Privacy Policy

At crenovialaro, we're committed to protecting your privacy and ensuring transparency about how we collect, use, and safeguard your personal information. This Privacy Policy explains our practices in accordance with Australian privacy laws, including the Privacy Act 1988 and Australian Privacy Principles.

Information We Collect

Personal Information

We collect various types of personal information when you interact with our services. This information helps us provide personalised financial control solutions and improve your experience.

• Contact details including your name, email address, phone number, and postal address
• Account information such as username, encrypted password, and profile preferences
• Financial information necessary for our services, including income details and spending patterns
• Device and usage information including IP address, browser type, and interaction patterns
• Communication records when you contact our support team or participate in surveys

Automatically Collected Information

Our systems automatically collect certain technical information to ensure security and improve functionality. This includes log files, cookies, and analytics data that help us understand how our platform performs.

How We Use Your Information

Information Sharing and Disclosure

We respect your privacy and limit information sharing to specific circumstances that support our services or meet legal requirements.

Sharing Purpose	Information Shared	Recipients
Service Providers	Technical and operational data	Cloud hosting, analytics, and payment processing partners
Legal Compliance	Required information only	Government agencies, law enforcement when legally required
Business Operations	Aggregated, anonymised data	Research partners and industry analysts

Your Privacy Rights

Under Australian privacy law, you have several important rights regarding your personal information. We're committed to helping you exercise these rights promptly and transparently.

Access and Correction

You can request access to the personal information we hold about you and ask us to correct any inaccurate or outdated details. We'll respond to such requests within 30 days and provide information in a accessible format.

Data Portability

Where technically feasible, you can request a copy of your data in a structured format that allows you to transfer information to other services. This helps ensure you maintain control over your financial data.

• Request deletion of your personal information when it's no longer necessary for our services
• Object to certain types of data processing, particularly for marketing purposes
• Withdraw consent for data processing where consent is the legal basis
• Complain to the Office of the Australian Information Commissioner if you have concerns

Data Security and Protection

We implement comprehensive security measures to protect your personal information from unauthorised access, alteration, disclosure, or destruction. Our approach combines technical, administrative, and physical safeguards.

Technical Safeguards

Our technical security includes encrypted data transmission, secure server infrastructure, regular security updates, and multi-factor authentication for administrative access. We monitor our systems continuously for potential security threats.

Access Controls

We maintain strict access controls ensuring only authorised personnel can access personal information, and only when necessary for their specific job functions. All access is logged and regularly audited.

Data Retention

We retain your personal information only as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce agreements. Different types of information have different retention periods based on their purpose and legal requirements.

• Account information: Retained while your account is active and for 7 years after closure for compliance purposes
• Financial data: Kept for the duration of service provision and 5 years thereafter as required by Australian financial regulations
• Communication records: Maintained for 3 years to support customer service and resolve potential disputes
• Usage analytics: Aggregated data may be retained indefinitely in anonymised form for service improvement

International Data Transfers

While we primarily store and process data within Australia, some of our service providers may be located overseas. When we transfer personal information internationally, we ensure appropriate safeguards are in place to protect your privacy.

Any overseas transfers comply with Australian Privacy Principles and include contractual protections that require overseas recipients to handle your information with the same level of protection required under Australian law.

Cookies and Tracking

We use cookies and similar technologies to enhance your experience, remember your preferences, and analyse how our platform is used. You can control cookie settings through your browser, though some features may not work properly if you disable certain cookies.

Cookie Types

• Essential cookies that enable core website functionality and security features
• Performance cookies that help us understand user interaction patterns and identify areas for improvement
• Functional cookies that remember your preferences and customisation settings
• Analytics cookies that provide insights into website usage and help us optimise content

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or service offerings. When we make significant changes, we'll notify you through email or prominent notices on our platform at least 30 days before changes take effect.

We encourage you to review this policy regularly to stay informed about how we protect your information. The date of the most recent update is always displayed at the top of this policy.