Privacy Policy
Last Updated: 18 March 2025At corinthavio, we take your privacy seriously. This policy explains how we collect, use, and protect your personal information when you use our budget creation services. We're committed to transparency and giving you control over your data.
Privacy Officer Contact: If you have questions about this policy or want to exercise your rights, reach us at support@corinthavio.com or call +61432122384. Our office is located at Level 2, 169 Macquarie St, Parramatta, NSW, 2150, Australia.
Information We Collect
We collect different types of information depending on how you interact with our services. Here's what we gather and why it matters.
Personal Information You Provide
When you sign up for our budget creation tools, we ask for specific details to set up your account and deliver our services properly:
- Your full name and email address for account creation
- Phone number if you choose to receive SMS notifications
- Billing address and payment details for subscription management
- Financial information you enter into budget templates (income sources, expense categories, savings goals)
- Communication preferences and support inquiries
Automatically Collected Data
Like most online services, we collect technical information when you use our platform. This helps us understand how people use our tools and where we can improve:
- Device information including browser type, operating system, and screen resolution
- IP address and general location data (city and country level)
- Usage patterns such as which features you access most frequently
- Session duration and navigation paths through our platform
- Error logs and performance metrics
How We Use Your Information
We don't collect data just to have it sitting around. Everything we gather serves a specific purpose related to providing and improving our services.
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Account management and service delivery | Contact details, account credentials, financial data | Contract performance |
| Payment processing and billing | Payment information, billing address | Contract performance |
| Customer support and communication | Email, phone, support history | Legitimate interest |
| Platform improvement and analytics | Usage data, technical information | Legitimate interest |
| Security and fraud prevention | IP address, device data, activity logs | Legitimate interest |
| Compliance with legal obligations | All relevant data as required | Legal obligation |
We operate under Australian Privacy Principles (APPs) established by the Privacy Act 1988. These principles guide how we handle personal information and ensure we maintain appropriate standards.
Data Sharing and Third Parties
We don't sell your personal information. Period. But we do work with trusted service providers to deliver our services effectively.
Service Providers We Work With
- Payment processors who handle subscription billing securely
- Cloud hosting providers where we store your data with encryption
- Email service providers for account notifications and updates
- Analytics platforms that help us understand user behavior (data is anonymized)
- Customer support tools to manage and respond to your inquiries
Each of these providers is carefully vetted and bound by confidentiality agreements. They can only access the minimum data necessary to perform their specific function.
Legal Disclosure: We may disclose your information if required by Australian law, court order, or government request. We'll notify you when legally permitted to do so.
In the event of a business transfer or acquisition, your data would be transferred to the new entity under the same privacy protections outlined here.
Data Security Measures
Protecting your financial information is our top priority. We've implemented multiple layers of security to keep your data safe.
Technical Protections
- 256-bit SSL encryption for all data transmitted between your device and our servers
- AES-256 encryption for data stored in our databases
- Regular security audits conducted by independent third parties
- Automated backup systems with encrypted storage
- Multi-factor authentication options for your account
- Intrusion detection systems monitoring for suspicious activity
Organizational Safeguards
Beyond technology, we maintain strict internal policies. Our team members undergo security training and sign confidentiality agreements. Access to personal data is restricted based on job function, and we maintain detailed access logs.
Despite our best efforts, no system is completely invulnerable. If we experience a data breach affecting your information, we'll notify you within 72 hours as required by Australian privacy laws and provide guidance on protective steps you can take.
Your Privacy Rights
Australian privacy law gives you significant control over your personal information. Here's what you can do and how to do it.
Access and Correction
You can request a copy of all personal information we hold about you. We'll provide this in a portable format within 30 days of your request. If you find any inaccuracies, you have the right to request corrections, and we'll update our records promptly.
Data Deletion
You can request deletion of your account and associated data at any time. We'll process deletion requests within 14 days. Note that we may retain certain information for legal compliance purposes (such as transaction records required by tax law) even after account deletion.
Marketing Communications
We only send marketing emails if you've opted in. You can unsubscribe anytime using the link in any email or by contacting support. We'll process unsubscribe requests immediately.
Exercising Your Rights: Send requests to support@corinthavio.com with "Privacy Request" in the subject line. We'll verify your identity before processing requests involving sensitive data. There's no fee for most requests, though we may charge a reasonable fee for excessive or repetitive requests.
Complaints Process
If you believe we've mishandled your personal information, contact our Privacy Officer first. We'll investigate and respond within 30 days. If you're not satisfied with our response, you can lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
Data Retention and Deletion
We don't keep your data indefinitely. Here's how long we retain different types of information and why.
Active Account Data
While your account is active, we retain all your budget data and account information. You have full access to view, modify, or delete this information through your account dashboard.
Closed Account Data
After you close your account, we keep your personal information for 90 days in case you change your mind. After this period, we permanently delete all personal data except what's required for legal compliance.
Legal Retention Requirements
- Financial transaction records: 7 years (Australian tax law requirement)
- Communication records related to disputes: 6 years (limitation period)
- Aggregated analytics data: Indefinitely (fully anonymized, cannot identify individuals)
We conduct annual reviews of stored data to ensure we're not retaining information longer than necessary.
International Data Transfers
Your data is primarily stored on servers located in Australia. However, some of our service providers operate internationally, which means your data might be processed outside Australia.
When we transfer data internationally, we ensure the receiving country has privacy protections comparable to Australian standards. We use contractual clauses approved by the OAIC to guarantee your data receives equivalent protection regardless of location.
Our current international service providers are located in the United States and Singapore. Both locations maintain data centers with certifications including ISO 27001 and SOC 2 Type II.
Cookies and Tracking Technologies
We use cookies and similar technologies to make our platform work properly and understand how people use it.
Essential Cookies
These cookies are necessary for the platform to function. They remember your login status, maintain your session, and store your preferences. You can't disable these without losing access to core features.
Analytics Cookies
We use analytics cookies to understand user behavior and improve our services. These track things like which features get used most, where users encounter problems, and what devices people use. You can opt out of analytics cookies through your account settings.
We don't use advertising cookies or sell your browsing data to third parties. Our analytics serve one purpose: making the platform better for our users.
Children's Privacy
Our services are designed for adults managing their personal or household finances. We don't knowingly collect personal information from anyone under 18 years old.
If we discover we've inadvertently collected data from someone under 18, we'll delete it immediately. If you're a parent or guardian and believe your child has provided us with personal information, contact us at support@corinthavio.com.
Changes to This Policy
We update this privacy policy occasionally to reflect changes in our practices, technology, or legal requirements. When we make significant changes, we'll notify you via email at least 30 days before the changes take effect.
We indicate the last update date at the top of this policy. We encourage you to review it periodically, especially before providing us with new types of personal information.
If you disagree with any changes, you can close your account before the changes take effect. Continuing to use our services after the effective date means you accept the updated policy.