Information We Collect

We collect different types of information depending on how you interact with our financial management and communication services. Here's what we gather and why:

Personal Information You Provide

When you sign up for our services or contact us, you'll share certain details directly:

• Contact details: Your name, email address, phone number, and business address
• Account information: Username, password, and security preferences
• Financial details: Payment information, billing addresses, and transaction history
• Business information: Company name, ABN, industry sector, and team size
• Communication preferences: How you want to hear from us and what topics interest you

Information We Collect Automatically

When you use our platform, we gather some technical information to improve your experience and keep things running smoothly:

• Device data: IP address, browser type, operating system, and device identifiers
• Usage information: Pages viewed, features used, time spent, and navigation patterns
• Location data: General geographic location based on IP address (not precise tracking)
• Cookies and tracking: Session data, preferences, and authentication tokens

How We Use Your Information

We don't collect data just for the sake of it. Everything we gather serves a specific purpose related to providing and improving our financial management services:

• Service delivery: To operate your account, process transactions, and provide the financial management tools you've signed up for
• Communication: To send you important updates about your account, respond to your queries, and share relevant information about our services
• Platform improvement: To understand how people use our features, identify issues, and develop better solutions
• Security and fraud prevention: To protect your account, detect suspicious activity, and maintain the integrity of our platform
• Legal compliance: To meet our obligations under Australian financial services regulations and other applicable laws
• Business operations: To manage billing, resolve disputes, and maintain proper business records

Sharing Your Information

There are some situations where we need to share your information with others. We're selective about who we work with and ensure they meet our privacy standards:

Service Providers

We work with third-party companies that help us deliver our services. These might include:

• Cloud hosting providers who store our data securely
• Payment processors who handle financial transactions
• Email service providers who help us communicate with you
• Analytics tools that help us understand platform usage

All these providers are bound by confidentiality agreements and can only use your information for the specific services they provide to us.

Legal Requirements

Sometimes we're required by law to disclose information. This happens when:

• We receive a valid subpoena or court order
• Australian regulatory authorities request information under applicable laws
• We need to protect our legal rights or prevent illegal activity
• There's a genuine emergency involving danger to someone's safety

Business Transfers

If cyntheravos is involved in a merger, acquisition, or sale of assets, your information might be transferred to the new entity. We'd notify you before this happens and explain any changes to how your data is handled.

Data Security

We take security seriously. Your financial information deserves strong protection, and we've built multiple layers of security into our systems:

That said, no system is completely immune to security breaches. We do everything reasonably possible to protect your data, but we can't guarantee absolute security. If we detect a data breach that might affect you, we'll notify you promptly and work with relevant authorities as required under Australian law.

Your Privacy Rights

Under Australian privacy law, you have significant rights regarding your personal information. Here's what you can do and how to do it:

Access Your Information

You can request a copy of the personal information we hold about you. We'll provide this within 30 days, usually at no charge. For large or complex requests, we might need more time or charge a reasonable fee to cover our costs.

Correct Your Information

If your personal information is inaccurate, out of date, or incomplete, you can ask us to correct it. You can update most information directly through your account settings, or contact us for help with changes.

Delete Your Information

You can request deletion of your personal information in certain circumstances:

• When the information is no longer necessary for the purpose it was collected
• If you withdraw consent and there's no other legal basis for us to keep it
• When you close your account and request data deletion

We might need to retain some information to comply with legal obligations, resolve disputes, or enforce our agreements. We'll explain what we're keeping and why.

Opt Out of Communications

You can unsubscribe from marketing emails at any time by clicking the unsubscribe link in any email or updating your preferences in your account settings. We'll still send you essential account-related communications.

Data Retention

We don't keep your information forever. Here's how long we retain different types of data:

• Active account data: We keep this for as long as your account remains open and active
• Financial records: Retained for 7 years after account closure, as required by Australian tax law
• Communication records: Generally kept for 3 years to help resolve any queries or disputes
• Technical logs: Usually deleted after 12 months unless needed for security investigations
• Marketing data: Removed within 60 days after you opt out or close your account

When data reaches the end of its retention period, we securely delete or anonymize it so it can't be linked back to you.

International Data Transfers

Your data is primarily stored and processed in Australia. However, some of our service providers operate globally, which means your information might occasionally be transferred overseas.

When we transfer data internationally, we ensure:

• The recipient country has privacy protections comparable to Australian standards, or
• We've put contractual safeguards in place that meet APP requirements, or
• You've given us explicit consent for the transfer

Our current service providers with potential international access are located in the United States and Singapore. All have signed data processing agreements that require them to protect your information according to Australian privacy standards.

Children's Privacy

Our services are designed for business use and aren't intended for children under 18. We don't knowingly collect personal information from minors. If we discover we've accidentally collected information from someone under 18, we'll delete it promptly.

If you're a parent or guardian and believe your child has provided us with personal information, please contact us immediately at support@cyntheravos.com.

Changes to This Policy

We review and update this privacy policy periodically to reflect changes in our practices, technology, or legal requirements. When we make significant changes, we'll notify you by:

• Sending an email to your registered address
• Displaying a prominent notice in your account dashboard
• Updating the "Last Updated" date at the top of this policy

For minor updates that don't affect how we handle your information, we'll just update the policy and change the date. We encourage you to review this policy occasionally to stay informed about how we're protecting your information.

Complaints and Disputes

If you're unhappy with how we've handled your personal information, we want to resolve it quickly:

Step 1: Contact Us
Email your complaint to support@cyntheravos.com with details of your concern. We'll acknowledge your complaint within 3 business days and aim to resolve it within 30 days.

Step 2: Escalation
If you're not satisfied with our response, you can escalate your complaint to our Privacy Officer at the same email address.

Step 3: External Review
If we can't resolve your concern, you have the right to lodge a complaint with the Office of the Australian Information Commissioner (OAIC):