1. Introduction
    1. Beaver & Co. t/as Experity (ACN 605 056 040) trading as Evolve Money (we, us, our) recognises the importance of protecting the privacy and the rights of individuals in relation to their personal information.
    2. This privacy policy sets out our commitment to protecting the privacy of your personal information and how it is collected whether through our website (Site), directly from you or otherwise.
    3. We respect your rights to privacy under the Privacy Act 1988 (Cth) (Privacy Act) and the Australian Privacy Principles, and we manage the collection and disclosure of your personal information in accordance with these requirements.
    4. We also uphold your rights to privacy if you are based in the European Union, in accordance with the General Data Protection Regulation (EU) (GDPR). Your rights under the GDPR are listed in clause 12.
    5. If you do not wish to provide personal information to us, then you do not have to do so. However, this may affect your use of this Site or any services offered by Ikran Pty Ltd.
  2. What is your personal information?
    1. When used in this privacy policy, the term “personal information” has the meaning given to it in the Privacy Act and GDPR.
    2. In general terms, it is any information that can be used to personally identify you. This may include your name, address, telephone number, email address and profession or occupation.
    3. If the information we collect personally identifies you, or you are reasonably identifiable from it, the information will be considered personal information.
    4. We may also collect some information that is not personal information because it does not identify you or anyone else. For example, we may collect anonymous answers to surveys or aggregated information about how users use our website.
    5. Your personal information will not be shared, sold, rented or disclosed other than as described in this privacy policy.
  3. What information may we collect from you?
    1. We may collect the following personal information from you:
      1. name;
      2. date of birth;
      3. billing, mailing and/or residential address;
      4. previous address details
      5. the length of time at your current address;
      6. email address, telephone number and other contact details;
      7. banking, credit card, or other online payment details;
      8. financial status;
      9. asset details
      10. your salary or wage details;
      11. your current employment details;
      12. your employment history
      13. proof of earning and expenses;
      14. loan details;
      15. credit information;
      16. any finance that you have outstanding, your repayment history in respect of those loans and any defaults;
      17. information to comply with the Financial Transactions Reports Act 1988 (Cth);
      18. information obtained from government databases and credit reporting agencies;
      19. the ages and number of your dependants and cohabitants;
      20. business management information;
      21. Australian Business Numbers (ABN) and Australian Company Numbers (ACN);
    2. We collect personal information about you so that we can perform our business activities and functions and to provide best possible quality of customer service. We collect, hold, use and disclose your personal information for the following purposes:
      1. to provide our services to you;
      2. to conduct internal record keeping;
      3. to identify and understand user needs;
      4. to send communications requested by you;
      5. to answer enquiries and provide information or advice about existing and new services;
      6. to send you promotional information about 3rd parties that we think you may find interesting;
      7. to comply with any law, rule, regulation, lawful and binding determination, decision or direction of a regulator, or in cooperation with any governmental authority; and
  4. How do we collect your personal information?
    1. We collect your personal information directly from you unless it is unreasonable or impracticable to do so. When collecting personal information from you, we may collect in ways including:
      1. when you make an enquiry about our services;
      2. when you fill in any of our online forms, including when downloading free publications or making online bookings;
      3. through your access and use of our website, including when you register as a member;
      4. during conversations between you and our representatives made over the phone, by email, text message or by any other means;
      5. when you ask to be placed on one of our subscription/mailing lists;
      6. when you become a client or customer of ours or otherwise use our services;
      7. when you visit any links shared via our online posts, emails or other landing pages;
      8. through government databases or credit reporting agencies.
  5. What happens if we can’t collect your personal information?
    1. If you do not provide us with the personal information described above, some or all of the following may happen:
      1. we may not be able to provide our services to you, either to the same standard or at all;
      2. we may not be able to procure the credit you require; or
      3. we may not be able to provide you with information about services that you may want, including information about special promotions.
  6. Our website
    Site User Tracking Experience
      1. We may use tracking software to review and improve your experience of our Site, Surveys and landing pages. In particular, we may use Facebook Pixels, ActiveCampaign, MailChimp, and Google Analytics Advertising products: Remarketing with Google Analytics and Google Analytics Demographics and Interest Reporting.
      2. Google Analytics collects data about our Site traffic via Google Advertising cookies and anonymous identifiers.
      3. Data collected via these Google products is not linked with any personally identifiable information you submit while on our Site. If you wish to opt out of the Google Analytics data collection, you may do so on Google’s Site at tools.google.com/dlpage/gaoptout.
    Cookies
      1. When you access our Site, we may send a “cookie” (which is a small summary file containing a unique ID number) to your computer. This enables us to recognise your computer and greet you each time you visit our website without bothering you with a request to register. It also enables us to keep track of services you view so that, if you consent, we can send you news about those services.
      2. We also use cookies to measure traffic patterns, to determine which areas of our website have been visited and to measure transaction patterns in the aggregate.
      3. We use this to research our users’ habits so that we can improve our online services. Our cookies do not collect personal information. If you do not wish to receive cookies, you can set your browser so that your computer does not accept them. We may log IP addresses (that is, the electronic addresses of computers connected to the Internet) to analyse trends, administer the website, track users’ movements, and gather broad demographic information.
      4. The website may contain content and sharing tools embedded from various social networks, such as Facebook. These suppliers may use and place cookies on your device. We do not have access to, and cannot control, these cookies or the personal data and information that they may collect. You therefore need to check the websites of these suppliers to get further information on how they manage cookies and what information their cookies collect.
    Security
      1. As our website is linked to the Internet, and the Internet is inherently insecure, we cannot provide any assurance regarding the security of transmission of information you communicate to us online.
      2. We also cannot guarantee that the information you supply will not be intercepted while being transmitted over the Internet. Accordingly, any personal information or other information which you transmit to us online is transmitted at your own risk.
    Links
    1. We provide links to websites outside of our website, as well as to 3rd party websites. These linked sites are not under our control, and we cannot accept responsibility for the conduct of any companies, businesses, affiliates, advertisers and sponsors, linked to our website.
    2. Before disclosing your personal information on any other website or to any 3rd party, we advise you to examine the terms and conditions of using that websites and its privacy policy. 3rd party websites are responsible for informing you about their own privacy practices.
  7. Who do we disclose your information to?
    1. We may disclose your personal information to:
      1. our directors, employees, agents, contractors or service providers for the purposes of operating our website or our business, fulfilling requests by you, and to otherwise provide services to you including, without limitation, web hosting providers, IT systems administrators, mailing houses, couriers, payment processors, data entry service providers, electronic network administrators, debt collectors, and professional advisors such as accountants, solicitors, business advisors and consultants;
      2. suppliers and other 3rd parties with whom we have commercial relationships, for business, marketing, and related purposes, which may include overseas parties;
      3. credit reporting agencies and courts, tribunals, regulatory authorities where customers fail to pay for goods or services provided by us to them, and other law enforcement officers as required by Law;
      4. where we are required to do so by law, such as under the Anti-Money or Laundering and Courter Terrorism Financing Act 2006 (Cth) or in accordance with a subpoena or summons issued by a court;
      5. professional advisers such as solicitors, accountants and valuers; lenders mortgage insurers; underwriters that have or may have an interest in your loan, or in our business; government agencies such as those which administer land titles and revenue or (where applicable) foreign investments; credit reporting agencies and mercantile agents; external auditors; and other organisations which participate in funding, providing and administering your loan or the loan you have guaranteed, such as the trustee of the fund from which the loan is sourced;
      6. organisations to which we outsource functions, such as mailing and printing houses or IT providers or mortgage service organisations assisting us to service and administer your loan or the loan you have guaranteed;
      7. prospective funders or other intermediaries in relation to your finance requirements;
      8. other organisations that are involved in managing or administering your finances such as 3rd party suppliers, printing and postal services, call centres, lenders mortgage insurers, trade insurers and credit reporting bodies;
      9. associated businesses that may want to market products to you;
      10. companies that provide information and infrastructure systems to us;
      11. anybody who represents you, such as finance brokers, lawyers and accountants;
      12. anyone, where you have provided us consent;
      13. investors, agents or advisers, or any entity that has an interest in our business;
      14. your employer, referees or identity verification services;
      15. any other organisation for any authorised purpose with your express consent.
    2. We only disclose this information if the 3rd party has agreed to comply with the standards in our privacy policy.
    3. If there is any change or potential change to the control of our business pursuant to the sale, assignment or transfer of the business, or business assets, its assets and/or liabilities, we reserve the right to sell, assign and/or transfer our user databases, together with any personal information and non-personal information contained in those databases to the extent permitted by law. In that event, your personal information may be disclosed to a potential purchaser, assignee or transferee, however any disclosures will only be made in good faith and where confidentiality is maintained.
    4. You agree that we may also do any of the following at any time:
      1. Seek and use consumer credit information about you to assess an application for consumer credit or commercial credit.
      2. Seek from and use or give to another credit provider (including without limitation any other credit provider who has lent money on the same security) any information about your credit worthiness, credit standing, credit history or credit capacity. In particular, we may provide a bank opinion on you.
      3. Seek from, use and give any consumer or commercial credit information to brokers, financial consultants, accountants, lawyers or other advisers acting in connection with any financing provided to or proposed to be provided to you.
      4. Give a credit reporting agency personal or commercial information about you. The information may include identity particulars; the fact that credit has been applied for, and the amount; the fact that we are a current credit provider to you; details of payments which have been overdue for more than 60 days, and for which action has commenced; advice that payments are no longer overdue; advice that cheques drawn by you have been dishonored more than once; in specified circumstances that in our opinion, you have commixed a serious credit infringement; and the credit provided to you by us has been paid or otherwise discharged.
      5. Disclose or report any personal information about you to another person in connection with funding financial accommodation by means of any arrangements involving securitisaton.
      6. Provide information to any person who proposes to guarantee or has guaranteed repayment of any credit provided to you.
    5. We may collect the following kinds of credit information and exchange this information with credit reporting bodies and other entities:
      1. credit liability information being information about your existing finance which includes the name of the credit provider, whether the credit provider holds an Australian Credit Licence, the type of finance, the day the finance is entered into, the terms and conditions of the finance, the maximum amount of finance available, and the day on which the finance was terminated;
      2. repayment history information which is information about whether you meet your repayments on time;
      3. information about the type of finance that you are applying for;
      4. default and payment information;
      5. court proceedings information.
  8. Notifiable matters
    1. The law requires us to advise you of ‘notifiable matters’ in relation to how we may use your credit information. You may request to have these notifiable matters (and this privacy policy) provided to you in an alternative form. We exchange your credit information with credit reporting bodies. We use the credit information that we exchange with the credit reporting body to assess your creditworthiness, assess your application for finance and manage your finance.
    2. If you fail to meet your payment obligations in relation to any finance that we have provided or arranged or you have committed a serious credit infringement then we may disclose this information to a credit reporting body.
    3. You have the right to request access to the credit information that we hold about you and make a request for us to correct that credit information if needed. Please see clause 13 below in relation to access and correction to your personal and credit information below.
    4. Sometimes your credit information will be used by credit reporting bodies for the purposes of ‘pre-screening’ credit offers on the request of other credit providers. You can contact the credit reporting body at any time to request that your credit information is not used in this way.
    5. You may contact the credit reporting body to advise them that you believe that you may have been a victim of fraud. For a period of 21 days after the credit reporting body receives your notification the credit reporting body must not use or disclose that credit information. You can contact any of the following credit reporting bodies for more information:
      1. www.equifax.com.au;
      2. www.veda.com.au;
      3. www.dnb.com.au; or
      4. www.experian.com.au.
  9. Direct marketing materials
    1. We may send you direct marketing communications and information about our services that we consider may be of interest to you. These communications may be sent in various forms, including mail, SMS and email, in accordance with applicable marketing laws, such as the Spam Act 2003 (Cth).
    2. If you indicate a preference for a method of communication, we will endeavour to use that method whenever practical to do so.
    3. In addition, at any time you may opt-out of receiving marketing communications from us by contacting us (see the details below) or by using opt-out facilities provided in the marketing communications and we will then ensure that your name is removed from our subscription/mailing list.
    4. We do not provide your personal information to other organisations for the purposes of direct marketing.
  10. Security and data quality
    1. We take reasonable steps to ensure your personal information is protected from misuse and loss and from unauthorised access, modification or disclosure.
    2. We strive to ensure the security, integrity and privacy of personal information that you submit to us through our website. Unfortunately, no data transmission over the Internet can be guaranteed to be totally secure.
    3. We endeavor to take all reasonable steps to protect the personal information you may transmit to us or from our online services. Once we do receive your transmission, we will also make our best efforts to ensure its security on our systems.
    4. In addition, our employees and the contractors who provide services related to our information systems are obliged to respect the confidentiality of any personal information held by us.
    5. We may hold your information in either electronic or hard copy form. Personal information is destroyed or de-identified when no longer needed or when we are no longer required by Law to retain it (whichever is the latter).
  11. How long do we retain your personal data?
    1. We will only keep your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
    2. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
    3. By Law we have to keep basic information about our customers (including contact, identity, financial and transaction data) for five years for Australian tax law purposes.
    4. In some circumstances you can ask us to delete your data; see your legal rights below for further information.
    5. In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
  12. If I am based in the EU, what are my legal rights under the GDPR?
    1. If the General Data Protection Regulation applies to you because you are in the European Union, you have rights under data protection laws in relation to your personal data:
      1. The right to be informed – that’s an obligation on us to inform you how we use your personal data;
      2. The right of access – that’s a right to make what’s known as a ‘data subject access request’ for copy of the personal data we hold about you;
      3. The right to rectification – that’s a right to make us correct personal data about you that may be incomplete or inaccurate;
      4. The right to erasure – that’s also known as the ‘right to be forgotten’ where in certain circumstances you can ask us to delete the personal data we have about you (unless there’s an overriding legal reason we need to keep it);
      5. The right to restrict processing – that’s a right for you in certain circumstances to ask us to suspend processing personal data;
      6. The right to data portability – that’s a right for you to ask us for a copy of your personal data in a common format (for example, a .csv file);
      7. The right to object – that’s a right for you to object to us processing your personal data (for example, if you object to us processing your data for direct marketing); and
      8. Rights in relation to automated decision making and profiling – that’s a right you have for us to be transparent about any profiling we do, or any automated decision making.
    2. These rights are subject to certain rules around when you can exercise them.
    3. If you wish to exercise any of the rights set out above, please contact us at [email protected].
  13. How can you access and correct your personal information?
    1. You may request access to any personal information we hold about you at any time by contacting us (see the details below).
    2. Where we hold information that you are entitled to access, we will try to provide you with suitable means of accessing it (for example, by mailing or emailing it to you).
    3. An explanation may be provided to you if we deny you access to the personal information we hold about you.
    4. We may charge you a reasonable fee to cover our administrative and other reasonable costs in providing the information to you.
    5. We will not charge for simply making the request and will not charge for making any corrections to your personal information.
    6. There may be instances where we cannot grant you access to the personal information we hold. For example, we may need to refuse access if granting access would interfere with the privacy of others or if it would result in a breach of confidentiality. If that happens, we will give you written reasons for any refusal.
    7. If you believe that personal information we hold about you is incorrect, incomplete or inaccurate, then you may request us to amend it. We will consider if the information requires correction. If we do not agree that there are grounds for correction, then we will add a note to the personal information stating that you disagree with it.
  14. How can you withdraw your consent to this privacy policy?
    1. You may withdraw your consent to this privacy policy at any point. If you wish to withdraw your consent to our collection and retention of your data, please contact our Data Protection Officer at [email protected] and we can arrange for your data to be deleted. However, this may affect your use of this Site or any services offered on it.
    2. You may choose to restrict the collection or use of your personal information. If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by contacting us at the email address listed in this privacy policy.
    3. To unsubscribe from our e-mail database, or opt out of any communications, please contact us at the email address listed at the start of the privacy policy, with “Unsubscribe” in the subject line of the e-mail.
  15. What is the process for complaining about a breach of privacy?
    1. If you believe that your privacy has been breached, please contact us using the contact information below and provide details of the incident so that we can investigate it.
    2. We will treat your complaint confidentially, investigate your complaint and aim to ensure that we contact you and your complaint is resolved within a reasonable time (and in any event within the time required by the Privacy Act and/or the GDPR, if applicable).
  16. Contacting us
    1. If you have any questions about this privacy policy, any concerns or a complaint regarding the treatment of your privacy or a possible breach of your privacy, please contact us at [email protected] 
    2. We will treat your requests or complaints confidentially.
    3. Our representative will contact you within a reasonable time after receipt of your complaint to discuss your concerns and outline options regarding how they may be resolved.
    4. We will aim to ensure that your complaint is resolved in timely and appropriate manner.
  17. Changes to our privacy policy
    1. We may change this privacy policy from time to time, however we will notify you of any changes to our privacy policy as and when they are made.
    2. Any updated versions of this privacy policy will be posted on our website and will be effective from the date of posting. © Progressive Legal Pty Ltd (ACN 607 068 708) trading as Progressive Legal (2020). All Rights Reserved. This privacy policy was last updated 18 February 2020.