Privacy policy

Defined terms/glossary
Personal data collected by us
Purposes for which personal data will be processed
Sharing of personal data
International transfer
Retention of personal data
Security of personal data
Your rights
Notice to end-user and other exclusions
Changes to the policy

DCF

DCF Loans Pty Ltd

Privacy Policy

Drafted: 29 August 2024

This privacy policy (“Privacy Policy”) explains how DCF Lending Pty Ltd or any of its related body corporates or affiliates (“DCF”, “We”, “Us”, “Our”) Processes Personal Data collected from You.

1. Defined terms/glossary

Controller means the natural or legal person, public authority, agency, or other body which alone or jointly with others, determines the purposes and means of the processing of Personal Data.

End-User means any person or entity that access or uses the Website. 

Personal Data means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Process means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Processor means a natural or legal person, public authority, agency, or other body which Processes Personal Data on behalf of the Controller.

Service(s) means the lending services and related services that are offered by DCF. 

Subscriber means the natural or legal person that has subscribed to the Service(s) by agreeing to the Terms and Conditions. 

Terms and Conditions means the binding contract between DCF and You which governs the access and use of the Service(s) by You available at https://dcfloans.com.au/terms-and-conditions/

Website(s) means the website that DCF operates located at https://dcfloans.com.au/ (including mobile phone sites). 

You and Your means an identified or identifiable natural person whose Personal Data that DCF processes as a Controller.

2. Personal data collected by us

The type of personal information we gather generally depends on the services or products provided, either directly to you or to someone connected to you. If you are an individual, the information we may collect could include some or all of the following:

  • 2.1
  • You directly provide Us with most of the data We collect. We collect Personal Data from You directly as follows:
    • (a)
    • Personal Information: Such as names, email addresses, and contact details that you provide when interacting with us, either through our website or directly.
    • (b)
    • Technical Information: Including but not limited to IP addresses, browser types, and other technology on the devices you use to access our services.
  • 2.2
  • We may also receive Your Personal Data indirectly as follows:
    • (a)
    • from third party sources like marketing lists, databases and social media but only where We have checked that these third parties either have Your consent or are otherwise legally permitted or required to disclose Your Personal Data to Us; 
    • (b)
    • When You download and/or use the Service(s), We automatically collect information on the type of device You use, and the operating system version, to provide our Services to You; 
    • (c)
    • When You use or view Our Website(s), information is collected via Your browser’s cookies as described in clause 9 of this policy.    
  • 2.3
  • The Website(s) includes social media features and widgets that are either hosted by a third-party or hosted directly on the Website(s) and Your interaction with these social media features and widgets is governed by the privacy statement of the companies that provide them. You should check Your privacy settings on these third-party services to understand and change the information sent to Us through these services.

3. Purposes for which personal data will be processed

  • 3.1
  • We Process Your Personal Data to:
  • (a)
    • facilitate Your access to the Website(s) and Service(s);
  • (b)
    • process and complete payment transactions;
  • (c)
    • provide customer service and support; 
  • (d)
    • send You communication on Your use of the Service(s), updates on Our Terms and Conditions or other policies;  
  • (e)
    • send You communication on new features in the Service(s) or new service offerings;   
  • (f)
    • conduct research, analysis and development activities (including but not limited to data analytics, surveys and/or profiling) to improve Our Service(s) and facilities in order to enhance Your relationship with Us or for Your benefit, or to improve any of Our Service(s) for Your benefit;    
  • (g)
    • organise events or for other marketing/ promotional activities;     
  • (h)
    • investigate and prevent fraudulent transactions, unauthorised access to the Websites and Service(s), and other illegal activities;     
  • (i)
    • personalise the Websites and Service(s); and for other purposes for which We obtain Your consent.     

4. Sharing of personal data

  • 4.1
  • You acknowledge that We will share Your Personal Data with Our group companies and third-party service providers so that they may offer You Our Service(s) and/or to send information or updates on the Service(s) if You are a Subscriber.
  • 4.2
  • When We Process Your order where You are a Subscriber, we may send Your Personal Data to and also use the resulting information from credit reference agencies to prevent fraudulent purchases.
  • 4.3
  • We share Personal Data with Our third-party service providers that host and maintain the Our Website(s), applications, backup, storage, payment processing, analytics and other services. These third-party service providers may have access to or Process Your Personal Data for the purpose of providing these services to Us.
  • 4.4
  • We may share Your Personal Data with third-party providers who assist Us in marketing and promotions in compliance with applicable laws.
  • 4.5
  • We may be required to disclose Your Personal Data in response to: 
  • (a)
  • lawful requests by public authorities, including to meet national security or law enforcement requirements; and/or
  • (b)
  • subpoenas, court orders, or legal process, or to establish or exercise Our legal rights or defend against legal claims.
  • 4.6
  • We may also share Personal Data to assist investigation and prevention of illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of Our Terms and Conditions, or as otherwise required by law. 

5. International transfer

  • 5.1
  • We mainly Process Personal Data in Australia. However, We may transfer Personal Data outside Australia for the purposes referred to in Section 4. We will ensure that the recipient of Your Personal Data offers an adequate level of protection that is at least comparable to that which is provided under applicable data protection laws.

6. Retention of personal data

  • 6.1
  • We retain the Personal Data collected where an ongoing legitimate business requires retention of such Personal Data.
  • 6.2
  • In the absence of a need to retain Personal Data under Section 6.1. above, We will either delete it or aggregate it, or, if this is not possible then We will securely store Your Personal Data and isolate it from any further Processing until deletion is possible.

7. Security of personal data

  • 7.1
  • We use appropriate technical and organizational measures to protect the Personal Data that We collect and Process. The measures We use are designed to provide a level of security appropriate to the risk of Processing Your Personal Data.  If You have questions about the security of Your Personal Data, please contact Us immediately as described in this Privacy Policy.

8. Your rights

  • 8.1
  • You are entitled to the following rights:
  • (a)
  • You can request Us for access, correction, update or request deletion of Your Personal Data.  You can obtain that access or seek correction, update or deletion by contacting our Privacy Officer as follows:
We will need to verify the individual’s identity before giving access or correcting or updating the Personal Data.  We will usually provide the requested Personal Data within 30 days of receiving the request.  There is no charge to make a request.  If there is a reason why we do not make the requested Personal Data available, we will provide our reason in writing.  Such circumstances may include:
  • access would create a serious threat to safety;
  • providing access will have an unreasonable impact upon the privacy of other individuals;
  • the request is frivolous;
  • legal proceedings are underway;
  • negotiations may be prejudiced by such access;
  • access would reveal a commercially sensitive decision-making process.
  • (b)
  • You can object to the Processing of Your Personal Data, ask Us to restrict the processing of Your Personal Data, or request the portability of Your Personal Data.
  • (c)
  • You have the right to opt-out of marketing communications We send You at any time. You can exercise this right by clicking on the “unsubscribe” or “opt-out” link in the marketing emails We send You. To opt-out of other forms of marketing (such as postal marketing or telemarketing), please Contact Us.
  • (d)
  • Similarly, if We have collected and processed Your Personal Data with Your consent, then You can withdraw your consent at any time. Withdrawing Your consent will not affect the lawfulness of any processing We have conducted prior to Your withdrawal, nor will it affect processing of Your Personal Data conducted in reliance on lawful processing grounds other than consent.
  • (e)
  • You have the right to complain about Our collection and use of Your Personal Data. 
If You consider that we have failed to comply with the Privacy Act 1988 (including the Australian Privacy Principles),  You should contact our Privacy Officer on the Contact Details provided below.  We will then follow our internal dispute resolution system.  We will acknowledge the complaint within 5 days.  A decision will be made and advised within 30 days or a longer period as may be agreed with the individual. If You are not satisfied with the decision, You may make a complaint to the Office of the Australian Information Commissioner (the “OAIC”).  
  • The contact details for the OAIC are:
  • The Office of the Australian Information Commissioner
  • GPO Box 5288 SYDNEY NSW 2001
  • (f)
  • Our assurance that we will not spam, sell or rent Your email address. 

9. Notice to end-user and other exclusions

  • 9.1
  •  Our Service(s) are intended for use by enterprises. Where the Services are made available to an End-User through a Subscriber, that enterprise is the Controller of the End-User’s Personal Data. In such a case, the End-User’s data privacy questions and requests should be submitted to the Subscriber in its capacity as the End-User’s Controller. If the End-User is an individual who interacts with a Subscriber using Our Services, the End-User will be directed to contact Our Subscriber for assistance with any requests or questions relating to their Personal Data. We are not responsible for Subscribers’ privacy or security practices which may be different from this notice. Subscribers to Our Services are solely responsible for establishing policies for and ensuring compliance with all applicable laws and regulations, as well as any and all privacy policies, agreements, or other obligations, relating to the collection of Personal Data in connection with the use of Our Services by End-Users.
  • 9.2
  • Our Website(s) contain links to other websites. Our Privacy Policy applies only to our Website(s), so if You click on a link to another website, You should read their privacy policy. We encourage You to review the privacy statements of any such other websites to understand their Personal Data practices.
  • 9.3
  • This Privacy Policy does not apply to aggregated information which summarises statistical information about groups of members, and which does not include name, contact information, or any other information that would allow any particular individual to be identified.
  • 9.4
  • The Website may use “cookies” (these are files that are implanted in your hard drive by some websites to store information about your web use patterns) to enhance or personalise our website services. These cookies may also be used to collect and store information about your usage of our Website. We may in any case collect anonymous information that allows Us to review information about the date, time and duration of visits to our Website without identifying You. This information is generally automatically provided to Us by your web browser.

10. Contact information

You may contact us if You have any enquiries or feedback on Our personal data protection policies and procedures, or if You wish to make any request, in the following manner:

Kind Attention: Privacy Officer

11. Changes to the policy

We keep this Privacy Policy under regular review and may update this webpage at any time. This Privacy Policy may be amended at any time and You shall be notified only if there are material changes to this Privacy Policy.