nirevanthus Financial Management Platform

Privacy Policy

nirevanthus Financial Services

Effective Date: March 15, 2025

Our Commitment to Your Privacy

At nirevanthus, we understand that your financial information deserves the highest level of protection. This policy outlines how we collect, use, store, and safeguard your personal data in accordance with Australian Privacy Principles under the Privacy Act 1988 and other applicable legislation.

We never sell your personal information to third parties. Your data is used exclusively to provide you with superior financial services and support.

Information We Collect

We collect information necessary to provide comprehensive financial services and maintain regulatory compliance. The types of information we gather include:

Information Type Purpose Legal Basis
Personal identifiers (name, address, date of birth) Account establishment and identity verification Regulatory compliance (AML/CTF Act)
Financial information (income, assets, liabilities) Risk assessment and product suitability Responsible lending obligations
Transaction data and account activity Service provision and fraud prevention Legitimate business interests
Contact preferences and communication history Customer service and relationship management Consent and legitimate interests

How We Use Your Information

Your personal information helps us deliver tailored financial solutions while maintaining the security and integrity of our services. We use your data for:

  • Providing financial products and services you've requested
  • Conducting identity verification and credit assessments as required by Australian law
  • Managing your accounts and processing transactions securely
  • Communicating important updates about your accounts or services
  • Detecting and preventing fraudulent activities or unauthorized access
  • Meeting our obligations under financial services legislation
  • Improving our services based on usage patterns and feedback

Data Sharing and Third Parties

We maintain strict controls over who can access your information. We may share your data only in specific circumstances:

With your explicit consent: When you've provided clear permission for specific sharing purposes.

Service providers: Trusted partners who assist with payment processing, identity verification, or technical support. These providers are contractually bound to protect your information and can only use it for specified purposes.

Regulatory compliance: Government agencies, financial intelligence units, or courts when required by Australian law, including AUSTRAC reporting requirements.

Credit reporting: Credit reporting bodies as permitted under the Privacy Act 1988 for credit-related products and services.

Data Security Measures

We employ multiple layers of security to protect your information from unauthorized access, alteration, or disclosure:

  • End-to-end encryption for all data transmission and storage
  • Multi-factor authentication requirements for account access
  • Regular security audits and penetration testing by independent experts
  • Staff training on privacy obligations and security protocols
  • Secure data centers with physical access controls and monitoring
  • Automated fraud detection systems monitoring unusual activities
  • Regular software updates and security patch management

Data Retention Periods

We retain your information only as long as necessary for legitimate business purposes and regulatory compliance:

7
Financial records: Maintained for seven years following account closure as required by Australian taxation law and financial services regulations.
5
Identity verification documents: Stored for five years after relationship ends, meeting AML/CTF Act requirements.
2
Marketing communications data: Deleted within two years of last interaction if consent is withdrawn.
30
Website analytics and cookies: Automatically expire after 30 days unless renewed through continued site usage.

Your Privacy Rights

Under Australian privacy law, you have several rights regarding your personal information:

Access: Request copies of personal information we hold about you. We'll provide this within 30 days, though some information may be redacted to protect others' privacy.

Correction: Ask us to correct inaccurate or outdated information. We'll update our records promptly and notify relevant third parties if necessary.

Erasure: Request deletion of your data where legally permissible. Note that financial services regulations may require us to retain certain information.

Restriction: Limit how we use your information in specific circumstances, such as during dispute resolution.

Complaint: Lodge complaints about our privacy practices with us directly or with the Office of the Australian Information Commissioner.

International Data Transfers

While we primarily store data within Australia, some information may be transferred internationally for specific purposes such as cloud storage backup or specialized financial analysis. When this occurs:

  • We ensure recipients provide adequate data protection through contractual obligations
  • Transfers comply with Australian Privacy Principles and cross-border data transfer requirements
  • We maintain oversight of international service providers through regular audits
  • Data remains encrypted during transfer and storage regardless of location

Updates to This Policy

We review this privacy policy annually and update it as needed to reflect changes in our practices, technology, or legal requirements. Significant changes will be communicated through:

  • Email notifications to active account holders
  • Prominent notices on our website for 60 days
  • Direct mail for changes affecting credit reporting or sensitive information handling

The current version of this policy is always available on our website with the effective date clearly displayed.

Privacy Officer Contact

nirevanthus Privacy Officer
222 Baylis Street, Wagga Wagga NSW, Australia
Phone: +61415430507
Email: privacy@nirevanthus.com

We respond to privacy inquiries within 5 business days