Who are we?

This Privacy Policy (Policy) describes how we YieldStack Capital Pty Ltd (ABN 83 167 086 571), YieldStack Pty Ltd (ABN 69 638 580 613) “YieldStack” and their related businesses (“we“, ”our” or “us“) complies with the requirements of the Privacy Act 1988 (Cth) (“Privacy Act”) and the Australian Privacy Principles in protecting the personal information we hold about you.

At YieldStack we understand that the privacy of your information is important to you and we respect the confidentiality of the information that you provide to us. Protecting your information is an important part of maintaining trust between us and our clients and by handling information in a secure manner we build strong business relationships. This document provides information and details about how we manage the personal information that we collect, hold, use and disclose about individuals.

Why we collect and use personal information

We collect personal information when it is reasonably necessary for one or more of our functions or activities.

These include:

  • providing customers with the products and services they request and, unless they tell us otherwise, to provide information on products and services offered by us and external product and service providers for whom we act as agent. (If you have provided us with your email or mobile phone details, we may provide information to you electronically with respect to those products and services);
  • complying with our legal obligations;
  • monitoring and evaluating products and services;
  • gathering and aggregating information for statistical, prudential, actuarial and research purpose;
  • assisting customers with queries; and
  • taking measures to detect and prevent frauds.

What personal information we collect

The personal and sensitive information we collect generally consists of name, address, date of birth, gender, marital status, occupation, account details, contact details (including telephone and e-mail) and financial information.

Where it is necessary to do so, we also collect information on individuals such as:

  • trustees;
  • partners;
  • company directors and officers;
  • officers of co-operatives and associations;
  • customer’s agents; and
  • beneficial owners of a client;

Anti-money laundering laws require us to record details of certain documents (i.e. photographic and non-photographic documents) in order to meet the standards set under those laws.

How do we collect your personal information?

We only collect personal information about you directly from you (rather than someone else) unless it is unreasonable or impracticable to do so or you have instructed us to liaise with someone else.

The Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth) and Anti Money Laundering and Counter-Terrorism Financing Rules Instrument 2007 (No. 1) requires us to collect certain identification information about you. We must collect personal information from third parties in respect of AML/CTF checks which are required to be carried out, under AML/CTF Legislation.

We may not be able to provide you with the products or services you are seeking if you provide incomplete or inaccurate information.

It is important to us that the personal information we hold about you is accurate and up to date. During the course of our relationship with you we may ask you to inform us if any of your personal information has changed.

If you wish to make any changes to your personal information, you may contact us. We will generally rely on you to ensure the information we hold about you is accurate or complete.

Using government identifiers

We do not adopt a government related identifier of an individual as our own identifier unless required or authorised to do so by or under an Australian law, regulation or court/tribunal order.

How safe and secure is your personal information that we hold?

We are committed to ensure that we protect any personal information we hold from misuse, interference, loss, unauthorised access, modification and disclosure. For this purpose we have a range of practices and policies in place to provide a robust security environment. We ensure the on-going adequacy of these measures by regularly reviewing them.

Our security measures include, but are not limited to:

  • educating our staff and representatives about how to protect your personal information and updating them about cybersecurity developments, threats and scams,
  • requiring our staff and representatives to use passwords when accessing our systems,
  • where appropriate, using strict confidentiality arrangements restricting third parties’ use or disclose of personal information for any unauthorised purposes,
  • employing physical and electronic means, including access controls (as required) to protect against unauthorised access to buildings,
  • employing firewalls, intrusion prevention systems and virus scanning tools to protect against unauthorised persons, malware and viruses from entering our systems,
  • some of the systems we use are on dedicated secure networks or transmit electronic data via encryption, and
  • providing secure storage for physical records and securing paper files in locked cabinets and physical access restrictions.
  • Where personal information is no longer required, we take steps to de-identify or destroy the information in a secure manner.

Accessing and updating personal information

We ensure that the personal information we collect and use or disclose is accurate, up to date, complete and relevant. Please contact us if any of the details you have provided to us change or if you believe that the information we have about you is not accurate or up to date.

You can request us to provide you with access to the personal information we hold about you. Requests for access to limited amounts of personal information, such as checking to see what address or telephone number we have recorded, can generally be handled over the telephone.

If you would like to request access to more substantial amounts of personal information such as details of what is recorded in your account file, we will require you to complete and sign a “Request for Access to Personal Information” form. Following receipt of your request, we provide you with an estimate of the access charge and confirm that you want to proceed.

We do not charge you for making the request for access, however access charges may apply to cover our costs in locating, collating and explaining the information you request. The charges are based on a rate of 150 dollars per hour.

We will respond to your request as soon as possible and in the manner requested by you. We endeavour to comply with your request within 14 days of its receipt but, if that deadline cannot be met owing to exceptional circumstances, your request will be dealt with within 30 days. It helps us provide access if you can tell us what you are looking for. Your identity is confirmed before access is provided.

Personal information collected may also be used for direct marketing purposes to promote events, products or services that may be of relevance to you. Please contact us should you wish not to receive direct marketing.

How we protect personal information

We strive to ensure that the personal information that you provide to us is stored safely and securely. We take a number of precautions to protect the personal information we hold about you from misuse, interference and loss, and from unauthorised access, modification or disclosure.

We have a range of practices and policies in place to protect personal information we hold, including:

  • educating our staff and representatives about how to protect your personal information and updating them about cybersecurity developments, threats and scams,
  • requiring our staff and representatives to use passwords when accessing our systems,
  • where appropriate, using strict confidentiality arrangements restricting third parties’ use or disclose of personal information for any unauthorised purposes,
  • employing physical and electronic means, including access controls (as required) to protect against unauthorised access to buildings,
  • employing firewalls, intrusion prevention systems and virus scanning tools to protect against unauthorised persons, malware and viruses from entering our systems,
  • some of the systems we use are on dedicated secure networks or transmit electronic data via encryption, and
  • providing secure storage for physical records and securing paper files in locked cabinets and physical access restrictions.
  • Where personal information is no longer required, we take steps to de-identify or destroy the information in a secure manner.

Contact Us and Complaints

If you have any questions or would like further information about our privacy and information handling practices, please contact us by:

a) Post: Suite 2, Level 5, 2 Bligh Street SYDNEY NSW 2000
b) Phone: 1300 978 225
c) Email: contact@yieldstack.com

We offer a free internal complaint resolution scheme to all of our customers. If you have a privacy complaint, please contact us to discuss your concerns. You also have free access to an external dispute resolution scheme in which we are a member.

To assist us in helping you, we ask you to follow a simple three-step process:
a) Gather all supporting documents relating to the complaint.
b) Contact us and we will review your situation and if possible resolve your complaint immediately.
c) If the matter is not resolved to your satisfaction, please contact our Complaints Officer on 1300 978 225 or put your complaint in writing and send it to YieldStack Capital – Suite 2, Level 5, 2 Bligh Street SYDNEY NSW 2000.

If you are still not satisfied, you have the right to contact the Office of the Australian Information Commissioner (“OAIC”). You can contact the OAIC to make a query concerning your privacy rights, or to lodge a complaint with the OAIC about how we have handled your personal information. You can contact the OAIC’s hotline on 1300 363 992 or visit their website at www.oaic.gov.au. The OAIC has the power to investigate a complaint and make a determination.

About this Policy

We may amend or update our Privacy Policy as required by law or as our business processes or technology changes. We will post the updated policy on our website – www.yieldstack.com We encourage you to check our website from time to time to view our current policy or contact us for a printed copy.

Menu