Spot Me Finance Pty Ltd (“SMF”, “we” or “us” - ABN 18 162 037 916) is a licensed credit provider (Australian Credit Licence Number 450321) offering short-term, small amount loans.
It is important to us that you are confident that we will protect any personal information we hold about you. We are committed to protecting your personal information through compliance with the Privacy Act and any other relevant laws.
When we refer to “Personal information" we mean information (including an opinion) that identifies an individual or reasonably enables an individual to be identified. For credit applicants, such as our customers, this may include information about credit worthiness, credit history or capacity to repay a loan.
The kinds of personal information we may collect and hold about you include:
We will collect personal information directly from you where reasonably possible. We may do so when you complete our forms via the internet (which may include providing supporting documentation), when you call us, email us or otherwise during the course of our relationship with you (including collecting information from you in person). For example, we will collect information internally about your payment performance if you have a credit contract with us. We may also collect personal information about you from third parties, such as any referees provided by you, your employer, debt collection agencies, credit reporting bodies, or our card services provider, other credit providers, government, statutory, regulatory or enforcement bodies and any other person or organisation you ask us to collect your personal information from. With your consent, we may also collect your personal information from third party social media platforms such Facebook.
We may also be required (or authorised) by Australian laws to collect your personal information. These laws include the Anti-Money Laundering and Counter-Terrorism Act, the National Consumer Credit Protection Act, and other laws, such as tax law and corporation’s law.
You must not give us inaccurate or incorrect information or omit to provide us with information. If we cannot collect your personal information, we may not be able to provide you with our products or services.
We use and disclose your personal information for the purposes we collected it and for related purposes (where you would reasonably expect us to).
We may collect, hold, use, and disclose your personal information for the following general purposes:
Prior to disclosing any of your personal information to another person or organisation, we will take all reasonable steps to satisfy ourselves that:
We do not currently disclose your personal information to recipients located overseas.
We may use cloud storage to store the personal information we hold about you. The cloud storage and the IT servers are in Australia.
Where it is necessary to do so, for instance, if you experience financial hardship, we may collect, use, and disclose personal information about you that is sensitive information. This includes information about your health, your religious beliefs, your political affiliations, or your criminal history. Unless we are required or authorised by law to collect, use, or disclose your sensitive information, we will obtain your consent to do so. We may ask for your express consent or your consent may be implied from an action you take (or do not take). For example, if you provide us with sensitive information when you are having any difficultly in meeting financial obligations that you owe to us, y our consent to us collecting, using or disclosing that information will be implied from the circumstances.
We do not use your Tax File Number, Medicare Number, Pension Number or any other government identifier as your account or application number. We only use and disclose these numbers for the purposes required or authorised by law.
We mostly hold personal information electronically in our IT systems, secure servers, and databases. We use third party service providers to store and process some personal information. These may include Australian or overseas based technology service providers and the use of servers of third parties within and outside Australia.
We take reasonable steps and precautions to safeguard your personal information from loss, misuse, unauthorised access, disclosure, or modification. We do this in a number of ways, including:
When we no longer require your personal information (including when we are no longer required by any other law to keep records relating to you), we will securely destroy or de-identify it.
You may request access to the personal information that we hold about you at any time by contacting us on firstname.lastname@example.org. When you contact us and request access to your personal information, we will need to verify your identity first. Making a request is free, but in some instances, we may charge you a fee to cover the cost of retrieval and supply of information to you. The fee will not be excessive, and we will let you know if a fee will apply before we proceed with giving you access. We will deal with your request for such access within a reasonable time.
We take reasonable steps to make sure that the personal information we collect, use, or disclose is accurate, complete and up to date.
However, if you believe that personal information, we hold about you is incorrect, incomplete or not current, you can request that we update this information by contacting us on email@example.com. If appropriate, we will correct the personal information at the time of the request, otherwise, we will provide an initial response to you within 7 days of receiving your request. Where reasonable, and after our investigation, we will provide you with details about whether we have corrected the personal information within 30 days.
If your request relates to credit-related personal information that has been provided to us, we may need to consult with other credit providers or credit reporting bodies. Where reasonable, and after our investigation, we will provide you with details about whether we have corrected the personal information within 30 days if possible. If there is a delay, we will tell you the reason for the delay and ask you to agree to an extension of time to complete our investigation.
We may use and disclose your personal information (other than sensitive information), including your contact details, to provide you with information about products and services, including those of third parties, which we consider may be of interest to you. We may contact you by [email, text message, phone or by post] to let you know about our products and services or those of third parties. We may also use internet-based marketing including targeted online advertising and online behavioural marketing.
We may also provide your personal information to other organisations for their specific marketing purposes. You can contact us at any time and “opt out” if you no longer wish to receive marketing communications from us, our related companies or our partners. You can opt-out by contacting us on firstname.lastname@example.org and requesting that we no longer send marketing communications to you or disclose your personal information to other organisations for their marketing purposes, or by 'unsubscribing' from email marketing messages.
If you apply to us for credit, we may obtain a credit report about you from a credit reporting body. A credit report contains information about your credit history. We may also provide credit-related personal information about you to credit reporting bodies, including information about the type of credit you have, the amount of credit provided and whether or not you have met your repayment obligations. If you have committed a serious credit infringement (such as fraud) we may also provide that information to credit reporting bodies.
The credit reporting body we may exchange credit-related personal information with is:
Veda Advantage Information Services and Solutions (Equifax).
Postal address: PO Box 964, North Sydney, NSW 2059
You can obtain Equifax’s policy about their management of personal information by contacting them or visiting their website.
The Privacy Act limits the personal information about you that credit providers can disclose to credit reporting bodies. It also limits the ways in which credit providers can use or disclose credit reports.
If you fail to meet your repayment obligations under a credit contract provided by us, or commit a serious credit infringement, we may be entitled to disclose this to a credit reporting body.
Credit reporting bodies may include personal information provided by us in reports provided to other credit providers to assist them to assess your credit worthiness.
If your complaint is about the way we handle your credit-related personal information you can also make a complaint to the Office of the Australian Information Commissioner by calling them at 1300 363 992, online at www.oaic.gov.au or writing to the Office of the Australian Information Commissioner, GPO Box 5218 Sydney NSW 2001.