Last Updated: 20 March 2020
Credfin Australia Pty Ltd ACN 632 551 770 and its related bodies corporate (“Credfin”, "we", "our", "us") understand that you are concerned about your privacy, along with the confidentiality and security of personal information that you provide to us. When we refer to “personal information” we mean information that is associated with a specific person and can be used to reasonably identify that person. Personal information does not include information that has been made anonymous and cannot reasonably identify a specific person.
We treat all personal information collected by us in accordance with the Privacy Act 1988 (Cth) (as amended and supplemented) (Privacy Act), the Australian Privacy Principles contained within the Privacy Act, this policy and all other applicable laws.
Due to the nature of our business and the services that we provide, in most circumstances it is necessary for us to identify you. Where the circumstances allow, we will offer you the opportunity of interacting with us anonymously or using a pseudonym. Such situations will be limited and are only likely to arise where you have made a general enquiry with us, that does not require us to provide you with specific advice or services. For example, a generally query about our current services.
We receive and store certain types of information from you when you interact with us, or when we interact with our commercial partners. Examples of such interactions include:
We usually only collect personal information about an individual from that individual directly or from our commercial partners. Personal information collected by us typically includes an individual’s:
In general we use personal information for providing our services to you and responding to your enquiries, as well as evaluating, improving, personalising and developing our business. More specifically we use personal information:
You agree that we may use your personal information for the purposes for which we collect it and for related purposes which would be reasonably expected by you.
Other than for purposes referred to above, unless we are legally required or compelled by a law enforcement or government agency, we will not disclose your personal information to any third party without your consent.
You acknowledge that we may share personal information that we have collected with:
Before we disclose your personal information, we will take reasonable steps to satisfy ourselves that:
By providing us with your personal information, you consent to us disclosing your information to such entities without obtaining your consent on a case by case basis.
We may provide your credit information to a credit reporting body. The credit reporting body may provide the information that we report about you to other credit providers to assist them with assessing your credit worthiness. We may also obtain information that other credit providers have provided to the credit reporting body to use in our assessments of your credit-worthiness.
The information that we provide to a credit reporting body may sometimes be used for ‘pre-screening’ of direct marketing offers to be made by another credit provider. You may contact the credit reporting body to request that your credit information is not used in this way.
You may also contact the credit reporting body to request that they not use or disclose the credit-reporting information they hold about you if you consider that you may have been a victim of fraud or if you believe on reasonable grounds that the information they hold about you is incorrect. The credit reporting body must not use or disclose your credit information for a period of 21 days after receiving your notice.
From time to time we may use your personal information to provide you with current information about special offers you may find of interest, changes to our organisation, or new products or services being offered by us or any company we are associated with. By providing us with your personal information, you consent to us using your information to contact you on an ongoing basis for this purpose, including by mail, email, SMS, social media and telephone.
If you do not wish to receive marketing information, you may at any time decline to receive such information using the contact details below. We will not charge you for giving effect to your request and will take all reasonable steps to meet your request at the earliest possible opportunity.
Please be aware that even after you have opted-out of receiving promotional and marketing communications, we may still contact you for transactional or informational purposes.
Sensitive information is personal information regarding:
We will not generally collect or hold sensitive information, where we do, such information will not be disclosed to any third party without your express consent.
We take reasonable steps to protect personal information we hold from:
The precautionary steps we take to protect personal information include:
Notwithstanding that we use our best endeavours to protect all personal information we collect and hold, please be aware that we unfortunately cannot guarantee its complete security and will not be responsible where it is obtained by illegal third-party actions.
When personal information is no longer required to be kept by us, we will take reasonable steps to destroy or delete that personal information in a confidential manner.
Cookies are files with small amounts of data, which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your computer's hard drive.
We use "cookies" to collect information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some features of our website or receive all our products and services.
Web beacons (also known as clear gifs, pixel tags or web bugs) are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of web users or to access cookies.
Unlike cookies which are stored on the user’s computer hard drive, web beacons are embedded invisibly on web pages (or in e-mail).
Web beacons may be used to deliver or communicate with cookies, to count users who have visited certain pages and to understand usage patterns.
Like many sites, we use web beacons to collect information, which is done in accordance with this policy.
We may from time to time transfer personal information outside Australia in accordance with the Privacy Act to countries whose privacy laws do not provide the same level of protection as Australia’s privacy laws. For example, we may transfer your personal information to the Asia-Pacific, European Union or the United States of America. We may also use cloud storage and IT servers that are located offshore.
Furthermore, while our customers and commercial partners are generally based within Australia, they may also have operations internationally. As a result, we are unfortunately unable to monitor what information our customers and commercial partners may disclose overseas. We are also unable to identify the specific countries where our customers and commercial partners may allow their information to be disclosed to, or accessed from.
We may use Google Analytics to track your usage of our websites. Google Analytics is a web analysis service provided by Google. Google utilises the data collected to track and examine the use of our website, to prepare reports on our website’s activities and share them with other Google services.
By providing us with your personal information, you consent to us disclosing your information to entities located outside Australia and, when permitted by law to do so, on the basis that we are not required to take steps to ensure that any overseas recipient complies with Australian privacy laws in relation to your personal information.
We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third party sites, products or services whatsoever. You should be aware that your ability to opt-out of a third party tool or platform will depend on the conditions governing your agreement with that third party.
We will provide you with access to your personal information held by us unless:
If you would like access to your personal information aside from your account information, you must contact us in writing making such a request. You may contact us via email at email@example.com. Following receipt of your request, we will contact you and either provide you with the information you have sought or return to you with an explanation detailing why we will not provide you with the information.
If you wish to amend personal information that we hold other than via your account, please contact us to request the amendment. You may contact us by emailing firstname.lastname@example.org. If we elect not to correct your information, we will notify you, within a reasonable time, of the reason for our refusal, the mechanisms available for you to complain about our refusal and such other matters required by the Privacy Act.
If you wish to have your personal information deleted, please let us know and we will take all reasonable steps to delete it, unless we are required to keep it for legal reasons.
If you are located outside of Australia and choose to provide your personal information to us, your personal information will be transferred to Australia and processed in accordance with this Policy.
We strive to ensure our compliance with this Policy and to regularly review our practices against it.
If at any time you have a complaint against us regarding our Policy, including a breach of the Privacy Act, we invite you to make a complaint by emailing email@example.com.
All complaints made will be dealt with in confidence. We endeavour to respond within 30 days of receipt of a complaint with a resolution or proposed resolution to the issue raised.
If you are dissatisfied with our response to your compliant you may make a further complaint to the Office of the Australian Information Commissioner about the handling of your personal information. Information on making a privacy complaint can be found on their website at http://www.oaic.gov.au/privacy/making-a-privacy-complaint.
We reserve the right to vary this policy from time to time to ensure that we remain up to date with market expectations, the law and technological advances. Any variations made will be updated on our websites. It is your responsibility to check our policy periodically to ensure you are aware of any changes made to it.
For any further information about this policy please contact us be emailing firstname.lastname@example.org.