What Information We Collect

Personal Details You Give Us

When you sign up for a ivakearexmorivo account, we need certain information to verify your identity and meet our legal obligations under Australian financial regulations. This includes your full name, date of birth, residential address, email, and phone number. We also collect your Tax File Number when required, though you can choose not to provide this—it just means we might need to withhold tax on interest earned.

If you're opening a business account, we'll need additional details like your ABN, business structure, and information about beneficial owners. This comes from anti-money laundering requirements, not because we're nosy.

Financial Information

We collect details about your transactions, account balances, payment history, and spending patterns. This helps us provide your banking services, detect fraud, and occasionally offer features we think might help you manage money better.

Technical and Usage Data

Our systems automatically collect information when you use our services. This includes your IP address, device type, operating system, browser details, and how you interact with our app or website. We use this to keep your account secure and improve our services.

Location data is collected when you use our mobile app, but only if you've given permission. We use this for finding nearby ATMs and detecting potentially fraudulent transactions from unusual locations.

How We Use Your Information

Everything we collect serves a purpose. We don't gather data just to have it sitting in a database somewhere.

Providing Banking Services

The obvious one—we need your information to operate your accounts, process transactions, issue cards, and provide customer support. Without this data, we literally couldn't provide banking services.

Security and Fraud Prevention

We analyze transaction patterns and login behavior to spot suspicious activity. If someone tries to access your account from an unusual location or makes a transaction that doesn't fit your typical patterns, our systems flag it. Sometimes we get false positives and block legitimate transactions, which is annoying but better than the alternative.

Meeting Legal Obligations

As a financial institution in Australia, we're required to report certain transactions to AUSTRAC, verify customer identities, and maintain detailed records. This isn't optional—it's the law. We collect and retain data specifically for these compliance requirements.

Improving Our Services

We analyze aggregated, de-identified data to understand how people use our services and where we can improve. For example, if everyone's struggling with a particular feature in our app, that tells us we need to redesign it.

Sharing Your Information

We share your data in specific situations, and we're upfront about when and why this happens.

Service Providers

We work with companies that help us operate our services—payment processors, cloud hosting providers, customer support platforms, and identity verification services. These providers only access the information necessary to perform their specific functions and are contractually bound to protect your data.

Our key service providers include cloud infrastructure in Australia and Singapore, with all customer data primarily stored within Australian data centers.

Legal Requirements

We disclose information when required by Australian law, court orders, or government agencies with proper legal authority. This includes reporting to AUSTRAC for anti-money laundering purposes and responding to valid subpoenas.

Business Transfers

If ivakearexmorivo is acquired by or merges with another company, your information would be transferred as part of that transaction. We'd notify you before this happens and before your information becomes subject to a different privacy policy.

With Your Consent

In situations not covered above, we'll ask for your explicit permission before sharing your information with third parties.

Your Privacy Rights

Under Australian privacy law, you have specific rights regarding your personal information. These aren't just theoretical—we've built processes to make sure you can actually exercise them.

How to Exercise Your Rights

To make any of these requests, contact our privacy team at contact@ivakearexmorivo.com with "Privacy Request" in the subject line. We'll need to verify your identity before processing requests—usually by confirming details from your account.

Most requests are handled within 30 days. If we need more time, we'll let you know why and give you an estimated completion date.

Data Security

We take security seriously, using multiple layers of protection to keep your information safe.

Technical Safeguards

All data transmitted between your device and our servers uses TLS encryption. Data stored in our systems is encrypted at rest using AES-256 encryption. We use separate encryption keys for different data types, and these keys are rotated regularly.

Our infrastructure is hosted in certified data centers with physical security controls, redundant systems, and regular security audits. We maintain backups in geographically separate locations to prevent data loss.

Access Controls

Employees only access customer data when necessary for their job functions. All access is logged and monitored. Our support team can see basic account information to help you, but they can't view sensitive details like full card numbers or passwords.

We require multi-factor authentication for all employee accounts and regularly review access permissions to make sure they're still appropriate.

Monitoring and Response

Our security team monitors systems continuously for suspicious activity. We have incident response procedures ready if a security issue occurs, including notification processes to keep affected customers informed.

International Data Transfers

Your data is primarily stored and processed in Australia. However, some of our service providers operate infrastructure in other countries, particularly Singapore for backup systems and disaster recovery.

When we transfer data internationally, we ensure that:

• The receiving country has privacy protections substantially similar to Australian law, or
• We've implemented appropriate safeguards like standard contractual clauses, or
• You've provided explicit consent for the transfer

We don't transfer data to countries without adequate privacy protections unless absolutely necessary and with your informed consent.

Data Retention

We keep your information only as long as necessary for legitimate business purposes or legal requirements.

Active Accounts

While your account is active, we retain all necessary information to provide services and meet our legal obligations.

Closed Accounts

After you close your account, we're required by Australian banking regulations to retain transaction records and identity documents for seven years. After this period, we securely delete your information unless there's a specific legal reason to keep it longer.

Marketing Data

If you've opted into marketing communications, we'll keep your contact preferences until you unsubscribe or your account is closed.

Cookies and Tracking

Our website and app use cookies and similar technologies. Here's what you should know:

Essential Cookies

These are necessary for our services to work. They handle things like keeping you logged in and remembering your security preferences. You can't disable these if you want to use our services.

Analytics Cookies

We use these to understand how people use our website and app so we can improve them. This data is aggregated and doesn't identify you personally. You can disable these in your browser settings without affecting functionality.

Security Cookies

These help us detect fraud and keep your account secure by recognizing your devices and spotting unusual login patterns.

We don't use advertising cookies or share cookie data with third-party advertisers.

Changes to This Policy

We update this privacy policy occasionally to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you by email and display a notice in our app.

The "Last Updated" date at the top of this policy shows when the current version took effect. We keep previous versions archived and available upon request.

Continuing to use our services after changes take effect means you accept the updated policy. If you don't agree with changes, you can close your account—though we'd prefer to discuss your concerns first.

Children's Privacy

Our services aren't designed for children under 18. We don't knowingly collect personal information from minors without parental consent.

If you're under 18 and want to open an account, a parent or guardian needs to be involved in the process and consent to the collection of your information.

If we discover we've collected data from a child without proper consent, we'll delete it promptly.