Privacy policy

We value your personal information, and this Privacy Policy outlines how we manage it. This policy applies to Finstride Pty Ltd, including its Directors and Staff.

Additionally, this Policy includes our credit reporting policy, detailing how we handle personal information related to credit applications and facilities, referred to as credit information.

If you are located in a European Economic Area (EEA) member country, the EU General Data Protection Regulation 2016/679 (GDPR) governs the collection, use, storage, processing, and disclosure of your personal information. Under the GDPR, we act as a data controller, meaning we determine how and why your information is processed.

What Personal Information Do We Collect and Hold?

General Information
We may collect various types of information about you, including:

• Identification details like your name, address, phone numbers, and date of birth.
• Other contact information, including social media handles.
• Financial information, such as your tax file number.
• Any other relevant details we deem necessary.

When Legal Obligations Require Us to Collect Information
We may collect information from you when mandated or permitted by law. For instance, we need personal information to verify your identity as required by Australian Anti-Money Laundering laws.

Information Collected from Your Website Activity

As an internet customer, we track your use of our online services to verify your identity and improve our offerings.

If you begin an online application but do not submit it, we may reach out using the contact details you provided to assist you in completing it. Any incomplete application data will be temporarily stored and then deleted if not finalized.

We recognize that some customers prefer engaging with us via social media, and we may gather information through these interactions. For confidential matters, we will ensure communication occurs in a secure manner.

To enhance our services, we may collect de-identified information from web users, including IP addresses or location data, to maintain the security of our online applications.

How We Collect Your Personal Information

Direct Collection
Whenever possible, we strive to collect personal information directly from you (referred to as "solicited information"). It is essential that you keep your contact details current to facilitate this process.

We may obtain information when you fill out a form, call us, or use our website. We also find electronic communication, such as email or SMS, effective for verifying your details.

Collection from Other Sources
Occasionally, we may gather information from third parties as permitted by the Privacy Act 1988, when reasonably necessary. For example:

• We may collect details about loans or leases from third parties.
• If we are unable to contact you, we may use public information to update your details.
• We may share information with your legal or financial advisers or representatives.

What If You Choose Not to Provide Your Personal Information?

If you do not provide the necessary information, it may hinder our ability to:

• Offer you the credit assistance you need.
• Help you find a suitable loan or lease.
• Verify your identity or prevent fraud.
• Inform you about other relevant products or services.

How We Collect and Hold Your Credit Information

We collect your credit information during our inquiries related to the credit assistance you seek. Additional sources for collecting credit information include:

• Co-applicants or co-borrowers.
• Guarantors or proposed guarantors.
• Employers, accountants, real estate agents, or other referees.
• Agents and representatives such as those who referred you to us.
• Organizations assisting in processing credit applications.
• Valuers checking the security you offer.
• Identification document issuers helping us verify your identity.
• Service providers involved in processing your credit applications.

What If We Receive Unsolicited Information?

If we receive personal information that we did not request ("unsolicited information"), we will assess whether it is necessary for our functions. If it is, we will handle it as we do with solicited information; otherwise, we will properly destroy or de-identify it.

Notification of Information Receipt

Upon receiving personal information directly from you, we will take reasonable steps to inform you how and why we collected it, whom we may disclose it to, and how you can access or correct it or file a complaint.

Sometimes, we may collect your information from third parties without your knowledge. If we obtain identifiable information, we will inform you of this collection.

Protecting Your Personal Information

We store information in various formats, both physical and electronic. Protecting your personal information is a priority, and we take reasonable steps to prevent misuse, loss, unauthorized access, modification, or disclosure. Measures include:

• Document storage security policies.
• Access security for our systems.
• Limiting access to personal information to verified individuals.

We may also store your information with third-party providers under contractual agreements ensuring they protect your information and limit its use.

When We No Longer Need Your Information

We retain your information only as long as necessary for our purposes and may be legally required to keep some details for specific periods. Once no longer needed, we will ensure your information is destroyed or de-identified.

How We Use Your Personal Information

Primary Purposes
Collecting your personal information allows us to provide the products and services you request. This includes using your information to:

• Provide credit assistance.
• Inform you about loan products or related services.
• Determine your eligibility for loans or leases.
• Help prepare applications for leases or loans.
• Manage services, such as addressing inquiries or complaints.
• Process payments related to your loan or lease.

Marketing Uses
We may use or share your personal information to inform you about other products or services we or third parties offer that might interest you. You will always have the option to opt out of receiving marketing communications.

With your consent, we may share your information with third parties to connect you with other businesses or customers, but we will not sell your personal information to any organization.

Opt-Out Option

You can notify us at any time if you no longer wish to receive direct marketing offers, and we will process your request promptly.

Other Uses of Your Information

In addition to the primary reasons mentioned, we may use your personal information for:

• Informing you about additional products or services we offer.
• Identifying opportunities to enhance our service.
• Running our business efficiently and performing administrative tasks.
• Preventing fraud or crime.
• Complying with legal obligations and regulations.
• Any purpose to which you have consented.

GDPR Compliance

Under the GDPR, we must have a legal basis to process your personal information. The grounds we may rely on include:

• Performance of our contract with you.
• Compliance with legal obligations.
• Your consent.
• Our legitimate interests, such as fraud prevention and business operations.

Data Retention

Certain laws require us to retain specific information for set periods, such as the Corporations Act and the Anti-Money Laundering & Counter-Terrorism Financing Act. We must keep your information for seven years after account closure or as otherwise required.

Sharing Your Personal Information

To meet your needs and for the purposes described above, we may share your information with others, including:

• Your representatives or anyone acting on your behalf (lawyers, accountants, etc.).
• Referees, such as your employer, to confirm your details.
• Third parties involved in services we provide to you, like lenders, valuers, and fraud reporting agencies.
• Regulatory bodies as required by law.

Sharing Outside Australia

We may share some of your information (including credit information) with overseas organizations to assist in conducting our business. These organizations may be located in countries such as the Philippines and India.

Information may also be stored in cloud or electronic networks accessible from various countries. If required by foreign law, these organizations may need to disclose the information shared with them, for which we are not responsible.

Accessing Your Personal Information

General Access
You can request access to your personal information unless legal reasons prevent us from providing it. Requests can be made in writing, and we may also handle some requests over the phone.

We will provide your information in a reasonable format and may charge a small fee to cover costs. However, there are circumstances where we are not obligated to provide access, such as:

• Threats to life or public safety.
• Unreasonable impacts on others.
• Frivolous requests.
• Legal proceedings or negotiations.

If we cannot fulfill your request, we will provide a written explanation. If you have concerns, you can file a complaint.

Correcting Your Personal Information

If you believe the information we hold is incorrect, please contact us, and we will work to correct it if it is:

• Inaccurate.
• Out of date.
• Incomplete.
• Irrelevant.
• Misleading.

If you believe incorrect information has been shared with others, you can ask us to inform them of the correction.

Managing Corrections for Credit Information

We will assist you in correcting credit information, whether the error was ours or someone else’s. The most effective way to request a correction is to contact the organization that made the error.

If we correct the information, we will notify you and relevant third parties within five business days. If we cannot make the correction, we will provide a written explanation.

Complaints

If you have concerns regarding how we handle your personal information, please reach out. You can contact us at:

• Email: admin@finstride.com.au
• Phone: 1300 461 111

We aim to resolve complaints swiftly, typically within five business days.

Further Assistance

If you feel your issue remains unresolved, you may escalate your concern to the Office of the Australian Information Commissioner:

• Website: www.oaic.gov.au/privacy
• Phone: 1300 363 992
• Email: enquiries@oaic.gov.au

If you are in the EEA, you may contact the relevant data protection authority.