SUNNY DAY FINANCIAL
Terms and Conditions
SUNNY DAY FINANCIAL PTY LTD – WEBSITE USER PRIVACY POLICY
This website may facilitate consumers completing credit applications, questionnaires, forms and the like.
Collection and use of information
We only collect information from potential and actual consumers that is reasonably necessary, directly or indirectly, for the conduct of our credit provision activities.
Sensitive information
We do not ask for, store, use or disclose sensitive information.
Information and third parties
From time to time, our website may contain links to the websites of third-party entities. If you have accessed a third-party website, via our website, you may have provided information to that third party entity. If you have chosen to provide information, access to that information may also be provided to us by that third party entity, subject to an agreement between the companies to share the information.
Tracking
When viewing our website, or the third-party company’s website, from time to time “cookies” and “web beacons” may be used to collect information. This information may include information concerning any or all of the following:
- the date and time of your visit;
- your IP address;
- what pages you viewed;
- the completion of the online application, form, or questionnaire;
- marketing campaign information;
- the server your computer is logged onto; and
- the type of browser you
What happens to this information?
In accordance with our Credit Information (Privacy) Management Policy, we take reasonable steps to keep the information obtained secure and to store, use and disclose this information only in accordance with that policy. This includes the above listed information and any information included on completed and submitted applications, forms, questionnaires and the like.
The above listed information will not be used for any third-party company’s marketing but, from time to time, we may use the information to advise you of continuing and new products and services.
The above listed information is not provided to overseas based companies for any purpose other than possible storage.
The above listed information may be used to assist use to provide you with any service or product, at the time of a particular visit to our website or thereafter, which may or may not be the service or product that initially prompted you to visit the website.
Use of the information collected by the use of a cookie or web beacon
Subject to acceptance by your internet browser, we use cookies and/or web beacons to assist in product and service development and marketing. This assistance may include:
- the allocation of a unique number to your internet browser;
- the collection of statistics concerning your visits to our website and the pages viewed;
- the customisation of the website to suit you and/or particular potential customer groups;
- to identify whether or not you have accessed a third-party company’s website via our website;
- for security purposes; and
- for the development of and/or to offer our products and services that appear relevant to you.
Website security
We recognise that website security is an ongoing obligation and that Australian Privacy Principle 11 applies to website security management and our policy is to continue to take reasonable steps to protect information held in digital storage.
To that end, security measures relevant to the need to protect all Internet interactions. Security steps we use can include:
- ensuring the latest versions of security software are in use;
- ensuring that web browsers, including “add-ons” or “plug-ins” are up to date;
- ensuring that data is scanned before it is opened, to prevent the download of malicious content;
- encryption of sensitive information;
- filtering of web traffic to prevent harmful content from reaching users’ systems;
- maintaining an intrusion detection system;
- regularly analysing event logs;
- penetration testing to discover security weaknesses;
- ensuring that personal information is only accessed by authorised people;
- using multi-factor authentication to obtain access;
- ensuring that personal or sensitive information, not intended for public release, is not stored on a public website;
- disabling directory browsing when configuring web servers;
- requiring strong passwords or pass phrases; and
- locking users out after a specified number of failed log-
Cyber attacks
The companies undertake reasonable steps to prevent or protect this website from cyber-attack. However, the companies recognise that, when a third party intentionally exploits technology and seeks to gain unauthorised access, like all other websites, this website may experience a successful cyber attack.
Should this attack involve a data breach, the companies will notify all affected consumers and the Office of the Australian Information Commission and provide appropriate detail, as soon as possible.
INTRODUCTION
INTRODUCTION
- This document is the Privacy Statement of [Insert full company name] ABN: [71 643 990 676] (“Sunny Day Financial Pty Ltd , we or us”).
- The purpose of this Privacy Statement is to tell you how we collect, use, hold, disclose and protect your Personal Information.
- Please refer to Sunny Day Financials’ Credit Reporting Statement for information about how we manage your Personal Information collected in connection with a credit application or
- We will act to protect your Personal Information in accordance with the Australian Privacy Principles (“APP”) and the Privacy Act 1988 (Cth) (together “Privacy Laws”).
- Please always check the privacy policy page on our website regularly at the following link for amendments and updates to our Privacy Statement and Credit Reporting Statement: sunnydayfinancial.com.au
- This Privacy Statement does not cover information that you submit on other websites, even if we communicate with you on those For example, if contact us via Instagram, Facebook, Pinterest, Twitter, or YouTube, that information is governed by the privacy policies on those websites and is not governed by this Privacy Statement.
WHAT IS PERSONAL INFORMATION?
- Personal Information is any information or opinion about you that is capable, or reasonably capable, of identifying you, whether the information or opinion is true or not and is recorded in material form or not. Personal Information includes Sensitive Information.
- Sensitive Information includes such things as your racial or ethnic origin, political opinions or membership of political associations, religious or philosophical beliefs, membership of a professional or trade association or trade union, sexual orientation or criminal record, that is also personal information. Your health, genetic and biometric information and biometric templates are also Sensitive Information.
- We will only collect Sensitive Information about you if we obtain prior consent to the collection of the information or if the collection is required or authorised by law.
- WHAT KIND OF PERSONAL INFORMATION DO WE COLLECT AND HOLD?
- The Personal Information we collect and hold generally includes or consists of:
- identification information such as your name, postal or email address, telephone numbers and date of birth;
- your tax file number and tax residency status;
- financial and transactional information;
- health and biometric information (where permitted);
- information about how you interact with us when you use our website (such as device information – which browser you use and your operating system language, your location or activity including IP address and geolocation data based on the GPS of your mobile device (when accessing our services) and whether you’ve accessed third party sites); and
- other information we think is
- Over the course of our relationship with you, we may collect and hold additional pieces of Personal Information about you, including transactional information, account or policy information, complaint or enquiries about your product or service.
- We are required by law to identify you if you are opening a new account or adding a new signatory to an existing The Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth) and Anti-Money Laundering and Counter-Terrorism Financing Rules Instrument 2007 (No. 1) (“Anti-Money Laundering Laws”) require us to sight and record details of certain documents (i.e. photographic and non-photographic documents) in order to meet the standards set under those laws.
- You may interact with us anonymously or by using a pseudonym if the interaction is general in nature. However, if the interaction is specific to an account or relates to your Personal Information, we will need to identify you before we can engage in further discussions and correspondence.
CONSENT
- In most cases, before or at the time of collecting your Personal Information, we will obtain your consent for the purposes for which we intend to use and disclose your Personal Information.
- If you don’t give us consent, we may not be able to provide you with the products or services you want. This is because we are required to collect this Personal Information to provide you with the products or services.
WITHDRAWING CONSENT
- Having provided consent, you are able to withdraw it at any time. To withdraw consent, please contact us. Please note that withdrawing your consent may lead to us no longer being able to provide you with the product or service you enjoy given that, as mentioned above, it is impracticable for us to treat some customers differently.
HOW DO WE COLLECT PERSONAL INFORMATION?
- We collect most Personal Information about you directly from you whether in person, over the phone or electronically. For example:
- when you apply for, register your interest in or enquire about a product or service;
- when you provide us with feedback or make a complaint;
- when you visit our website;
- when you talk to us or do business with us;
- [any others g. subscribe to our newsletter]
- We may collect Personal Information about you from others, such as from:
- service providers;
- agents;
- advisors;
- employers; or
- family members.
- We may take steps to verify the information we collect for example, a birth certificate provided as identification may be verified with records held by the Registry of Births, Deaths and Marriages to protect against impersonation, or we may verify with an employer that employment and remuneration information provided in an application for credit is accurate.
DO WE COLLECT INFORMATION ELECTRONCIALLY?
- We may collect information from you electronically through internet browsing on our
- Each time you visit our websites, we may collect information about you which may include Personal Information (which will be de- identified) and may include the following:
- the date and time of visits;
- the pages viewed and your browsing behaviour;
- how you navigate through the site and interact with pages (including fields completed in forms and applications completed).
- general location information;
- information about the device used to visit our website (including your tablet or mobile device) such as device IDs; an
- IP addresses.
- We collect information using cookies when you use our website. Cookies are small pieces of information stored on your hard drive or in One of the reasons for using cookies is to offer you increased security. They can also record information about your visit to our websites, allowing us to remember you the next time you visit and provide a more meaningful experience.
- We may also collect information from third party websites, applications or platforms containing our interactive content or that interface with our own website such as Google Analytics.
- We may collect Personal Information about you from social media platforms if you publicly comment. We will NEVER ask you to supply Personal Information publicly over any social media platforms that we use. We may, invite you to send your details to us via private messaging, for example, to answer a question about your You may also be invited to share your Personal Information through secure channels to participate in other activities, such as online competitions.
HOW DO WE DEAL WITH UNSOLICITED PERSONAL INFORMATION?
- If we receive Personal Information that is not solicited by us, we will only retain it, if we determine that it is reasonably necessary for one or more of our functions or activities and that you have consented to the information being collected or given the absence of your consent that it was impracticable or unreasonable for us to obtain it under the circumstances.
- If these conditions are not met, we will destroy or de-identify the
- If such unsolicited information is Sensitive Information, we will obtain your consent to retain it regardless of what the circumstances are.
PURPOSES FOR COLLECTING, USING AND DISCLOSING PERSONAL INFORMATION
WHY DO WE COLLECT, USE AND DISCLOSE YOUR PERSONAL INFORMATION?
We collect, use and disclose your Personal Information so we can:- consider your request for products and services, including your eligibility;
- process your application and provide you with the products and services;
- provide information on other products and services offered by or through us;
- confirm your identity;
- manage our relationship with you;
- complying with our legal obligations;
- monitor and evaluate products and services;
- gather and aggregate information for statistical, prudential, actuarial and research purposes;
- assist you with queries;
- take measures to detect and prevent fraud;
INTEGRITY OF YOUR INFORMATION
QUALITY OF INFORMATION
- We ensure that the Personal Information we collect, use or disclose is accurate, up to date, complete and relevant.
- Please contact us if any of the details you have provided to us change or if you believe that the information we have about you is not accurate or up to date.
- We may also take steps to update information we hold, for example, an address, by collecting Personal Information from publicly available sources such as telephone directories or electoral
HOW DO WE PROTECT AND HOLD YOUR PERSONAL INFORMATION?
QUALITY OF INFORMATION
- We are committed to ensuring that we protect any Personal Information we hold from misuse, interference, loss, unauthorised access, modification and disclosure.
- For this purpose, we have a range of practices and policies in place to provide a robust security environment. We ensure the on-going adequacy of these measures by regularly reviewing
- We have the following security measures in place to protect against misuse, loss and alteration of Personal Information under our control. Our security measures include, but are not limited to:
- educating our staff as to their obligations with regard to your personal information;
- requiring our staff to use passwords when accessing our systems;
- encrypting data sent from your computer to our systems during Internet transactions and customer access codes transmitted across networks;
- employing firewalls, intrusion detection systems and virus scanning tools to protect against unauthorised persons and viruses from entering our systems;
- using dedicated secure networks or encryption when we transmit electronic data for purposes of outsourcing;
- providing secure storage for physical records; and
- employing physical and electronic means such as alarms, cameras and guards (as required) to protect against unauthorised access to buildings.
- Where Personal Information we hold is identified as no longer needed for any purpose, we ensure it is effectively and securely destroyed, for example, by shredding or pulping in the case
of paper records or by degaussing (demagnetise of the medium using alternating electric currents) and other means in the case of electronic records and equipment.
- The Personal Information retained by us could include transactional and financial information along with contact details. The Personal Information does include the records that have been stored on the secure server. Where we retain adequate records for legal and accounting purposes, the Personal Information will be stored and held securely in controlled facilities.
DISCLOSURE OF PERSONAL INFORMATION
WHO DO WE SHARE YOUR PERSONAL INFORMATION WITH?
- We may share your Personal Information with third parties to help deliver or support the provision of products or services to you.
- In all circumstances where your Personal Information may become known to our contractors, agents and outsourced service providers, there are confidentiality arrangements in place. Contractors, agents and outsourced service providers are not able to use or disclose Personal Information for any purposes other than our own.
- We take our obligations to protect your Personal Information very seriously we make every effort to deal only with parties who share and demonstrate the same attitude.
- Depending on the product or service you have, the entities we exchange your Personal Information with include but are not limited to:
- brokers and agents;
- affiliated product and service providers and external product and service providers for whom we act as agent (so that they may provide you with the product or service you seek or in which you have expressed an interest);
- auditors we appoint to ensure the integrity of our operations;
- any person acting on your behalf, including your solicitor, settlement agent, accountant, executor, administrator, trustee or guardian;
- your referee (to confirm details about you);
- if required or authorised to do so, regulatory bodies and government agencies;
- credit reporting bodies;
- debt collectors;
- insurers, including proposed insurers and insurance reference agencies (where we are considering whether to accept a proposal of insurance from you and, if so, on what terms);
- medical practitioners (to verify or clarify, if necessary, any health information you may provide);
- other financial institutions and organisations at their request if you seek credit from them (so that they may assess whether to offer you credit);
- investors, advisers, trustees and ratings agencies where credit facilities and receivables are pooled and sold (securitised);
- other organisations who in conjunction with us provide products and services (so that they may provide their products and services to you); and
- professional associations or organisations with whom we conduct an affinity relationship (to verify your membership of those associations or organisations).
- We may also disclose your Personal Information to others where:
- we are required to disclose information by law e.g. under court orders or statutory notices pursuant to taxation or social security laws or under laws relating to sanctions, anti- money laundering or counter-terrorism financing
- you may have expressly consented to the disclosure or your consent
may be reasonably inferred from the circumstances; or - we are otherwise permitted to disclose the information under applicable Privacy Laws.
DO WE DISCLOSE YOUR PERSONAL INFORMATION OVERSEAS?
- We may utilise overseas service providers for some of our activities. These service providers may be located in different countries.
- We will only disclose your Personal Information when permitted to do so by the Privacy Act and after we ensure that:
- the overseas recipient does not breach the APPs; or
- you will be able to take action to enforce the protection of a law or binding scheme that has the effect of protecting the information in a way that is at least substantially similar to the way in which the APPs protect the information; or
- you have consented to the disclosure after we expressly informed you that there is no guarantee that the overseas recipient will not breach the APPs; or
- the disclosure of the information is required or authorised by or under an Australian law or a court/tribunal order.
- We may store your Personal Information in cloud-based software or other types of networked or electronic systems. As electronic or networked systems can be accessed from various countries via an internet connection, it’s not always practicable to know in which country your Personal Information may be held. If your Personal Information is stored in this way, disclosures may occur in countries other than those listed.
- Overseas organisations may be required to disclose information we share with them under a foreign law. In those instances, we will not be responsible for that disclosure.
DO WE USE OR DISCLOSE YOUR PERSONAL INFORMATION FOR DIRECT MARKETING?
- We will only use or disclose the Personal information we hold about you for the purpose of direct marketing if we have received the Personal Information from you and you have not requested not to receive such information.
- Direct marketing includes, but is not limited to, contacting our clients to provide you with information on our products and services that may interest you.
- If you wish to opt-out of receiving marketing information altogether, you can:
- call us on (07) 37787007; or
- write to us at O Box 240 Archerfield BC QLD 4108.
- In direct marketing communication we always inform you of your right to opt out of receiving direct marketing communications.
ACCESS TO AND CORRECTION OF YOUR PERSONAL INFORMATION
HOW CAN YOU ACCESS YOUR PERSONAL INFORMATION?
- You can request us to provide you with access to the Personal Information we hold about
- Requests for access to limited amounts of Personal Information, such as checking to see what address or telephone number we have recorded, can generally be handled over the
- If you would like to request access to more substantial amounts of Personal Information such as details of what is recorded in your account file, we will require you to complete and sign a “Request for Access” form.
- Following receipt of your request, we will provide you with an estimate of the access charge and confirm that you want to proceed.
- We will not charge you for making the request for access, however access charges may apply to cover our costs in locating, collating and explaining the information you requested. The charges are based on a rate of [$120 per hour].
- We will respond to your request as soon as possible and in the manner requested by We will endeavour to comply with your request within fourteen (14) days of its receipt but, if that deadline cannot be met owing to exceptional circumstances, your request will be dealt with within thirty (30) days. It will help us provide access if you can tell us what you are looking for.
- Your identity will be confirmed before access is provided.
CAN WE REFUSE TO GIVE ACCESS?
- In particular circumstances we are permitted by law to deny your request for access or limit the access we We will let you know why your request is denied or limited if this is the case. For example, we are not required to give you access where giving you access to your Personal Information would pose a serious threat to any person’s life, health or safety or giving access would be unlawful or where we reasonably conclude your request to be frivolous or vexatious.
- If we refuse to give access to the Personal Information or to give access in the manner requested by you, we will give you a written notice setting out the reasons for the refusal, the mechanisms available to complain and any other relevant matter.
CORRECTION
- We are committed to and will take all reasonable steps in respect of maintaining accurate, timely, relevant, complete and appropriate information about our clients, website users and other people that we deal with in our business
- We will correct all Personal information that we believe to be inaccurate, out of date, incomplete, irrelevant or misleading given the purpose for which that information is held or if you request us to correct the information.
- If we correct your Personal Information that we previously disclosed to another APP entity you can request us to notify the other APP entity of the correction. Following such a request, we will give that notification unless it is impracticable or unlawful to do so.
- We will respond to any requests for correction within a reasonable time of receipt of the request. A reasonable time period will be no longer than thirty (30) days after the request being
REFUSAL TO CORRECT INFORMATION
- If we refuse to correct the Personal Information as requested by you, we will give you a written notice setting out the reasons for the Such reason will set out the grounds for refusal, the mechanisms available to complain and any other relevant matter.
REFUSAL TO CORRECT INFORMATION
- If we refuse to correct the Personal Information as requested by you, we will give you a written notice setting out the reasons for the Such reason will set out the grounds for refusal, the mechanisms available to complain and any other relevant matter.
NOTIFIABLE DATA BREACHES
- From February 2018, the Privacy Act includes a new Notifiable Data Breaches (“NDB”) scheme which requires us to notify you and the Office of the Australian Information Commissioner (“OAIC”) of certain data breaches that is likely to result in serious harm to affected individuals and provide recommendations of steps you can take to limit the impacts of the breach.
- If we believe there has been a data breach that impacts your Personal Information and creates a likely risk of serious harm, we will notify you and the OAIC as soon as practicable and keep in close contact with you about the nature of the breach, the steps we are taking and what you can do to reduce the impacts to your privacy.
- If you believe that any Personal Information we hold about you has been impacted by a data breach, you can contact us using the contact details set out as per clause 21
MAKING A PRIVACY COMPLAINT
COMPLAINTS
- We offer a free internal complaint resolution scheme to all of our Should you have a privacy complaint, please contact us to discuss your concerns. Our contact details set out as per clause 21 below.
- To assist us in helping you, we ask you to follow a simple three-step process:
- gather all supporting documents relating to the complaint;
- contact us and we will review your situation and if possible, resolve your complaint immediately; and
- if the matter is not resolved to your satisfaction, please contact our Complaints Officer/Compliance Officer on (07) 37787007 or put your complaint in writing and send it to Sunny Day Financial P.O Box 240 Archerfield BC QLD 4108,
- We will rectify any breach if the complaint is justified and will take necessary steps to resolve the issue.
- In certain situations, to deal with a complaint it may be necessary to consult with third However, please note any disclosure of Personal Information to third parties will be provided with your authority and consent.
- After a complaint has been received, we will send you a written notice of acknowledgement setting out the The complaint will be investigated, and the decision will be sent to you within thirty (30) days unless you have agreed to a longer time. If a complaint cannot be resolved within the agreed time frame or a decision could not be made within thirty (30) days of receipt, a notification will be sent out to you setting out the reasons and specifying a new date when you can expect a decision or resolution.
- If you are not satisfied with our internal privacy practices or the outcome in respect to complaint, you may approach the OAIC with your complaint:
Office of the Australian Information Commissioner Address: GPO Box 5218, Sydney NSW 2001 Phone: 1300 363 992
Email: enquiries@oaic.gov.au
Website: oaic.gov.au
CONTACT DETAILS
- If you have any questions or would like further information about our privacy, credit reporting and information handling practices, please contact us by:
- Email: hello@sunnydayfinancial.com.au or
- Phone: (07) 37787007 or
- Post: PO Box 240 Archerfield BC QLD 4108.
Warning – Do you really need a loan today?
It can be expensive to borrow small amounts of money and borrowing may not solve your money problems.
Check your options before you borrow:
- For information about other options for managing bills and debts, ring 1800 007 007 from anywhere in Australia to talk to a free and independent financial counsellor
- Talk to your electricity, gas, phone or water provider to see if you can work out a payment plan
- If you are on government benefits, ask if you can receive an advance from Centrelink: Phone: 13 17 94 http://www.humanservices.gov.au
The Government’s Money Smart website shows you how small amount loans work and suggests other options that may help you. https://www.moneysmart.gov.au/
This statement is an Australian Government requirement under the
National Consumer Credit Protection Act 2009.
