Your privacy is important to us
This privacy statement is made on behalf of NexPay Pty Ltd ACN 153 910 984 (“NexPay”). All references to “NexPay”, “we”, “us” or “our” in this policy are references to NexPay Pty Ltd.
NexPay is committed to protecting your privacy and to compliance with the Australian Privacy Principles contained in the Privacy Act 1988 (Cth) and any amendments thereto. If you have any questions relating to this privacy statement or your privacy rights please contact us.
This Privacy Statement sets out the policy of NexPay for management of personal information. We are committed to ensuring the privacy of your information and recognise that you, as a customer, are concerned about your privacy and about the confidentiality and security of information that NexPay may hold about you.
By using our web site and/or our services, you consent to our collection, use and collation of your information as it appears within this policy. If at any time our information practices change in the future, we will amend the policy on our website. Should you have any immediate concerns about how your information is used, you should check our website periodically to ensure you are up to date with our current policy.
This Policy is designed to inform customers of –
Personal information is information or an opinion about an individual whose identity is apparent, or can reasonably be ascertained, from the information or opinion. NexPay will also collect any personal information necessary for the purposes of complying with the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth).
Information generally collected by NexPay includes (but is not limited to) the following (depending on the nature of the service provided):
NexPay seeks to ensure that personal information we hold about an individual is managed in an open and transparent manner. We have implemented procedures to ensure compliance with the Australian Privacy Principles and any applicable codes, and to deal with any complaints relating to our compliance therewith.
This policy details how NexPay adheres to the Australian Privacy Principles regarding the collection of solicited personal information. NexPay only collects personal information directly from individuals, which is reasonably necessary for the provision of our services, and only by lawful and fair means. We will always ensure you are apprised of our purpose in collecting information, and your right to gain access to such information. If you do not provide the information requested, we may be unable to provide you with our services.
Please note that generally we will only use the personal information we collect for the main purposes disclosed at the time of collection such as to provide you with financial services. We may also use your contact information to provide you with information regarding our other products from time to time, where we believe these may be of interest or benefit to you.
Where possible we will collect the information directly from you but certain information may be collected about you from other sources, for example, a referring third party. You herewith consent to such indirect collection of information in these circumstances, unless you advise us otherwise.
Where we receive personal information about an individual which is unsolicited by us and not required for the provision of our services, we will destroy the information (provided it is lawful and reasonable for us to do so).
When we obtain personal information about you, we ensure that you have our contact details and that you are aware of the collection of information and our purposes for doing so. As per above, we are unable to provide certain services if the requested information is not provided. We do not disclose your information to third parties, unless they are related entities or services providers, in which case they are required to conform to our procedures.
NexPay collects and holds personal information about an individual for the purpose of providing remittance services. We collect this information with your consent as per our service documentation, for the primary purpose disclosed to you at the time of collection.
However, in some cases NexPay will use or disclose personal information for secondary purposes (any purpose other than a primary purpose). Personal information obtained to provide remittance services may be applied to secondary purposes if the secondary purpose is related to the primary purpose of collection and the person concerned would reasonably expect the personal information to be used or disclosed for such secondary purpose. NexPay may also provide your personal information to third parties in order to provide you with our remittance services.
We may exchange or supply your personal information with/to our professional advisers or agents, external service providers, your nominated professional advisers or representatives, government departments/agencies/bodies, other financial institutions, our insurers, or debt collectors. Examples include disclosure of your information to an external party providing electronic identification services, or to intermediary banks in order to process transactions on your behalf.
We may also disclose your personal information without consent where it is required or authorised by law.
NexPay will only use personal information obtained for the provision of remittance services, for the secondary purpose of direct marketing where:
Please note that NexPay allows an individual to opt out of the receipt of direct marketing in each direct marketing communication. You can change your mind about receiving information at any time by emailing us at firstname.lastname@example.org . On occasion, the law requires us to advise you of certain changes to products/services or regulations. You will continue to receive this information from us even if you choose not to receive direct marketing information from us. We will not disclose your information to any outside parties for the purpose of allowing them to directly market to you.
NexPay does not, for the purposes of the Privacy Act, collect sensitive information. Wherever lawful and practicable, individuals may deal anonymously with NexPay but given the nature of our services, it is unlikely that this will be a viable option. NexPay does not use official identifiers (e.g. tax file numbers) to identify individuals. An individual’s name or Australian Business Number is not an identifier for the purposes of the Privacy Act and hence may be used to identify individuals.
Where a person requests access to their personal information, our policy is, subject to certain conditions (as outlined below) to permit access. We will not charge an individual for reasonable access and correction requests. If a person wishes to access their personal information or correct it, they should contact the Privacy Officer, and we will seek to provide such information within a reasonable period of time, and in the manner so requested (where reasonable to do so).
NexPay may not always be able to give you access to all the personal information we hold about you. If this is the case, we will provide a written explanation of the reasons for our refusal, together with details of our complaints process for if you wish to challenge the decision.
We may not be able to give you access to information in the following circumstances:
NexPay takes all reasonable steps to ensure the personal information held about individuals is accurate, up-to-date and complete. We verify personal information at the point of collection.
Where NexPay believes information we hold about an individual is inaccurate, out-of-date, incomplete, irrelevant or misleading, OR an individual requests us to correct information held about them, NexPay will take all reasonable steps to correct such information in a reasonable time frame. No fees are payable for such requests. If you request us to similarly advise a relevant third party of such correction, we will facilitate that notification unless impracticable or unlawful for us to do so.
If NexPay intends to refuse to comply with your correction request, we will notify you in writing of our reasons for such refusal, and the complaints process you may avail if you wish to challenge that decision. You may also request that we associate the personal information we hold with a statement regarding your view of its inaccuracy.
If you believe any of your personal information is incorrect, has changed, or is out-of-date please notify NexPay as soon as possible via email – email@example.com or via phone 1300 786 320.
We take reasonable steps and precautions to keep personal information secure from loss, misuse, and interference, and from unauthorised access, modification or disclosure
Personal information imaged and stored on electronic databases requires password access and access is restricted to authorised personnel.
Where information is no longer required to be held or retained by NexPay for any purpose or legal obligation, we will take all reasonable steps to destroy or de-identify the information accordingly.
Cookie is a small text file placed on your computer hard drive by a web page server. Cookies may be accessed later by our web server. Cookies may store information about your use of our web site. Cookies also allow us to provide you with more personalised service when using our web site.
Most web browsers are set to accept cookies but you may configure your browser not to accept cookies. If you set your browser to reject cookies you may not be able to make full use of the NexPay web site.
If you have a complaint relating to our compliance with privacy laws or our treatment of your personal information, please contact our Privacy Officer at the contact details above. We will investigate your complaint and endeavour to resolve the issue to your satisfaction. If you are not satisfied with the outcome of your complaint, you have the right to lodge a complaint with the Office of the Australian Information Commissioner by telephoning 1300 363 992 or visiting their website at www.oaic.gov.au
This statement is made on behalf of NexPay Pty Ltd ACN 153 910 984 (“NexPay”). All references to “NexPay”, “we”, “us” or “our” in this policy are references to NexPay Pty Ltd and its subsidiaries.
In addition to the principles detailed in the NexPay Privacy Disclosure Statement & Consent (‘the policy’), NexPay is committed to protecting your privacy under legislation and best practice requirements across all jurisdictions in which it operates.
In offering its services to UK and EU based individuals, NexPay complies with, amongst other legislation, the General Data Protection Regulation (‘GDPR’) (EU Regulation 2016/679).
This addendum sets out the specific requirements for the processing of personal information under the GDPR requirements. Where no specific differences are detailed, ‘the policy’ provides the default approach and overriding principles.
The addendum is designed to inform customers in relation to the following principle rights:
The Addendum further informs EU based individuals of
As mentioned in ‘the policy’, information generally collected by NexPay includes (but is not limited to) the following (depending on the nature of the service provided):
This information is collected solely from you and will not be obtained from third-party sources.
In adherence to GDPR legislation, the above personal data is processed by NexPay for the following purposes:
The provision of personal data is either a contractual or a statutory requirement and is obligatory since without this personal data NexPay cannot:
NexPay will not communicate your personal data to third parties, except in the following limited circumstances:
NexPay will communicate your personal data to any organisation without your consent and where it is not used for the purposes specified. NexPay will also not provide you with direct marketing without your explicit consent and will not provide your personal data to any other direct marketing organisation.
NexPay will keep your personal data only as long as necessary to provide you with legitimate and essential business purposes or for complying with our legal obligations and resolving disputes.
If you request, we will delete or de-identify your personal data, unless we are legally required to maintain it, in which case we will let you know.
NexPay may transfer your data outside of the EU and Switzerland to group companies, to provide you with effective services and support our contractual obligations to you. NexPay’s platform uses best in class encryption algorithms and protocols to secure your data, as well as strong multi-layered password protection.
To maintain continuity of service and effective contingency, NexPay data is hosted in multiple overseas locations managed by Microsoft Azure. Microsoft Azure is also fully compliant with GDPR regulations. It is policy for NexPay to ensure that all existing or prospective partners, that may host personal data, are similarly compliant.
NexPay is committed to protecting users personal data. We implement appropriate technical and organisational measures to help protect the security of your personal data; however, please note that no system is ever completely secure. We have implemented various policies including pseudonymisation, encryption, access, and retention policies to guard against unauthorised access and unnecessary retention of personal data in our systems.
Your password protects your user profile and we encourage you to use a unique and strong password, limit access to your computer and browser, and log out after having used the NexPay platform.
NexPay does not knowingly collect from children under 16 years. If you are under 16 years of age please do not use NexPay and do not provide any personal data to us.
If you are a parent or guardian of a child under 16 years of age and become aware that your child has provided personal data to NexPay, please contact us though the support contact details in this addendum.
If we learn that we have collected the personal data of a child under the age of 16 years, we will take reasonable steps to delete the personal data.
You are entitled to access your data. If you would like to do so please contact the NexPay Privacy Officer by email at firstname.lastname@example.org
If you have a complaint relating to our compliance with privacy laws or our treatment of your personal information, please contact our Privacy Officer at email@example.com or on the either of the following numbers
NexPay Pty Ltd : +612 90787967
We will investigate your complaint and endeavour to resolve the issue to your satisfaction. If you are not satisfied with the outcome of your complaint, you have the right to lodge a complaint with a supervisory authority responsible for data protection. You may do so in the EU member state of your habitual residence, your place of work or the place of the alleged infringement.
The supervisory authority of the NexPay parent company (NexPay Pty Ltd) is The Office of the Australian Information Commissioner. Please visit their website at www.oaic.gov.au
This addendum will be reviewed annually or as required under changes to the GDPR regulation.