‘We’, ‘us’ and ‘our’ refer to Australian Finance Group Ltd ACN 066 385 822 and our subsidiaries and related businesses.
We understand how important it is to protect your personal information. This document sets out our privacy policy commitment in respect of personal information we hold about you and what we do with that information.
We recognise that any personal information we collect about you will only be used for the purposes we have collected it or as allowed by law. It is important to us that you are confident that any personal information we hold about you will be treated in a way that ensures protection of your personal information.
Our commitment in respect of personal information is to abide by the Australian Privacy Principles for the protection of personal information, as set out in the Privacy Act 1988 and any other relevant laws.
When we refer to personal information we mean information from which your identity is reasonably apparent. This information may include information or an opinion about you.
The kinds of personal information we may collect about you include your name, date of birth, address, email address, phone number, account details, occupation, transaction history and any other information we made need to identify you.
If you are applying for finance we may also collect the ages and number of your dependants and cohabitants, the length of time at your current address, your employment details and proof of earnings and expenses, and your Tax File Number or tax residency status.
When you visit our websites or use our mobile apps, we collect your location information, IP address, mobile device and network information and any third party sites you access. For more information on how we do this, visit www.afgonline.com.au and click on the Cookies link at the bottom of the page.
The personal information we collect and hold about you may include credit information. Credit information is information which is used to assess your eligibility to be provided with finance and may include any finance that you have outstanding, your repayment history in respect of those loans, and any defaults. Usually, credit information is exchanged between credit and finance providers and credit reporting bodies.
If you want to make purchases from or through us we will also collect your payment information. We will also collect this information if we need to make payments to you. If you apply for employment with us we will collect information about your work history and ask your referees about you. If you apply to become an AFG Member in order to arrange finance contracts through AFG we will collect information to enable us to assess whether you meet accepted standards for finance brokers.
We collect personal information for the purposes of assessing your application for finance and managing that finance. We may also collect your personal information for the purposes of direct marketing and managing our relationship with you. From time to time we may offer you other products and services.
If you apply to become a finance broker with us or apply for employment with us we will collect information about you to assist us to decide whether to appoint you.
We collect payment information in order to process your payments.
To enable us to maintain a successful business relationship with you, we may disclose your personal information to other organisations that provide products or services used or marketed by us. The types of organisations to which we are likely to disclose information about you include other mortgage intermediaries, our insurance partners, lenders, valuers, lenders mortgage insurers, surveyors, accountants, credit reporting bodies, recoveries firms, debt collectors and lawyers. We may also disclose your personal information to any other organisation that may have or is considering having an interest in your finance, or in our business.
Where reasonable and practical we will collect your personal information directly from you. We may also collect your personal information from credit reporting bodies, finance brokers and other people such as accountants, lawyers and referees.
We may disclose your personal information:
Prior to disclosing any of your personal information to another person or organisation, we will take all reasonable steps to satisfy ourselves that:
We use cloud storage to store personal information that we hold. The cloud storage and the IT servers may be located outside Australia.
We may disclose your personal information to overseas entities that provide support functions to us (including in USA, Canada, Malaysia, India, Ireland, the United Kingdom and the Philippines). You may obtain more information about these entities by contacting us.
New technologies and data analytic software allows us to combine information we have about you and our other customers, with data sources, such as third party websites or the Australian Bureau of Statistics. We are able to analyse this data to learn more about you and other customers, and how to improve our products and service we provide to you. We may use this combined data to help other businesses better understand their customers, however we will not provide any personal information about you unless we are legally required to.
We may collect the following kinds of credit information and exchange this information with credit reporting bodies and other entities:
We exchange this credit information for the purposes of assessing your application for finance and managing that finance.
This credit information may be held by us in electronic form on our secure servers and may also be held in paper form. We may use cloud storage to store the credit information we hold about you.
The credit reporting bodes we use are Equifax Pty Ltd, Experian Australia Credit Services Pty Ltd and Illion Australia Pty Ltd. You can download a copy of their privacy policies at: equifax.com.au; experian.com.au; or illion.com.au.
The law requires us to advise you of ‘notifiable matters’ in relation to how we may use your credit information. You may request to have these notifiable matters (and this privacy policy) provided to you in an alternative form.
We exchange your credit information with credit reporting bodies. We use the credit information that we exchange with the credit reporting body to assess your creditworthiness, assess your application for finance and manage your finance.
If you fail to meet your payment obligations in relation to any finance that we have provided or arranged or you have committed a serious credit infringement then we may disclose this information to a credit reporting body.
You have the right to request access to the credit information that we hold about you and make a request for us to correct that credit information if needed. Please see the heading Access and correction to your personal and credit information below.
Sometimes your credit information will be used by credit reporting bodies for the purposes of ‘pre-screening’ credit offers on the request of other credit providers. You can contact the credit reporting body at any time to request that your credit information is not used in this way.
You may contact the credit reporting body to advise them that you believe that you may have been a victim of fraud. For a period of 21 days after the credit reporting body receives your notification the credit reporting body must not use or disclose that credit information. You can contact any of the following credit reporting bodies for more information:
From February 2018, the Privacy Act 1988 includes a new Notifiable Data Breaches (‘NDB’) scheme which requires us to notify you and the Office of the Australian Information Commissioner (‘OAIC’) of certain data breaches and recommend steps you can take to limit the impacts of a breach (for example, a password change).
The NDB scheme requires us to notify about a data breach that is likely to result in serious harm to affected individuals. There are exceptions where notification is not required. For example, where we have already taken appropriate remedial action that removes the risk of serious harm to any individuals.
If we believe there has been a data breach that impacts your personal information and creates a likely risk of serious harm, we will notify you and the OAIC as soon as practicable and keep in close contact with you about the nature of the breach, the steps we are taking and what you can do to reduce the impacts to your privacy. If you believe that any personal information we hold about you has been impacted by a data breach, you can contact us at compliance@afgonline.com.au.
From time to time we may use your personal information to provide you with current information about finance offers you may find of interest, changes to our organisation, or new products or services being offered by us or any company with whom we are associated.
If you do not wish to receive marketing information, you may at any time decline to receive such information by emailing us at marketing@afgonline.com.au. If the direct marketing is by email you may also use the unsubscribe function. We will not charge you for giving effect to your request and will take all reasonable steps to meet your request within a reasonable timeframe.
It is important to us that the personal information we hold about you is accurate and up to date. During the course of our relationship with you we may ask you to inform us if any of your personal information has changed.
If you wish to make any changes to your personal information, you may contact us. We will generally rely on you to ensure the information we hold about you is accurate and complete.
We will provide you with access to the personal and credit information we hold about you. You may request access to any of the personal information we hold about you at any time.
We may charge a fee for our costs of retrieving and supplying the information to you.
We aim to respond within 30 days of receiving your request. We may need to contact other entities to properly investigate your request.
There may be situations where we are not required to provide you with access to your personal information, for example, if the information relates to existing or anticipated legal proceedings, or if your request is vexatious.
An explanation will be provided to you if we deny you access to the personal information we hold about you.
If any of the personal information we hold about you is incorrect, inaccurate or out of date you may request that we correct the information. If appropriate we will correct the personal information. We aim to provide you with details about whether we have corrected the personal information within 30 days of receiving your request.
We may need to consult with other entities as part of our investigation.
If we refuse to correct personal information we will provide you with our reasons for not correcting the information.
When we collect government identifiers, such as your tax file number, we do not use or disclose this information other than as required by law. We will never use a government identifier to identify you.
In most circumstances it will be necessary for us to identify you in order to successfully do business with you, however, where it is lawful and practicable to do so, we will offer you the opportunity of doing business with us without providing us with personal information, for example, if you make general inquiries about interest rates or current promotional offers.
We will only collect sensitive information about you with your consent. Sensitive information is personal information that includes information relating to your racial or ethnic origin, political persuasion, memberships in trade or professional associations or trade unions, sexual preferences, criminal record, or health.
We will take reasonable steps to protect your personal information by storing it in a secure environment. We may store your personal information in paper and electronic form. We will also take reasonable steps to protect any personal information from misuse, loss and unauthorised access, modification or disclosure.
If you are dissatisfied with how we have dealt with your personal information, or you have a complaint about our compliance with the Privacy Act, you may contact our complaints officer by email at complaints@afgonline.com.au.
We will acknowledge your complaint within seven days. We aim to provide you with a decision on your complaint within 30 days.
If you are dissatisfied with the response of our complaints officer you may make a complaint to our External Dispute Resolution Scheme, the Credit and Investments Ombudsman (CIO) Australian Financial Complaints Authority (AFCA) which can be contacted on either www.afca.org.au or 1800 931 678; or the Office of the Australian Information Commissioner (OAIC) which can be contacted on either www.oaic.gov.au or 1300 363 992.
You may request further information about the way we manage your personal or credit information by contacting us at compliance@afgonline.com.au.
We are constantly reviewing all of our policies and attempt to keep up to date with market expectations. Technology is constantly changing, as is the law and market place practices.
As a consequence, we may change this privacy policy from time to time or as the need arises. You can always find the most up-to-date version on our website (www.afgonline.com.au).
You may request this privacy policy in an alternative form.
This Privacy Policy was last updated on 03 July 2020.
