Privacy Policy

Introduction and Overview

ravionestio Australia Pty Ltd (ABN 47 123 456 789) operates as a digital banking security platform, committed to protecting the privacy and personal information of our users across Australia. This privacy policy explains how we collect, use, store, and protect your personal information in compliance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and other applicable Australian privacy legislation.

We understand that trust is fundamental to digital banking security. That's why we've designed our privacy practices to be transparent, secure, and focused on giving you control over your personal information. This policy applies to all services provided through our platform at ravionestio.com and any related mobile applications or services.

Information We Collect

We collect various types of information to provide you with secure digital banking services and improve your experience on our platform:

Personal Identification Information

• Full name, date of birth, and residential address
• Contact information including email addresses and phone numbers
• Government-issued identification numbers (driver's license, passport)
• Employment information and income details for verification purposes
• Digital photographs for identity verification when required

Financial and Transaction Information

• Bank account details and transaction histories
• Credit history and financial assessment data
• Payment method information and billing addresses
• Investment portfolio details and trading activities
• Insurance information and beneficiary details

Technical and Usage Data

• Device information, IP addresses, and browser types
• Login patterns, session durations, and security events
• Location data when using our mobile applications
• Cookies and similar tracking technologies
• Customer service interaction records and communications

How We Use Your Information

Your personal information is used exclusively for legitimate business purposes related to providing secure digital banking services:

Service Provision and Account Management

We use your information to establish and maintain your account, process transactions, verify your identity, and provide customer support. This includes monitoring account activity for security purposes and sending important notifications about your account status or changes to our services.

Security and Fraud Prevention

Your information helps us detect and prevent fraudulent activities, unauthorized access attempts, and other security threats. We analyze usage patterns and implement advanced security measures to protect both your account and our broader platform from cybersecurity risks.

Legal Compliance and Reporting

We may use your information to comply with Australian financial regulations, including anti-money laundering (AML) requirements, counter-terrorism financing (CTF) obligations, and tax reporting requirements. This includes reporting to AUSTRAC and other regulatory bodies as legally required.

Information Sharing and Disclosure

We maintain strict controls over how your personal information is shared and only disclose information in specific, limited circumstances:

All third-party service providers are contractually obligated to maintain the same level of privacy protection that we provide. We conduct regular audits to ensure compliance with our privacy standards and never share information for marketing purposes without your explicit consent.

Your Privacy Rights

Under Australian privacy law, you have several important rights regarding your personal information:

To exercise any of these rights, contact our Privacy Officer using the details provided below. We'll respond to your request within 30 days and may require identity verification to protect your information from unauthorized access.

Data Security and Protection

We implement comprehensive security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction:

Technical Safeguards

Our technical security measures include end-to-end encryption for all data transmissions, multi-factor authentication for account access, regular security audits and penetration testing, secure data centers with 24/7 monitoring, and automated threat detection systems that monitor for unusual activity patterns.

Administrative Controls

We maintain strict access controls ensuring that only authorized personnel can access your information on a need-to-know basis. All employees undergo comprehensive privacy and security training, and we conduct regular background checks for staff with access to sensitive information. Our incident response procedures ensure rapid identification and resolution of any security breaches.

Physical Security

Our offices and data centers employ advanced physical security measures including biometric access controls, surveillance systems, and secure document storage. We maintain detailed visitor logs and restrict access to areas where personal information is processed or stored.

Data Retention and Deletion

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy or as required by Australian law:

Retention Periods

• Account information: Retained for 7 years after account closure as required by banking regulations
• Transaction records: Maintained for 7 years to comply with financial reporting requirements
• Identity verification documents: Stored for 5 years after relationship ends
• Marketing communications: Deleted within 3 years of last customer interaction
• Technical logs: Automatically deleted after 2 years unless required for security investigations

Secure Deletion Process

When information reaches its retention limit, we employ secure deletion methods that make data unrecoverable. This includes cryptographic erasure for encrypted data and multiple-pass overwriting for physical storage media. We maintain records of deletion activities for audit purposes while ensuring the deleted information cannot be reconstructed.

International Data Transfers

While we primarily store and process your information within Australia, some circumstances may require international data transfers:

When transfers are necessary for technical infrastructure or specialized services, we use approved transfer mechanisms including Standard Contractual Clauses and ensure recipient countries have adequate privacy protections. You'll be notified of any significant changes to our data transfer practices that might affect your information.

Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your experience and maintain security:

Essential Cookies

These cookies are necessary for basic website functionality, including session management, security features, and load balancing. They cannot be disabled without affecting core platform operations.

Analytics and Performance

We use analytics cookies to understand how users interact with our platform, identify areas for improvement, and ensure optimal performance. This information is aggregated and does not identify individual users.

Security Monitoring

Specialized tracking technologies help us detect fraudulent activities, monitor for security threats, and protect your account from unauthorized access attempts. These systems analyze behavioral patterns to identify potentially suspicious activities.

You can manage cookie preferences through your browser settings, though disabling certain cookies may limit platform functionality. We provide clear information about cookie usage and obtain consent where required by law.

Changes to This Privacy Policy

We may update this privacy policy periodically to reflect changes in our practices, services, or legal requirements. When significant changes occur, we'll provide advance notice through multiple channels:

• Email notifications to your registered address at least 30 days before changes take effect
• Prominent notices on our website and mobile applications
• In-app notifications for mobile users highlighting key changes
• Written correspondence for changes that significantly impact your rights

We encourage you to review this policy regularly and will maintain an archive of previous versions for your reference. If you object to any changes, you have the right to close your account and request deletion of your information, subject to legal retention requirements.