AT
AdviTech

AdviTech Privacy Policy

Last updated: [Insert Date]

AdviTech ("we", "us", "our") is committed to protecting your privacy and the confidentiality of your personal information. This Privacy Policy explains how we collect, use, store, and protect your personal information in compliance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

1. Information We Collect

We may collect the following types of personal information when you use our services:

  • Full name, date of birth, address, phone number, email address
  • Policy numbers, superannuation provider details, insurance provider details
  • Identification documents such as driver's licence or passport

We only collect personal information directly from you or with your consent.

2. Purpose of Collection

We collect, hold, and use your personal information to:

  • Process and submit third-party authority forms on your behalf
  • Verify your identity in accordance with regulatory requirements
  • Communicate with you about your instructions and requests
  • Comply with our legal obligations

We will not use or disclose your information for purposes other than those stated above unless you consent or we are required by law.

3. How We Store and Protect Your Information

We take reasonable steps to protect your personal information from misuse, interference, loss, and unauthorised access, modification or disclosure.

  • Storage: Data is stored securely on AWS Australia, Supabase, and Vercel infrastructure.
  • Security Measures: All systems use multi-factor authentication (MFA), role-based access controls, and encryption in transit and at rest.
  • Access Control: Only authorised AdviTech personnel may access your personal information.
  • Retention & Disposal: We retain personal information for 30 days unless otherwise required by law, after which it is securely deleted or de-identified.

4. Disclosure of Information

We only disclose your personal information to:

  • Superannuation and insurance providers that you have authorised us to contact
  • Our secure IT infrastructure providers (AWS Australia, Supabase, Vercel)
  • Regulators, government agencies, or law enforcement if legally required

We do not sell or rent your personal information to third parties.

5. Overseas Disclosure

Your personal information is stored and processed in Australia. We do not transfer or disclose personal information overseas.

6. Access and Correction

You have the right to request access to the personal information we hold about you, and to request corrections if you believe it is inaccurate, out of date, or incomplete.

Requests should be made in writing to: Admin@advitech.com.au

We will respond to access or correction requests within a reasonable period, usually 30 days.

7. Complaints

If you have a complaint about how we have handled your personal information, please contact us at Admin@advitech.com.au.

We will investigate your complaint and respond within a reasonable timeframe. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

  • Phone: 1300 363 992
  • Website: www.oaic.gov.au

8. Data Breach Response

In the event of a data breach that is likely to result in serious harm, AdviTech will:

  1. Immediately take steps to contain the breach.
  2. Assess the nature and impact of the breach.
  3. Notify affected individuals and the OAIC as required under the Notifiable Data Breaches (NDB) scheme.
  4. Review our security practices to prevent future incidents.

9. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website.