ACN 621 474 655, Australian credit licence 519253.

Website Privacy Policy

This website may facilitate consumers completing credit applications, questionnaires, forms and the like.

Collection and use of information

We only collect information from potential and actual consumers that is reasonably necessary, directly or indirectly, for the conduct of the our credit provision activities.

Sensitive information

We do not ask for, store, use or disclose sensitive information.

Information and third parties

From time to time, our website may contain links to the websites of third party entities.  If you have accessed a third party website, via our website, you may have provided information to that third party entity.  If you have chosen to provide information, access to that information may also be provided to us by that third party entity, subject to an agreement between the companies to share the information.

Tracking

When viewing our website, or the third party company's website, from time to time “cookies” and “web beacons” may be used to collect information.  This information may include information concerning any or all of the following:

  1. the date and time of your visit;
  2. your IP address;
  3. what pages you viewed;
  4. the completion of the online application, form, or questionnaire;
  5. marketing campaign information;
  6. the server your computer is logged onto; and
  7. the type of browser you use.

What happens to this information?

In accordance with our Credit Information (Privacy) Management Policy, we take reasonable steps to keep the information obtained secure and to store, use and disclose this information only in accordance with that policy.  This includes the above listed information and any information included on completed and submitted applications, forms, questionnaires and the like.

The above listed information will not be used for any third party company's marketing but, from time to time, we may use the information to advise you of continuing and new products and services.

The above listed information is not provided to overseas based companies for any purpose other than possible storage.

The above listed information may be used to assist use to provide you with any service or product, at the time of a particular visit to our website or thereafter, which may or may not be the service or product that initially prompted you to visit the website.

Use of the information collected by the use of a cookie or web beacon

Subject to acceptance by your internet browser, we use cookies and/or web beacons to assist in product and service development and marketing.  This assistance may include:

  1. the allocation of a unique number to your internet browser;
  2. the collection of statistics concerning your visits to our website and the pages viewed;
  3. the customisation of the website to suit you and/or particular potential customer groups;
  4. to identify whether or not you have accessed a third party company's website via our website;
  5. for security purposes; and
  6. for the development of and/or to offer our products and services that appear relevant to you.

Website security

We recognise that website security is an ongoing obligation and that Australian Privacy Principle 11 applies to website security management and our policy is to continue to take reasonable steps to protect information held in digital storage.

To that end, we use ICT security measures relevant to the need to protect all Internet interactions.  Security steps we use can include:

  1. ensuring the latest versions of security software are in use;
  2. ensuring that web browsers, including "add-ons" or "plug-ins" are up to date;
  3. ensuring that data is scanned before it is opened, to prevent the download of malicious content;
  4. encryption of sensitive information;
  5. filtering of web traffic to prevent harmful content from reaching users' systems;
  6. maintaining an intrusion detection system;
  7. regularly analysing event logs;
  8. penetration testing to discover security weaknesses;
  9. ensuring that personal information is only accessed by authorised people;
  10. using multi-factor authentication to obtain access;
  11. ensuring that personal or sensitive information, not intended for public release, is not stored on a public website;
  12. disabling directory browsing when configuring web servers;
  13. requiring strong passwords or pass phrases; and
  14. locking users out after a specified number of failed log-ins.

Cyber attacks

The companies undertake reasonable steps to prevent or protect this website from cyber attack.  However the companies recognise that, when a third party intentionally exploits technology and seeks to gain unauthorised access, like all other websites, this website may experience a successful cyber attack.

Should this attack involve a data breach, the companies will notify all affected consumers and the Office of the Australian Information Commission and provide appropriate detail, as soon as possible.