At CardHero Pty Ltd ABN 42 644 909 400 (CardHero, we, us or our), we are committed to protecting your privacy in accordance with the Privacy Act 1988 (Cth). This Privacy Policy describes our policies and practices in relation to how we collect, handle, use and disclose your personal information. It also deals with how you can complain about a breach of the privacy laws, how you can access the personal information we hold about you and how to have that information corrected.
CardHero is a provider of prepaid corporate cards which are issued by EML Payment Solutions Limited ABN 30 131 436 532 AFSL 404131 (EML Payments). CardHero also provides other services related to the corporate card management and online services to customers and cardholders.
‘Personal information’ means any information or an opinion about you, from which you are, or may reasonably be, identified.
We collect personal information if you choose to provide it to us, for example by emailing us or entering information about yourself into our website or mobile app. This includes your name, date of birth, email address and mobile number. We may also collect data from your use of our website and we use cookies to keep track of your use of our website.
We do not collect sensitive information about you, unless we are required to do so by law or unless you provide consent. Sensitive information includes information about your race, religion, trade union membership, political opinion, health, sexual preference, criminal record or health or biometric information.
If you do not provide the information requested by us, we may not be able to provide you with our services.
We will generally collect personal information about you from you. We could do this in a number of ways, including when you send us an email to enquire about our website, use our web portal or mobile app.
We may also collect personal information about you from other people or organisations where you have authorised them to provide us this information or it is not reasonable or practicable for us to collect information directly from you. For example, we may collect your personal information from LinkedIn, your employer, your service provider or other service providers.
From time to time, we may also purchase lists containing personal information about individuals from organisations offering such lists for marketing purposes.
Our server automatically collects information about your use of our website including the type of browser you are using, your IP address, the URL you have come from and the time spent at that URL, cookies and your domain type and server. This kind of information is collected by many sites.
We collect your information primarily for the purposes of providing you with our services, including providing you with access to our website and mobile app and for card issuance and card management.
Other purposes for which we do this include to:
We use personal information you provide to us to obtain a better understanding of your needs, identify you to facilitate card applications and to respond to your queries.
In connection with our services, your personal information may be disclosed to:
We do not sell, rent, or trade personal information to or with third parties.
We may from time to time provide your personal information to persons located outside Australia in accordance with the Privacy Act. We will only do this to person in countries whose privacy laws do provide the same level of protection as Australian privacy laws. For example, we may provide your personal information to the Asia-Pacific, European Union, or the United States of America. We may also use cloud storage and IT servers that are located offshore.
In an event the privacy laws where the overseas recipient is located are not equivalent or comparable to Australian privacy laws, we will only disclose your information after taking such steps as are reasonable in the circumstances to ensure that any overseas recipient complies with Australian privacy laws in relation to your personal information.
We take reasonable steps to ensure the security of personal information held by us from security risks such as loss or unauthorised access, destruction, use, modification or disclosure. Our IT systems are password protected and comply with our security standards, and if personal information is held on paper files, it is stored in premises that are locked when unattended.
We keep personal information only for as long as is reasonably necessary for the purpose for which it was collected or to comply with any applicable legal or ethical reporting or document retention documents.
If you do not wish to receive marketing information, you may at any time decline to receive such information by contacting us (see ‘How to contact us’). We will not charge you for giving effect to your request and will take all reasonable steps to meet your request at the earliest possible opportunity.
You have a right to seek access to your personal information which we hold about you and ask us to correct it.
If you wish to access your personal information that we hold about you, we ask that you write to us and provide us sufficient information for us to identify the information (see ‘How to contact us’). Upon receipt of your written request, we will explain how we handle your access request. We will also correct, amend or delete any personal information that we agree is inaccurate, irrelevant, out of date or incomplete.
We do not charge for receiving a request for access to personal information or for complying with a correction request. In other cases, we may charge you for the cost of providing access to these records.
There may be situations where we are not required to provide you with access to your personal information. For example, such a situation would be information relating to an existing or anticipated legal proceeding with you, or if a statutory secrecy provision requires us to refuse your request. An explanation will be provided to you if we deny you access to your personal information we hold.
In most circumstances it will be necessary for us to identify you in order to successfully do business with you, however, where it is lawful and practicable to do so, we will offer you the opportunity of doing business with us without providing us with personal information.
If you have any concerns about the way we manage your personal information or would like to lodge a complaint, you can contact us (see ‘How to contact us’).
We will deal with any complaint by investigating the complaint, and providing a response to the complainant within 30 days of you making the complaint, provided that we have all necessary information and have completed any investigation required. In cases where further information, assessment or investigation is required, we will seek to agree alternative timeframes with you.
If your complaint is not resolved, you may refer your complaint to the Office of the Australian Information Commissioner who can be contacted by phone at 1300 363 992, by email at enquiries@oaic.gov.au, by post at GPO Box 5218, Sydney NSW 2001 or you can go to www.oaic.gov.au.
HOW TO CONTACT US?
If you have any questions or comments about our Privacy Policy, or if you wish to complain about how we have handled personal information, please contact us by
Mail: PO Box 21022 World Square NSW 2002
Email: support@cardhero.co
Phone: +61 2 8328 0505
When you use our website, cookies will be placed on your computer to keep track of your use of our website. Cookies do not capture or track any personal information. You may elect to set your computer so that cookies are not placed on your computer.
Sometimes our website contain links to other websites, for your convenience and information. When you access a website other than www.cardhero.co, please understand that we are not responsible for the privacy practices of that site. We recommend that you review the privacy policies of each site you visit.
While we will take reasonable steps, to protect personal information held by you from misuse, loss, unauthorised access, modification or disclosure, we will have no liability whatsoever with respect to any personal information held by a third party in connection with the supply of any product or service provided by us.
We may change our Privacy Policy from time to time. When we make changes, we will post a notice on our website and make a new copy of the updated Privacy Policy available here. If you continue to use our website after we do so, you have accepted the new privacy policy.
This policy was last updated on 19 January 2023.
FortBlanc by Ubertor © 2018 All Rights Reserved.
