Information We Collect

When you use our services, we collect several types of information to help you make better financial decisions. Here's what we gather and why it matters:

Personal Identification Information

We collect basic details like your name, email address, phone number, and postal address. This helps us communicate with you about your account and provide personalized financial insights.

Financial Information

To offer relevant guidance on financial decision-making, we may collect information about your financial goals, investment preferences, and general financial situation. We never store your bank account passwords or full credit card numbers on our servers.

Technical Data

Like most websites, we automatically collect certain technical information when you visit us. This includes your IP address, browser type, device information, and how you navigate through our site. We use this to improve our platform and spot any security issues early.

How We Use Your Information

Your data isn't just sitting in a database somewhere. We actively use it to provide better services and protect your interests:

• Service Delivery: We use your information to provide financial decision-making tools, generate personalized insights, and communicate important updates about your account.
• Platform Improvement: We analyze usage patterns to understand what features work well and what needs refinement. This helps us build a better product for everyone.
• Security and Fraud Prevention: We monitor for suspicious activity and use your information to verify your identity when needed.
• Legal Compliance: Sometimes we're required by Australian law to collect and retain certain information, particularly for financial services.
• Communication: We'll send you important service updates, respond to your inquiries, and occasionally share relevant financial insights that might help your decision-making.

We don't sell your personal information to third parties. That's not how we operate, and it never will be.

Data Storage and Security

Your information is stored on secure servers located in Australia. We use industry-standard encryption both when data is moving between your device and our servers, and when it's stored in our systems.

Security Measures

We implement several layers of protection:

• 256-bit SSL encryption for all data transmission
• Regular security audits and vulnerability assessments
• Access controls that limit who can view your information internally
• Automated monitoring systems that alert us to potential breaches
• Regular staff training on data protection and privacy practices

But here's the reality: no system is completely bulletproof. While we do everything reasonable to protect your data, we can't guarantee absolute security. If we ever detect a breach that affects your information, we'll notify you promptly as required by Australian law.

Sharing Your Information

We don't hand over your data casually. When we do share information, it's always for specific reasons and with strict protections in place.

All third parties we work with are contractually obligated to protect your information and use it only for the purposes we've specified. We vet our partners carefully and review their security practices regularly.

Your Privacy Rights

Under the Australian Privacy Act 1988 and the Australian Privacy Principles, you have significant control over your personal information. Here's what you can do:

Access Your Information

You can request a copy of all personal information we hold about you. We'll provide this within 30 days at no charge, unless the request is particularly complex or unreasonable.

Correct Inaccurate Information

If you spot something wrong in the information we have, let us know. We'll update it promptly and notify any third parties we've shared that information with if necessary.

Request Deletion

You can ask us to delete your personal information. We'll comply unless we have a legitimate reason to keep it – like legal obligations or ongoing disputes. Even then, we'll explain why we need to retain certain data.

Object to Processing

If you disagree with how we're using your information, you can object. We'll either stop or explain why we believe we have a legitimate reason to continue.

Data Portability

You can request your data in a structured, commonly used format that you can transfer to another service provider.

Cookies and Tracking

We use cookies and similar technologies to make our site work properly and understand how people use it. Most are essential for basic functionality, but some help us improve your experience.

Types of Cookies We Use

• Essential Cookies: These keep you logged in and remember your preferences during a session. The site won't work properly without them.
• Analytics Cookies: These help us understand which features people use most and where they struggle. We use this to improve our platform.
• Performance Cookies: These measure how quickly pages load and help us spot technical issues.

You can control cookies through your browser settings. Just know that blocking certain cookies might affect how well our site works for you.

Data Retention

We don't keep your information forever. Here's how long we typically retain different types of data:

• Account Information: As long as your account is active, plus seven years after closure for financial record-keeping requirements
• Financial Records: Seven years from the end of the financial year they relate to, as required by Australian tax law
• Marketing Communications: Until you unsubscribe, then we'll just keep a record that you've opted out
• Technical Logs: Typically 12 months, unless needed for security investigations

When we no longer need your information, we securely delete or anonymize it so it can't be traced back to you.

International Data Transfers

Your information is primarily stored and processed in Australia. Occasionally, we might transfer data to service providers in other countries – particularly for cloud hosting services that operate globally.

When we do transfer data internationally, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by Australian authorities or transfers to countries with adequate privacy protections.

Children's Privacy

Our services aren't designed for anyone under 18. We don't knowingly collect information from children. If you're a parent and believe your child has provided us with personal information, contact us immediately and we'll delete it.

Changes to This Policy

We update this policy occasionally to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you by email or through a prominent notice on our website at least 30 days before the changes take effect.

The "Effective Date" at the top tells you when this version was last updated. We recommend checking back periodically, especially if you haven't visited in a while.

Making a Complaint

If you're concerned about how we've handled your personal information, we want to hear about it. First, contact our privacy team directly – we'll investigate and respond within 30 days.

If you're not satisfied with our response, you can lodge a complaint with the Office of the Australian Information Commissioner:

• Website: www.oaic.gov.au
• Phone: 1300 363 992
• Email: enquiries@oaic.gov.au

The OAIC provides independent review of privacy complaints and can investigate issues between you and us if we can't resolve them directly.