Aluka Finance is a credit representative of Finsure Finance and Insurance Pty Ltd (ABN 72 068 153 926, Australian Credit Licence 384704). This privacy policy outlines how Aluka Finance and Finsure collect and use your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles.
We will collect and handle your personal information in accordance with its legal obligations, including those under the Privacy Act and the Australian Privacy Principles contained in the Privacy Act. In addition, where a Finsure Finance and Insurance Pty Ltd member handles credit information, it will be bound by Division 3 of Part IIIA of the Privacy Act and the Privacy (Credit Reporting) Code 2014.
This Policy describes how your personal information and, where applicable, credit information is collected, used, disclosed and held by members of Finsure Finance and Insurance Pty Ltd.
Why we collect personal information
We will collect and hold your personal information for the purposes of:
to comply with any associated legal or regulatory obligations imposed by regulators including those under anti-money laundering and counter-terrorism financing laws or laws relating to comprehensive consumer credit reporting.
Information we collect from you
We collect information about you and your interactions with us. The type of personal information we may ask you to provide to us includes but is not limited to:
If you are applying for finance we may also collect the ages and number of your dependants and cohabitants, the length of time at your current address, your employment details and proof of earnings and expenses. If you apply for any insurance product through us we may also collect your health information. We will only collect health information from you with your consent.
We do not collect sensitive information (your political or religious beliefs, ethnic background etc.).
We may collect information about you in addition to what you voluntarily provide to us in order to comply with relevant laws and regulations.
If you apply for credit, we may obtain a credit report from a credit reporting body. We may also collect information about you that has been made available by third parties who are permitted to provide your data
The personal information we collect about you comes primarily from you. We may also collect information about you in addition to what you voluntarily provide to us from you or other sources such as from finance brokers and other third parties such as accountants and lawyers.
Wherever there is a legal requirement for us to ask for information about you, we will inform you of the obligation and the consequences of not giving us the requested information. For example, in addition to obtaining personal information from you when you acquire a new product or service from us, we will need to obtain certain documentary evidence from you as to your identity. Such evidence may include items such as a certified copy of your driver’s licence, passport or birth certificate. We may also collect your personal information by using electronic verification services or searching publicly available sources of information such as public registers.
We will not collect any personal information about you except where you have knowingly provided that information to us or where we believe that you have authorised a third party to provide that information to us. Any information collected from publicly available sources will be protected in the same way as the information you voluntarily disclose.
If you provide personal information to us about someone else, you must ensure that you are entitled to disclose that information to us, that the other person has consented to you providing us with the information, and that we can collect, use and disclose that information as set out in this Policy without having to take any further steps required under law (such as obtaining consent directly from that person). This means that if you provide us with personal information about someone else, you must make sure that the individual concerned understands the matters set out in this Policy and has provided their consent to be bound by this Policy.
In general, you can visit our website without telling us who you are or revealing any personal information about yourself. Our web servers collect the domain names, not the email addresses, of visitors. However, if a request is made to be dealt with anonymously yet we are required or authorised by law to deal with identified individuals, we will notify you of this.
We only use and hold your personal information:
The types of external organisations which we often disclose your personal information include:
You consent to us disclosing your information to such entities (and allowing such entities to use your personal information to provide their services) without obtaining your consent on a case-by-case basis.
We may also disclose your personal information where it is:
The above entities may in turn disclose your personal information to other entities as described in their respective privacy policies or notices.
From time to time, we may also use your personal information to tell you about products and services we think may be of interest and value to you, changes to our organisation, or new products or services being offered by us or any company with whom we are associated, but we will stop if you tell us to.
We may contact you by various means, including by mail, telephone, email, SMS or other electronic means such as through social media or targeted advertising through our website or online services.
If you do not want to receive direct marketing from us, you can opt-out by writing to us at admin@finsure.com.au. If the direct marketing is by email you may also use the unsubscribe function. We will not charge you for giving effect to your request and will take all reasonable steps to meet your request at the earliest possible opportunity.
Credit information is information which is used to assess your eligibility to be provided with finance and may include any finance that you have outstanding, your repayment history in respect of those loans, and any defaults. This information is also relevant if you are joining our network.
We will take reasonable steps to protect your personal information from misuse, interference, loss and unauthorised access, modification or disclosure. Personal information is stored in electronic form.
We have implemented policies, procedures and systems to keep your personal information secure. In addition, we limit access to the personal information we hold to employees with a legitimate need to use it consistent with the purpose for which the information was collected, for any other matters related to that purpose that you would reasonably expect and other permitted purposes set out in this Policy such as direct marketing.
When your personal information is no longer required, we will take reasonable steps to destroy, delete or de-identify your personal information in a secure manner. However, we may sometimes be required by law to retain certain information, for example, under the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth) or the Archives Act 1983 (Cth).
We compile and categorise a list of our followers on social media platforms. We also receive aggregate, non-personalised statistics on our coverage in social media.
Depending on the type of service or product we provide to you, your personal information may be disclosed to our associated entities, contractors and unaffiliated service providers located in other overseas jurisdictions such as the Philippines. The overseas jurisdictions that your personal information is subject to cross border disclosure may change from time to time.
Where Finsure Finance and Insurance Pty Ltd discloses your personal information to an overseas recipient, Finsure Finance and Insurance Pty Ltd will take reasonable steps to ensure the overseas recipients are carefully chosen and comply with this Policy.
Overseas recipients may not be subject to privacy obligations equivalent to those under the Privacy Act and could be compelled by foreign law to make disclosure of the information.
You have the right to request access to your personal information and to request its correction.
You can seek access to your information or request a correction by contacting us on the details provided at the end of this Policy.
We will give you access to your personal information within a reasonable time period in a manner requested by you. We may charge a reasonable fee to cover our costs. We may decline the access in the exceptional circumstances that are permitted under the Privacy Act. If this is the case we will inform you and explain the reasons why.
We will take reasonable steps to ensure that the personal information we collect, hold, use or disclose is accurate, complete, up to date, relevant and not misleading. Reasonable steps that we may take include updating your personal information from public sources such as a telephone directory or we may ask you to confirm the personal information we hold is complete, accurate and current.
We ask that you notify us of any incorrect personal information we may hold as promptly as possible and advise of changes to your contact details in accordance with our terms and conditions. Alternatively, if you believe that any of the personal information we hold about you is inaccurate, out-of-date, incomplete, irrelevant or misleading and needs to be corrected or updated, please contact us using our details provided at the end of this Policy.
We will respond to your request to correct your personal information we hold within 30 calendar days after the request is made. There will be no charge for the making of any request. We may refuse to correct your personal information we hold about you if we do not agree with the corrections you have supplied. When we refuse your request, we will give you a written notice to that effect and an information statement if requested.
If you have a question or a complaint about how we have handled your personal information, please contact us using the contact details provided at the end of this Policy.
The Privacy Officer will acknowledge the receipt of your complaint as promptly as possible after we receive your complaint. We will endeavour to investigate and resolve your complaint within 30 calendar days. If you are unsatisfied with our response, you can lodge a complaint with the Office of the Australian Information Commissioner.
We are required to notify you and the Office of the Australian Information Commissioner where there is a data breach that will likely result in serious harm to you.
If at any time you believe your personal information which we hold has been the subject of a data breach, please contact us immediately using the contact details set out in this Policy.
This Policy is subject to change from time to time as Finsure Finance and Insurance Pty Ltd considers necessary. This Policy was last updated in October 2022. We will publish material changes by making them available on our website.
If you would like a copy of this Policy in another form (such as a paper copy), we will take such steps as are reasonable in the circumstances to provide you with a copy in the requested form.
Access, Correction or Complaints
If you need more information, want to access or update your personal information or you have a privacy concern, or if you wish to contact us regarding our handling of your personal information or any of the matters covered in this Policy, please contact the us by email, phone or mail using the following details:
Email: compliance@finsure.com.au
Phone: 1300 346 787 (Option 3.)
Mail: Compliance, Finsure Finance and Insurance Pty Ltd, Level 24, 52 Martin Place, Sydney NSW 2000
If you are not satisfied with our response after you have been through our internal complaints process, you can contact the Office of the Australian Information Commissioner if your complaint is about your privacy.
Office of the Australian Information Commissioner
Email: enquiries@oaic.gov.au
Phone: 1300 363 992
Mail: Office of the Australian Information Commissioner, GPO Box 5218, Sydney NSW 2001