top of page

Privacy Policy

We are committed to protecting your privacy and handling your personal information in accordance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), the Privacy (Credit Reporting) Code 2014 (CR Code), and the Notifiable Data Breaches (NDB) scheme.

This policy explains what personal information we collect, how we use and disclose it, how we keep it secure, and your rights to access and correct it.

1. What we collect

We collect personal information reasonably necessary to provide broking and related services, including to arrange and manage credit with lenders and lessors.

Personal information

  • Identification and contact: name, date of birth, residential and postal addresses, email, phone, citizenship/residency status, driver licence/passport details.

  • Financial: income, expenses, assets, liabilities, bank statements, tax returns, payslips, BAS, business financials, superannuation details, insurance details, rental statements.

  • Employment and business: employer details, occupation, ABN/ACN, trading history (if self-employed).

  • Property and loan details: property addresses, contracts of sale/lease, valuations, loan account numbers, repayment histories.

  • Government identifiers: we may collect identifiers (e.g., TFN) only where permitted by law (e.g., to verify identity or process a loan); we do not use government identifiers as our own reference numbers.

  • Sensitive information: generally we do not collect sensitive information. If a matter requires it (e.g., hardship assistance), we will only collect with your consent or as authorised by law.

Credit information & credit eligibility information

  • From you and third parties: credit application details, type and amount of credit, repayment history information, defaults, court judgments, bankruptcy information (if any), and credit scores/reports from credit reporting bodies (CRBs) (e.g., Equifax, illion, Experian).

  • We derive “credit eligibility information” from CRB disclosures and lender responses when assessing your suitability for credit.

Online interactions

  • Website/app usage data, cookies, analytics (e.g., pages viewed, time on site, device/browser type). You can control cookies via your browser settings; some features may not function without them.

  • Communications with us: emails, messages, call notes and recordings where applicable (we will tell you if calls are recorded).

 

2. How we collect your information

We collect information:

  • Directly from you: in meetings, phone/video calls, web forms, emails, document uploads, bank-data feeds (with consent).

  • From third parties with your authority: your employer, accountant/tax agent, financial adviser, real estate agent, conveyancer/solicitor, existing credit providers, referees.

  • From CRBs and identity verification services: when you authorise us to obtain reports and to verify identity under the AML/CTF regime.

  • Public sources: property databases, ASIC registers, ABR, court listings where relevant.

You may choose to remain anonymous or use a pseudonym for general enquiries; however, we typically cannot provide credit assistance unless we can identify you and collect required information.

 

3. Why we collect, use and disclose information

We handle your personal and credit information to:

  • Provide mortgage and finance broking services, including assessing credit suitability, preparing applications, submitting to lenders/lessors, and managing approvals, variations and settlements.

  • Verify identity, prevent fraud and comply with AML/CTF, NCCP, taxation and other legal obligations.

  • Obtain and exchange information with CRBs, lenders and our aggregator to assess your application and manage your credit-related requests.

  • Communicate with you about your application, accounts and ongoing services.

  • Conduct analytics, quality assurance, training and service improvement.

  • (With your consent) provide educational content and direct marketing about finance and property topics—you can opt out at any time.

We only use or disclose personal information for the primary purposes above, related purposes you would reasonably expect, or otherwise with your consent or as required/authorised by law.

 

4. Who we disclose information to

Depending on your circumstances, we may disclose your information to:

  • Lenders and lessors on our panel and their related service providers (including mortgage insurers, valuers, settlement agents).

  • Our aggregator and its service providers for compliance, lodgement and commission processing.

  • Credit Reporting Bodies (CRBs) to obtain your credit report and to exchange information permitted by the CR Code (e.g., if you have given us authority to act).

  • Identity verification and bank-data providers (with your consent).

  • Professional advisers you nominate (e.g., accountant, solicitor), and our own professional advisers (legal, audit, compliance).

  • Insurers (e.g., risk or lender’s mortgage insurance) and claims handlers where relevant.

  • Regulators and dispute resolution bodies where required or authorised (e.g., ASIC, AUSTRAC, OAIC, AFCA).

  • IT/cloud providers that host or process data for us under contract.

We do not sell your personal information.

 

5. Credit reporting—your rights

We may exchange information with CRBs to assess your application for consumer credit or commercial credit, or to assess whether to accept you as a guarantor.

Your rights include:

  • Access and correction: request access to, or correction of, your credit information.

  • Pre-screening opt-out: ask CRBs not to use your information for pre-screening of direct marketing.

  • Victim of fraud alerts: request CRBs to place a ban period if you believe you are a victim of identity fraud.

Common CRBs in Australia include Equifax, illion and Experian. See their privacy policies for details on how they manage credit information and how to exercise your rights.

 

6. Overseas disclosures

Some third-party service providers (e.g., cloud hosting, customer support, document processing) may store or access personal information in jurisdictions outside Australia (commonly including, but not limited to, the United States, the European Union, New Zealand, India or the Philippines). Where practicable, we contractually require such providers to safeguard your information to standards comparable to the APPs.

 

7. Security and retention

We take reasonable steps to protect your information from misuse, interference and loss, and from unauthorised access, modification or disclosure. Measures include:

  • Encryption in transit and at rest where practicable

  • Multi-factor authentication and role-based access controls

  • Staff training and confidentiality obligations

  • Secure destruction or de-identification of data when no longer required

We retain records for the periods required by law and our professional obligations (e.g., NCCP and taxation record-keeping requirements). We then destroy or de-identify information securely.

 

8. Notifiable Data Breaches (NDB)

If a data breach is likely to result in serious harm, we will assess promptly and, where required, notify you and the Office of the Australian Information Commissioner (OAIC) in accordance with the NDB scheme, including steps you can take to protect yourself.

 

9. Access and correction

You can request access to the personal or credit information we hold about you, and request corrections if you believe it is inaccurate, out-of-date, incomplete, irrelevant or misleading.

  • We will respond within a reasonable period (usually 30 days).

  • We may need to verify your identity and, in limited cases, may refuse access (e.g., where giving access would unreasonably impact others’ privacy or is unlawful).

  • If we refuse access or correction, we’ll provide written reasons and information about how to complain.

 

10. Direct marketing

We may use your contact details to send you educational content or offers we believe are relevant. You can opt out at any time by using the unsubscribe link in our emails or by contacting us (details below). We do not sell or rent your details to third parties for their own marketing.

 

11. Cookies and website analytics

Our websites and digital services may use cookies and similar technologies to:

  • enable functionality and security

  • understand usage and improve performance

  • deliver relevant content and measure marketing effectiveness

You can control cookies via your browser; however, blocking some types may impact your experience.

 

12. Complaints

If you have a concern about how we’ve handled your personal or credit information, please contact us first. We’ll acknowledge your complaint and aim to resolve it promptly (usually within 30 days).

If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC):

  • Website: oaic.gov.au

  • Phone: 1300 363 992

  • Mail: GPO Box 5218, Sydney NSW 2001

(For general credit or service complaints unrelated to privacy, you may also have rights through our external dispute resolution scheme, AFCA—contact us for details.)

13. Changes to this policy

We may update this policy from time to time to reflect changes in law, technology or our practices. The latest version will be available on our website and is effective from the date noted at the top.

 

14. Your consent

By engaging our services, providing personal information, or using our website, you consent to our handling of your information in accordance with this policy and applicable laws.

bottom of page