the second system

You already have a WHS system.
ReFresh completes it for psychosocial.

Request demo

Request demo

the second system

You already have a WHS system.
ReFresh completes it for psychosocial.

Request demo

Request demo

trusted by leading ASX & Global enterprises

trusted by leading ASX & Global enterprises

Psychosocial risk intelligence across your entire organisation

ReFresh provides risk intelligence across all 17 psychosocial hazard categories defined in the Code of Practice, using structured assessment designed for hazards you cannot identify through a site walk-through. The OS makes psychosocial risk visible across teams, sites, and jurisdictions so your organisation knows where hazards concentrate and how severe they are, continuously rather than once a year.

Structured identification across all 17 hazard categories

Multi-site and multi-jurisdiction hazard mapping

Prevalence and severity scoring by role, team, and location

Continuous risk intelligence replacing annual snapshots

A wide, grounded shot of a large enterprise safety operations centre — not a dark-walled security NOC, but a bright, open workspace where a national WHS team of four or five people works. The team is distributed across a cluster of desks, each engaged in a different aspect of the risk intelligence picture: one is on a call with a site manager, headset on, making notes. Another is reviewing a monitor showing a geographic site-status view. A third is comparing two printed site-level summaries side by side. A fourth is walking between desks carrying a tablet. At the centre of the cluster, a large wall-mounted screen shows a national psychosocial risk overview — site-level status indicators arranged across a map of Australia, coloured blocks showing severity by region — visible in structure and colour but not legible.

Psychosocial risk intelligence across your entire organisation

ReFresh provides risk intelligence across all 17 psychosocial hazard categories defined in the Code of Practice, using structured assessment designed for hazards you cannot identify through a site walk-through. The OS makes psychosocial risk visible across teams, sites, and jurisdictions so your organisation knows where hazards concentrate and how severe they are, continuously rather than once a year.

Structured identification across all 17 hazard categories

Multi-site and multi-jurisdiction hazard mapping

Prevalence and severity scoring by role, team, and location

Continuous risk intelligence replacing annual snapshots

A wide, grounded shot of a large enterprise safety operations centre — not a dark-walled security NOC, but a bright, open workspace where a national WHS team of four or five people works. The team is distributed across a cluster of desks, each engaged in a different aspect of the risk intelligence picture: one is on a call with a site manager, headset on, making notes. Another is reviewing a monitor showing a geographic site-status view. A third is comparing two printed site-level summaries side by side. A fourth is walking between desks carrying a tablet. At the centre of the cluster, a large wall-mounted screen shows a national psychosocial risk overview — site-level status indicators arranged across a map of Australia, coloured blocks showing severity by region — visible in structure and colour but not legible.

Safety orchestration that turns identified hazards into tracked, owned responses

ReFresh turns psychosocial hazards into systematic responses through safety orchestration: every control connected to the hazard it addresses, assigned to a named owner with a deadline, and monitored for effectiveness over time. The OS produces the same evidentiary rigour for psychosocial controls that your safety team already expects for physical controls, with a time-stamped audit trail from identification through to review.

Named control ownership with defined deadlines

Effectiveness monitoring over time

Time-stamped audit trail from identification to review

Controls linked to hazards with clear accountability

A regional WHS manager in her early 40s conducting a fifteen-minute stand-up meeting with three site-level safety representatives in a large manufacturing company's regional office. The four are standing around a high bench table — no chairs, no laptops, just a single printed action tracker between them on the table showing a structured list of psychosocial controls with owner initials, site codes, due dates, and status indicators — visible in layout and colour but not legible. Each safety rep is from a different site — their clothing subtly different: one in a blue work polo, one in a grey collared shirt with a different site's name embroidered, one in hi-vis with a radio clipped to her belt. The regional manager is pointing at a specific line on the tracker, asking a direct question. The safety rep whose initials are beside that line is answering.

Safety orchestration that turns identified hazards into tracked, owned responses

ReFresh turns psychosocial hazards into systematic responses through safety orchestration: every control connected to the hazard it addresses, assigned to a named owner with a deadline, and monitored for effectiveness over time. The OS produces the same evidentiary rigour for psychosocial controls that your safety team already expects for physical controls, with a time-stamped audit trail from identification through to review.

Named control ownership with defined deadlines

Effectiveness monitoring over time

Time-stamped audit trail from identification to review

Controls linked to hazards with clear accountability

A regional WHS manager in her early 40s conducting a fifteen-minute stand-up meeting with three site-level safety representatives in a large manufacturing company's regional office. The four are standing around a high bench table — no chairs, no laptops, just a single printed action tracker between them on the table showing a structured list of psychosocial controls with owner initials, site codes, due dates, and status indicators — visible in layout and colour but not legible. Each safety rep is from a different site — their clothing subtly different: one in a blue work polo, one in a grey collared shirt with a different site's name embroidered, one in hi-vis with a radio clipped to her belt. The regional manager is pointing at a specific line on the tracker, asking a direct question. The safety rep whose initials are beside that line is answering.

Governance evidence that reaches the board without manual assembly

ReFresh generates governance evidence from the operational data your safety and people teams work with, so boards, executives, and risk committees receive structured visibility into psychosocial risk without a separate reporting exercise. The OS aggregates risk data across sites, business units, hazard categories, and jurisdictions, producing the compliance posture, control status, and trend data governance stakeholders need on demand.

Board-ready reporting from live operational data

Consolidated view across sites, business units, and jurisdictions

Officer due diligence evidence produced continuously

No manual report assembly required

A group company secretary in his late 40s walking down a wide, carpeted corridor in a large corporate headquarters, carrying a slim leather document folder under one arm, heading toward a set of closed boardroom doors at the end of the corridor. He is mid-stride, relaxed, checking his watch — not because he is late, but because he is early and confirming it. The boardroom doors are the focal point at the end of the corridor: heavy, formal, the kind of doors that lead to a governance meeting of a listed entity.

Governance evidence that reaches the board without manual assembly

ReFresh generates governance evidence from the operational data your safety and people teams work with, so boards, executives, and risk committees receive structured visibility into psychosocial risk without a separate reporting exercise. The OS aggregates risk data across sites, business units, hazard categories, and jurisdictions, producing the compliance posture, control status, and trend data governance stakeholders need on demand.

Board-ready reporting from live operational data

Consolidated view across sites, business units, and jurisdictions

Officer due diligence evidence produced continuously

No manual report assembly required

A group company secretary in his late 40s walking down a wide, carpeted corridor in a large corporate headquarters, carrying a slim leather document folder under one arm, heading toward a set of closed boardroom doors at the end of the corridor. He is mid-stride, relaxed, checking his watch — not because he is late, but because he is early and confirming it. The boardroom doors are the focal point at the end of the corridor: heavy, formal, the kind of doors that lead to a governance meeting of a listed entity.

Enterprise-grade security and privacy

ReFresh is built to meet the security, privacy, and governance standards enterprise organisations require. Psychosocial data is sensitive by nature, and the OS is designed to handle it with the controls and certifications your IT and security teams expect.

SOC 2 Type I and Type II certified

GDPR and Australian Privacy Principles compliant

Role-based access controls and audit trails

Australian data residency (AWS Sydney)

A quiet, composed shot of a chief information security officer in his early 50s and a data protection officer in her mid-40s sitting in a secure, glass-walled office within a corporate IT floor. The office is subtly distinct from a normal meeting room: a card-access reader is visible on the door frame, the glass has a frosted privacy band at eye level, and a small "Restricted Access" sign is mounted beside the door — understated, not alarming. Inside, the two are sitting at a small round table reviewing a printed security assessment — a structured document with compliance framework checkboxes, certification references, and a sign-off block — visible in layout but not legible. The CISO has a pen resting on the document. The DPO is asking a question, one hand gesturing toward a specific section. Through the frosted glass band, the IT floor beyond is faintly visible — server racks in a glassed-in room, workstations, the quiet infrastructure of an enterprise technology environment.

Enterprise-grade security and privacy

ReFresh is built to meet the security, privacy, and governance standards enterprise organisations require. Psychosocial data is sensitive by nature, and the OS is designed to handle it with the controls and certifications your IT and security teams expect.

SOC 2 Type I and Type II certified

GDPR and Australian Privacy Principles compliant

Role-based access controls and audit trails

Australian data residency (AWS Sydney)

A quiet, composed shot of a chief information security officer in his early 50s and a data protection officer in her mid-40s sitting in a secure, glass-walled office within a corporate IT floor. The office is subtly distinct from a normal meeting room: a card-access reader is visible on the door frame, the glass has a frosted privacy band at eye level, and a small "Restricted Access" sign is mounted beside the door — understated, not alarming. Inside, the two are sitting at a small round table reviewing a printed security assessment — a structured document with compliance framework checkboxes, certification references, and a sign-off block — visible in layout but not legible. The CISO has a pen resting on the document. The DPO is asking a question, one hand gesturing toward a specific section. Through the frosted glass band, the IT floor beyond is faintly visible — server racks in a glassed-in room, workstations, the quiet infrastructure of an enterprise technology environment.

INTEGRATIONS

ReFresh connects to your existing systems, not the other way around

ReFresh connects to your existing systems, not the other way around

ReFresh integrates with your existing WHS, HRIS, and workplace platforms to create a single psychosocial compliance layer without duplicating workflows or requiring your teams to switch systems. Incident data flows from your WHS platform into the OS. Employee data syncs from your HRIS. The OS handles everything psychosocial.

ReFresh integrates with your existing WHS, HRIS, and workplace platforms to create a single psychosocial compliance layer without duplicating workflows or requiring your teams to switch systems. Incident data flows from your WHS platform into the OS. Employee data syncs from your HRIS. The OS handles everything psychosocial.

INTEGRATIONS

ReFresh connects to your existing systems, not the other way around

ReFresh integrates with your existing WHS, HRIS, and workplace platforms to create a single psychosocial compliance layer without duplicating workflows or requiring your teams to switch systems. Incident data flows from your WHS platform into the OS. Employee data syncs from your HRIS. The OS handles everything psychosocial.

EHS integration: incidents with a psychosocial dimension route into the OS for structured investigation

HRIS integration: employee data syncs so the OS reflects your current workforce structure

Governance outputs: reporting formatted for your existing board and risk committee cycles

Purpose-built for the obligation your current system does not cover.

Enterprise ready.
Infinitely scalable.
Human at heart.

The psychosocial operating system sits alongside your existing WHS platform, handling hazard identification, risk assessment, controls, and governance evidence across the 17 psychosocial hazard categories the Code of Practice defines. Your existing system handles physical safety. The OS handles psychosocial. Your safety and people teams get their time back.

The psychosocial operating system sits alongside your existing WHS platform, handling hazard identification, risk assessment, controls, and governance evidence across the 17 psychosocial hazard categories the Code of Practice defines. Your existing system handles physical safety. The OS handles psychosocial. Your safety and people teams get their time back.

17

Psychosocial hazard categories covered

4 weeks

Onboarding

$288,542

Average serious psychological injury claim cost

50,000+

Scalable to 50k+ employees

SECURITY & COMPLIANCE

Your data.
Always protected.

Your data.
Always protected.

Your data.
Always protected.

Refresh is GDPR, SOC2, & USDP compliant

Refresh is GDPR, SOC2, & USDP compliant

Security standards

ReFresh is SOC 2 Type I and Type II certified, GDPR compliant, and aligned with Australian Privacy Principles. AWS hosts the platform in Sydney, and we undergo annual third-party audits to ensure platform and infrastructure security.

Security standards

ReFresh is SOC 2 Type I and Type II certified, GDPR compliant, and aligned with Australian Privacy Principles. AWS hosts the platform in Sydney, and we undergo annual third-party audits to ensure platform and infrastructure security.

Confidential by design

Psychosocial data is structured and access-controlled so sensitive information is visible only to the people who need to see it. Role-based permissions ensure worker confidentiality is maintained throughout the compliance lifecycle.

Confidential by design

Psychosocial data is structured and access-controlled so sensitive information is visible only to the people who need to see it. Role-based permissions ensure worker confidentiality is maintained throughout the compliance lifecycle.

Custom permissions

Configurable access controls allow your admin team to set clear boundaries. Safety leads, HR, executives, and board members see the data appropriate to their role, nothing more.

Custom permissions

Configurable access controls allow your admin team to set clear boundaries. Safety leads, HR, executives, and board members see the data appropriate to their role, nothing more.

Custom permissions

Configurable access controls allow your admin team to set clear boundaries. Safety leads, HR, executives, and board members see the data appropriate to their role, nothing more.

GOT QUESTIONS?

Frequently asked questions

Frequently asked questions

What is the second system model?

In the second system model, ReFresh runs alongside an existing safety or HR system, such as Donesafe, and provides the psychosocial capability that system lacks. You keep your current platform and add ReFresh as the specialist layer, typically without rolling out a separate worker portal.

How does ReFresh integrate with our existing WHS platform?


Does our workforce need to use two systems?


What HRIS integrations are supported?


How does multi-site, multi-jurisdiction compliance work?


How long does enterprise onboarding take?


One psychosocial operating system that runs alongside your existing infrastructure, giving your safety and people teams their time back.

One psychosocial operating system that runs alongside your existing infrastructure, giving your safety and people teams their time back.

Request demo

Request demo