Privacy Statement & Internal Dispute Resolution Process
Protecting your privacy
Privacy Commitment, respecting your privacy
This Privacy Policy is relevant to Briganti Money Pty Ltd (ACN 636724957) authorised under Australian Credit Licence 387025.
We understand how important it is to protect your personal information. This document sets out our privacy policy commitment in respect of personal information that you may provide to us.
Our Privacy Policy ensures your right to privacy as we recognise that any personal information we may collect about you will only be used for the purposes indicated in our policy. It is important to us that you are confident that any personal information we collect from you or is received by us, will be treated with appropriate respect ensuring protection of your personal information.
By providing personal information to us, you consent to the collection, use and disclosure of your information in accordance with this Policy and any other arrangements that apply between us.
This Policy also includes our credit reporting policy, that is, it covers additional information on how we manage your personal information collected in connection with a credit application, or a credit facility. We refer to this credit-related information below as credit information.
Briganti Money Pty Ltd is committed to complying with the Privacy Act 1988 (Cth), the Australian Privacy Principles and any other relevant laws when handling your personal information. A copy of the Australian Privacy Principles may be obtained from the website of The Office of the Australian Information Commissioner at www.aoic.gov.au.
Privacy Statement
Open and transparent management of personal information
We will manage personal information, including credit information, in an open and transparent manner. In doing so, we ensure that individuals are notified at the time of collecting their personal information:
- what type of personal information is being collected.
- who that personal information will be disclosed to; and
- how we use that personal information.
We will be responsible for dealing with any queries regarding access to or correction of personal information or any privacy related complaints. We ensure all our employees are trained at regular intervals to ensure they understand our obligations under the Privacy Act, including the Australian Privacy Principles.
We periodically update our privacy policy and will provide a copy of our privacy policy free of charge on request and in a suitable format.
Anonymity and pseudonymity
Generally, we are not able to deal with customers who do not wish to identify themselves. However, where possible and appropriate, we will provide information of a general nature to unidentified individuals.
Collection of personal information
We collect personal information for the following purposes
- arranging and assessing an application for credit.
- managing credit.
- providing individuals with the products or services marketed by us and our associates.
- managing our relationship with individuals.
- protecting individuals and ourselves from error or fraud; and
- complying with regulatory requirements.
Types of personal information we may collect and hold
Personal information for the purposes of identification, your contact details (eg name, address, phone, email and other personal contact information), date of birth, occupation and employment history, family status and relationship information (cohabitants, defendants and the ages of those individuals in your household).
From time to time, we may collect information that contains government identifiers which could include your tax file number. However, we do not use or disclose this information other than required by la
Financial Information relating to your overall financial position and for the purposes of our loan assessment. This information may include relevant bank statements (e.g., transaction and savings statements), credit card / store card statements, and information related to your assets and liabilities.
Credit Reporting Information includes credit reports from credit reporting bodies. These reports will disclose repayment history with your loans and financial liabilities, including information about overdue payments and defaults, information related to adverse credit history, including infringements, insolvency or bankruptcy, court proceedings and other information that is publicly available. We use your credit-related information to assess your eligibility to be provided with finance. The credit-related information that is available on credit reports is generally exchanged between credit and finance providers and credit reporting bodies.
Sensitive Information
We may collect sensitive information from individuals if they are referred to an insurance agency or they apply for an insurance-related product where the insurer may have affiliations with our business. Insurance products that may require sensitive information may include, but not limited to life insurance, income protection, TPD, etc. It is unlikely that we will require the collection of sensitive information in applications relating to the provision of a product or service related to our credit activities, but this may occur periodically. We only collect sensitive information directly from the individual and with the individual’s consent. Sensitive information that is collected in this way is only used for the purpose for which it is provided. This may include information about your religion, ethnicity, health information, criminal record or biometric information.
Where possible, we collect personal information directly from the individual. There are a number of ways in which we may seek information from you. We might collect your information when you fill out a form with us, when you’ve given us a call or used our website. We also find using electronic means, such as email or SMS, a convenient way to communicate with you and to verify your details.
What do we collect via your website activity and internet activity?
When you access our website, we may monitor your use of the site to ensure we can verify you and can receive information from us. This also helps to identify ways we can improve our services for you.
Some customers like to engage with us through social media channels. We may collect information about you when you interact with us through these channels. However, we do not expect personal information (including financial information) to be shared on that type of forum. We recommend using more secure channels for the transmission of personal and /or sensitive information.
To improve our services and products, we sometimes collect de-identified information from web users. That information could include IP addresses or geographical information to ensure your use of our web applications is secure.
Unsolicited personal information
If we receive unsolicited personal information, we will determine whether we could have collected it by lawful and fair means and whether it is related to one of the purposes of collecting personal information above. We will do this by looking at our relationship with the individual and whether the personal information relates to that relationship.
If we cannot collect the personal information by lawful and fair means or if the personal information does not relate to one of our purposes for collecting it, we will destroy it.
Notification of the collection of personal information
When we first collect personal information from an individual, we will notify them that we have collected their personal information. We will require individuals to consent to our use and disclosure of their personal information.
This notification will provide the individual with information about:
- the purposes of the collection of their personal information and credit information.
- those entities whom we usually disclose personal information or credit information to.
- What happens if the individual chooses not to provide us with personal information.
- direct marketing that we or any associates may undertake.
- our privacy policy and where it can be found; and
- any disclosure of personal information that we make to an overseas entity.
- If we know that, as part of our relationship with an individual, we are likely to disclose their personal information to another identifiable entity, we will usually notify the individual of the following matters:
- the identity and contact details of that organisation; and
- Why their information may be disclosed to the organisation.
Direct marketing
We notify individuals when we collect their personal information that we and any associated businesses will use it for direct marketing.
In all our direct marketing communications, we will prominently state how an individual can elect not to receive direct marketing. If the direct marketing communication is an email, we will provide an ‘unsubscribe’ function within the email.
We will keep appropriate records to ensure that individuals who have made requests not to receive direct marketing communications do not receive them. We do not charge to unsubscribe from direct marketing communications.
We do not sell personal information. We do not use sensitive information for direct marketing purposes.
If we purchase personal information for direct marketing purposes, we will conduct appropriate due diligence to ensure that appropriate consents from the individuals have been obtained.
Cross-border disclosure of personal information
We may disclose your information to organisations overseas who are contracted to us to audit loan files to ensure that legislative, regulatory, and industry expectations have been met. We may store your information in the cloud or other types of networked or electronic storage.
We may store the personal information we hold on cloud storage and IT servers located overseas. As electronic or networked storage can be accessed from various countries via an internet connection, it’s not always practicable to know in which country your information may be held.
Adoption, use or disclosure of government-related identifiers
We do not use government-related identifiers to identify individuals.
We may receive tax file numbers when assessing an application for credit; however, we do not use or disclose tax file numbers for any purpose when engaging in credit activities
Quality of personal information
We rely on individuals to help us to ensure that their personal information is accurate, up-to-date and complete.
If we become aware that personal information is inaccurate, out-of-date or incomplete, such as when mail is returned, we will update our systems accordingly.
Security of personal information
We take reasonable steps to protect the personal information we hold from misuse, interference and loss, as well as unauthorised access, modification or disclosure. Some of the controls that are used may include:
- Access restrictions to data using physical and electronic barriers.
- Appropriate training of representatives with confidentiality.
- Education of representatives in recognising possible cyber intrusions.
- Governance around the provisions of information to third parties.
- ICT security, including firewalls, malware scanning and encryption of data
Paper records are only accessible to employees and others as needed. They are held within an office that is locked and security protected at night.
In accordance with the Australian Privacy Principles, we keep personal information only for as long as is reasonably necessary for the purpose for which it was collected or to comply with any applicable legal or ethical reporting or document retention requirements. We will take reasonable steps to destroy personal information or ensure it is de identified if that information is no longer needed for any purpose for which it may be used or disclosed.
Access to personal information
Individuals may request access to any personal information that we hold about them. We will not charge an individual for requesting access to their personal information when it is reasonable and practicable to do so.
We will verify the individual’s identity prior to disclosing any personal information.
When an individual requests access to their personal information we will conduct a search of our customer relationship database. This search will also indicate if there are any paper records that contain personal information.
Disclosure and Access of Information
We will not give access to the personal information that we hold about an individual where it is unreasonable or impracticable to provide access, or in circumstances where the request would likely:
- pose a serious threat to the life, health or safety of any individual, or to public health or public safety.
- unreasonably access the privacy of other individuals.
- be frivolous or vexatious.
- relate to anticipated legal proceedings, and the correct method of access to personal information is by the process of discovery in those legal proceedings.
- reveal the intentions of the entity in relation to negotiations with the individual in such a way as to prejudice those negotiations.
- be unlawful or in breach of an Australian law.
- prejudice the taking of appropriate action in relation to a matter where unlawful activity or misconduct relates to our functions or activities.
- prejudice an enforcement-related activity of an enforcement body (such as ASIC); or
- reveal commercially sensitive information.
When we receive a request for access, we will usually respond to the individual within 7 days. Depending on the nature of the request, we may be able to provide the personal information at the same time as when the request is made.
If the individual is requesting a large amount of personal information or the request cannot be dealt with immediately, then after we have investigated the request for access, we will advise the individual what personal information we hold and provide details of that personal information.
We will comply with all reasonable requests by an individual to provide details of the personal information that we hold in the requested format.
If we do not provide access to the information, we will provide written reasons setting out why we do not believe we need to provide access. We will also advise the individual they can access our Internal Dispute Resolution (IDR) and External Dispute Resolution (EDR) schemes if they are dissatisfied with a decision not to provide access to personal information.
Correction of personal information
If we hold personal information about an individual and we are reasonably satisfied that the information is inaccurate, out of date, incomplete, irrelevant or misleading, or we receive a request to correct the information, we will take reasonable steps to correct the information.
If we correct any personal information that we have previously disclosed, we will take reasonable steps to notify the entity to which we disclosed the information of the correction. We may not always make corrections to an individual’s personal information. When we do not make requested corrections, we will provide reasons for our refusal to make the correction and provide details of our IDR and EDR procedures.
If, after notifying the individual of our refusal to correct personal information, the individual requests us to issue a statement on the record that contains the personal information, we will take reasonable steps to do so.
What happens if you want to complain?
If you have concerns about whether we have complied with the Privacy Act or this privacy policy and would like to make a complaint, please contact our Privacy Representative by email at compliance@spfgroup.com.au or on 08 9286 6888.
Examples of issues include internet privacy complaints, security breaches and misuse of personal information. Your complaint will be considered through our internal complaint’s resolution process, and we will respond with a decision within 30 days of you making the complaint.
If you remain dissatisfied with how your complaint has been managed, you may contact the following entities:
The Australian Financial Complaints Authority (AFCA)
Phone: on 1800 931 678,
Email: at info@afca.org.au,
In writing: GPO Box 3, Melbourne VIC 3001
Office of the Australian Information Commissioner (OAIC)
Email: www.oaic.gov.au
Phone: or 1300 363 992
Internal Dispute Resolution Process
Our Internal Dispute Resolution (IDR) Scheme
We are committed to providing you with the best possible service. If at any time we have not met our obligations or you have a complaint about the service that we provide, please inform us so we can work towards a resolution. We will endeavour to deal with your complaint promptly, thoroughly and fairly. If you have a complaint, the following steps are available to you.
In the first instance, please contact John Briganti.
We will acknowledge receipt of your complaint within 1 business day. If John Briganti is unable to resolve the complaint to your satisfaction within 5 business days, we will escalate the complaint to the Complaints Officer. You can also contact the Complaints Officer directly as detailed below:
COMPLAINTS OFFICER
| Name: | Mark Norman |
| Address: | 325 Churchill Ave, Subiaco WA 6008, Australia |
| Phone Number: | 08 9286 6888 |
| Email: | compliance@spfgroup.com.au |
There will be situations where the Complaints Officer is also your Broker. This will not have any impact on the capacity to deal with your complaint effectively or appropriately. We may ask for additional information to ensure your complaint is properly investigated.
Within 30 calendar days from the date you lodged the complaint with us, we will write to you advising you the outcome of the investigation and the reason/s for our decision, or if required, we will inform you if more time is needed to complete the investigation.
Our External Dispute Resolution (EDR) Scheme
If you do not think we have resolved your complaint to your satisfaction, or you have not heard from us within 30 calendar days, you may refer the matter to an EDR scheme. You may also refer the matter to an EDR scheme at any time, but if our IDR process is in still in progress, they may request that our IDR processes be complete before considering the matter further.
The Australian Securities & Investment Commission (ASIC) EDR process is available to you, at no cost at the contact details below:
EDR (LICENSEE)
| Name: | AFCA Member Number 74851 |
| Email: | info@afca.org.au |
| Phone Number: | 1800 931 678 |
| Address: | GPO Box 3, Melbourne VIC 3001, Australia |