PRIVACY

The Privacy Act 1988 (Cth), including the Australian Privacy Principles (APPs), regulates the way personal information is collected, used, disclosed and stored. This statement explains how we collect, use and manage your personal information and credit-related information.

We are collecting personal, financial and credit-related information about you for the purpose of arranging or providing credit assistance, finance products and related services.

The personal information and credit-related information you provide will be held by us and may be stored in electronic or physical form.

We may collect information including:

• identification information;
• contact details;
• financial and employment information;
• credit-related information;
• bank statements and transaction information;
• taxation and income verification documents;
• identification verification documents; and
• other information reasonably necessary to provide our services and comply with legal obligations.

We only collect information reasonably necessary to:

• assess and arrange finance;
• verify your identity;
• comply with legal and regulatory obligations;
• manage our relationship with you; and
• provide related financial and support services.

If you do not provide the requested information, we may be unable to assist you with arranging finance or providing related services.

You appoint us as your agent and authorise us to act as an “access seeker” for the purposes of obtaining your credit-related information from a Credit Reporting Body (CRB) to assist with your application for credit.

You authorise us to:

• obtain credit-related information about you from CRBs and other information providers;
• disclose that information to prospective financiers, mortgage insurers, aggregators, service providers and other relevant parties in connection with your application for finance or related services; and
• exchange information with other entities as described in this statement.

We may use your personal information and credit-related information to:

• assess, arrange or provide finance and related services;
• verify your identity and financial position;
• communicate with lenders, mortgage insurers and other relevant parties;
• comply with legal and regulatory obligations;
• administer and manage our services;
• conduct fraud prevention, risk management and security monitoring activities; and
• improve our systems, processes and customer service.

We may also use third-party technology providers, cloud-based systems, workflow automation platforms, identity verification systems and AI-assisted document processing tools to assist in providing our services.

We may exchange or disclose your personal information and credit-related information with the following types of entities, where reasonably necessary for the purposes described above:

• Credit Reporting Bodies (CRBs), including for credit assessment and credit guarantee purposes;
• lenders, mortgage insurers, credit providers and persons providing financial or related products or services to you, or to whom an application has been made on your behalf;
• any person acting on your behalf including accountants, lawyers, financial advisers, buyers’ agents, mortgage brokers, financial consultants, guardians, attorneys or other authorised representatives;
• aggregators, licensees, referrers, financial intermediaries, service providers, contractors, related entities and technology providers assisting us to provide our services;
• identity verification providers, fraud prevention services and organisations providing online verification of identity or financial information;
• your employer, referees or other parties to verify information you have provided;
• government departments, regulators, tribunals, courts, dispute resolution schemes, law enforcement agencies or authorities where required or authorised by law, including under the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth);
• investors, trustees, funders, ratings agencies, warehouse providers and parties with an interest in funding or securitisation arrangements connected with your finance;
• guarantors, co-borrowers or prospective guarantors or borrowers connected with any credit application;
• any person where you have provided consent; and
• any person considering acquiring an interest in our business or assets.

Some of the entities we disclose information to, or technology providers we use, may store or process personal information overseas.

These overseas recipients may be located in countries including:

• the United States;
• Singapore;
• the Philippines; and
• other countries where our service providers or technology platforms operate.

This may include cloud hosting providers, CRM platforms, workflow automation systems, communications providers, identity verification services, AI-assisted processing systems and technical support providers.

We take reasonable steps to ensure overseas recipients protect your personal information in accordance with the Australian Privacy Principles, including through:

• contractual obligations;
• confidentiality requirements;
• access restrictions;
• cybersecurity controls; and
• security and encryption measures.

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification or disclosure.

These measures may include:

• secure electronic storage;
• encryption;
• access controls;
• multi-factor authentication;
• secure destruction procedures; and
• cybersecurity monitoring and protections.

We retain personal information only for as long as reasonably necessary to provide our services, comply with legal and regulatory obligations, resolve disputes and enforce agreements. Information may then be securely destroyed or de-identified where appropriate.

You may request access to, or correction of, the personal information we hold about you by contacting us.

Our Privacy Policy contains further information about:

• how we manage personal information;
• how you may access or correct your information;
• how to make a privacy complaint;
• how we deal with complaints; and
• how to contact us.

A copy of our Privacy Policy is available on our website or by contacting us directly.

If you are dissatisfied with our handling of your personal information, you may also contact the Office of the Australian Information Commissioner (OAIC).

We may send you information about products, services or opportunities that may be relevant to you. You may opt out of receiving marketing communications from us at any time by contacting us or using the unsubscribe facility provided in electronic communications.

How do you generally make a complaint?
If you have a complaint about how we handle your personal information, we want to hear from you. You are always welcome to contact us.

You can contact us by using the details below
Ted Ongarezos
Ground Floor 700 Springvale Road
Mulgrave VIC 3170
M: 0404 920 929 T: 1300 788 364 E: [email protected]

We are committed to resolving your complaint and doing the right thing by our customers. Most complaints are resolved quickly, and you should hear from us within five business days.

Need more help?
If you still feel your issue hasn’t been resolved to your satisfaction, then you can raise your concern with the Office of the Australian Information Commissioner:
• Online: www.oaic.gov.au/privacy
• Phone: 1300 363 992
• Email: [email protected]
• Fax: +61 2 9284 9666
• Mail: GPO Box 5218 Sydney NSW 2001 or GPO Box 2999 Canberra ACT 2601

By providing your personal information and proceeding with our services, you acknowledge and consent to us collecting, using, storing and disclosing your personal information and credit-related information in accordance with this statement and our Privacy Policy.