and page sessions should use secure web connections.
  • File types and upload sizes are restricted to reduce obvious abuse.
  • Uploaded files are processed for bill comparison, not published as public content.

Restricted access

  • Access to administration and operational tools should be limited to authorised use.
  • Access is intended to be reviewed, controlled and logged where practical.
  • Sensitive workflows should follow least-privilege handling.

Safer processing

  • Inputs should be validated before processing.
  • Direct personal details are removed from comparison data where possible.
  • Original files are not intended to remain longer than necessary for processing and support.

4. What Bill Zap does not rely on this page for

This page is not a promise of any single product, vendor or certification. Specific tooling may change over time. What should stay consistent is the user-facing approach: careful upload handling, limited retention, and privacy built into the comparison workflow.

5. What you can do on your side

  • Upload bills only from devices and networks you trust.
  • Use the official Bill Zap domain before sharing a bill or email address.
  • Do not forward private result links unless you want someone else to view that result.
  • Be cautious of emails asking for passwords or unrelated personal information.

6. Related trust pages

For the fuller handling picture, also read the Privacy Policy and Data Protection page. If you want the product context first, go back to the bill upload tool, the community rates page or the About page.

7. Contact

For security questions, email security@billzap.com.au. For privacy or handling questions, email privacy@billzap.com.au.