1. Information We Collect

We collect different types of information depending on how you interact with our services. Being transparent about what we gather helps you make informed decisions about sharing your data with us.

Personal Information You Provide

When you register for our services, request information, or participate in our financial planning programs, we collect:

• Full name and date of birth
• Email address and phone number
• Residential address and postal address if different
• Financial goals and milestone objectives
• Current employment status and income range
• Banking details for payment processing
• Any other information you choose to share in consultation forms or feedback

Automatically Collected Information

When you visit our website or use our digital services, we automatically collect certain technical information:

• IP address and device identifiers
• Browser type, version, and operating system
• Pages visited, time spent on pages, and navigation patterns
• Referring website or source that directed you to us
• Date and time stamps of your interactions

Information from Third Parties

Sometimes we receive information about you from external sources, including credit reporting agencies (when you authorize us), business partners who refer you to our services, and publicly available sources where relevant to verify information you've provided.

2. How We Use Your Information

Every piece of information we collect serves a specific purpose related to providing you with quality financial planning education and support.

Service Delivery and Personalization

Your information helps us tailor our financial planning guidance to your specific situation. We analyze the goals you share to recommend appropriate strategies and milestone approaches that match your circumstances. This personalization makes our service more valuable and relevant to you.

Communication and Updates

We use your contact information to send service-related messages, including appointment confirmations, milestone progress updates, educational content about financial planning, and occasional promotional offers for additional services. You can opt out of marketing communications at any time while still receiving essential service messages.

Legal and Operational Requirements

Sometimes we process your data to meet legal obligations, such as maintaining records for tax purposes or complying with financial services regulations. We also use information to detect and prevent fraud, protect our systems from security threats, and resolve disputes that may arise.

3. Data Retention Periods

We don't keep your information forever. Different types of data have different retention requirements based on legal obligations and business needs.

After retention periods expire, we securely delete or anonymize your data so it can no longer identify you. In some cases, we may retain anonymized statistical information indefinitely for research and service improvement purposes.

4. How We Share Your Information

We don't sell your personal information to anyone. That's a firm commitment. However, we do share data with specific partners who help us deliver our services.

Service Providers and Processors

We work with trusted third-party companies that process data on our behalf, including payment processors who handle transactions securely, cloud hosting providers who store our systems and databases, email service providers who help us communicate with you, and analytics platforms that help us understand how people use our services.

All these service providers are bound by strict confidentiality agreements and can only use your information for the specific purposes we authorize. They can't use your data for their own marketing or share it with others without our permission.

Legal Requirements and Protection

We may disclose your information when required by Australian law, such as responding to valid subpoenas or court orders, cooperating with law enforcement investigations, or complying with regulatory requests from bodies like ASIC or the ATO. We also share information when necessary to protect someone's safety or prevent serious harm.

Business Transfers

If bryneloxari is acquired by another company or merges with another business, your information may transfer to the new entity. We'll notify you before this happens and explain how the transfer affects your privacy rights.

5. Your Privacy Rights Under Australian Law

Australian privacy legislation gives you several important rights regarding your personal information. Here's what you can do and how to exercise these rights.

How to Exercise Your Rights

To make any privacy-related request, contact our Privacy Officer using the details at the top of this page. Include your full name, contact information, and specific details about your request. We'll verify your identity before processing requests to protect against unauthorized access to your information.

Most requests are handled within 30 days. If we need more time due to complexity, we'll let you know and provide an estimated completion date. There's no charge for reasonable requests, but we may apply a fee for excessive or repetitive requests that require significant resources to fulfill.

6. Data Security and Protection

Protecting your information is something we take seriously. We've invested in multiple layers of security to keep your data safe from unauthorized access, disclosure, or loss.

Our security approach combines technical safeguards, administrative controls, and physical protections. All data transmitted to our servers uses industry-standard encryption protocols. Stored data is encrypted using advanced encryption standards, and access is restricted to authorized personnel who need it to perform their jobs.

What We Expect from You

Security is a shared responsibility. You can help protect your information by choosing strong, unique passwords for your account, not sharing login credentials with others, keeping your contact information current so we can reach you about security matters, and reporting suspicious activity or potential security issues immediately.

Data Breach Response

Despite our best efforts, no system is completely immune to security incidents. If a breach occurs that's likely to result in serious harm to you, we'll notify you and the OAIC within 72 hours of becoming aware of the breach. Our notification will explain what happened, what information was affected, what we're doing about it, and what steps you can take to protect yourself.

7. International Data Transfers

Your information is primarily stored and processed in Australia. However, some of our service providers operate servers or have staff in other countries, which means your data may occasionally be accessed or processed overseas.

When we transfer data internationally, we ensure the receiving country has privacy protections comparable to Australian standards, or we implement additional contractual safeguards. Currently, we may transfer limited data to service providers in the United States and European Union countries, all of which have been assessed as providing adequate privacy protections.

You have the right to request that your data not be transferred overseas, though this may limit our ability to provide certain services. Contact our Privacy Officer to discuss your options.

8. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to improve your experience and understand how people use our services.

Types of Cookies We Use

Essential Cookies: These are necessary for the website to function. They enable basic features like page navigation, secure area access, and form submission. You can't opt out of these without affecting site functionality.

Analytics Cookies: These help us understand visitor behavior, including which pages are popular, how long people spend on different sections, and where visitors come from. We use this information to improve our website and services.

Preference Cookies: These remember your choices and settings to provide a more personalized experience on return visits.

Managing Cookies

Most browsers let you control cookies through their settings. You can block all cookies, accept only certain types, or delete cookies after each session. Keep in mind that blocking essential cookies will affect website functionality. Instructions for managing cookies in popular browsers are available through your browser's help menu.

9. Children's Privacy

Our services are designed for adults aged 18 and over. We don't knowingly collect personal information from anyone under 18 without parental consent. If you're a parent or guardian and believe your child has provided us with personal information, please contact us immediately so we can delete it.

Some of our educational content may be suitable for older teenagers researching financial planning. However, we require parental consent before collecting any personal information from minors or providing personalized financial guidance.

10. Third-Party Links and Services

Our website may contain links to external websites or integrate with third-party services. This privacy policy doesn't cover those external sites or services. We're not responsible for the privacy practices of other organizations, even if you access them through our website.

Before providing personal information to any external site, we recommend reviewing their privacy policy to understand how they'll handle your data. We try to link only to reputable organizations, but can't guarantee their privacy practices.

11. Marketing and Communications

When you provide your contact information, we may send you marketing communications about our services, educational content, and special offers. You're always in control of what you receive.

Opting Out of Marketing

Every marketing email includes an unsubscribe link that lets you opt out instantly. You can also contact us directly to adjust your communication preferences or stop all marketing messages. Even if you opt out of marketing, we'll still send important service-related communications about your account or services you're actively using.

SMS and Phone Communications

If you've provided your mobile number, we may send SMS messages about appointments, important service updates, or time-sensitive information. Reply STOP to any message to opt out. We comply with the Spam Act 2003 and won't send commercial messages without your consent.

12. Complaints and Concerns

If you have concerns about how we handle your personal information, we want to hear from you. Contact our Privacy Officer using the details provided at the top of this policy. We take all privacy complaints seriously and investigate them thoroughly.

Our Complaint Process

When you lodge a complaint, we'll acknowledge receipt within 2 business days. We'll investigate the matter and provide a detailed response within 30 days. If the issue is complex and requires more time, we'll keep you informed about our progress.

If you're not satisfied with our response, you have the right to complain to the Office of the Australian Information Commissioner (OAIC). You can reach them at 1300 363 992 or through their website at oaic.gov.au. The OAIC provides a free, independent complaint resolution service.