About this policy
This Privacy Policy explains how Deposit Bond Australia Pty Ltd (“DBA”, “we”, “us”, “our”) collects, uses, discloses and protects personal information and how individuals can access and correct their personal information or make a privacy complaint. This policy is designed to comply with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs), and it also describes our approach to the Notifiable Data Breaches (NDB) scheme.
1) The kinds of personal information we collect
Depending on your interactions with us, we may collect: identity and contact details (name, address, email, phone), information about your relationship with us (e.g., applicant, broker or referrer details), transaction and service information, communications and support queries, and website/technical data such as IP address, device/browser information and pages visited. If you provide it to us or it is necessary for our services, we may also collect limited sensitive information. We only collect sensitive information with your consent or where permitted by law.
2) How we collect personal information
We primarily collect personal information directly from you (application forms, emails, phone calls, documents you provide, and when you use our website). We may also receive information from third parties involved in the provision of our services (e.g., insurers, financiers, brokers or referrers) and from publicly available sources where lawful. Where we collect information from third parties, we take reasonable steps to notify you of the collection as required by APP 5.
3) Purposes for which we collect, hold, use and disclose personal information
We handle personal information to: provide and administer our products and services; verify identity and manage risk; process applications, payments and transactions; communicate with you; manage, operate and improve our business and website; conduct analytics and reporting; perform marketing (you may opt out at any time); and comply with legal and regulatory obligations and respond to lawful requests.
4) Direct marketing
We may send you information about our products and services where permitted by law. You can opt out at any time by using the unsubscribe link in our communications or by contacting us.
5) Anonymity and pseudonymity
Where lawful and practicable, you may interact with us anonymously or using a pseudonym (for example, making a general enquiry). However, we may need certain identifying information to provide our services or to comply with legal obligations.
6) Disclosure to third parties
We may disclose personal information to third parties who help us deliver our services, including insurers, financiers, brokers/referrers, IT and cloud providers, website hosting, analytics, professional advisers and regulators or law enforcement as required or authorised by law.
7) Cookies, analytics and tracking technologies
Our website may use cookies and similar technologies and may implement third‑party analytics or advertising pixels to help us understand website usage and improve performance. We configure these tools to limit collection to what is reasonably necessary, and we do not intentionally send sensitive information through such tools. You can control cookies via your browser settings and, where provided, our preference tools. For more information or to change preferences, contact us.
8) Data security and retention
We take reasonable steps to protect personal information from misuse, interference and loss, and from unauthorised access, modification or disclosure. Measures may include access controls, encryption in transit, firewalls and staff training. We retain personal information only for as long as needed for the purposes outlined above or as required by law, after which we take reasonable steps to destroy or de‑identify it.
9) Accessing and correcting your personal information
You may request access to, or correction of, the personal information we hold about you by contacting us. We will respond within a reasonable time. If we refuse access or correction as allowed by law, we will provide written reasons and information about how to complain. We may charge a reasonable fee to retrieve and provide access to information.
10) Notifiable Data Breaches (NDB) scheme
If we experience a data breach that is likely to result in serious harm to individuals, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) as required by the NDB scheme.
11) Complaints
If you have concerns about how we have handled your personal information, please contact us using the details below. We will acknowledge and investigate your complaint and respond within a reasonable time. If you are not satisfied with our response, you may lodge a complaint with the OAIC (oaic.gov.au).
12) How to contact us
Privacy Officer
Deposit Bond Australia Pty Ltd
Locked Bag 4004
Surry Hills NSW 2010
Email: admin@deposit.com.au
Phone: 1800 266388