Privacy Policy

Your privacy matters to us. This policy explains how mylphorexan handles your personal information when you use our budget essentials services.

Last Updated: 15 March 2025

Information We Collect

We collect information to provide better budget management services to our Australian customers. Here's what we gather and why:

Information You Provide Directly

  • Account Information: Name, email address, phone number when you sign up
  • Financial Data: Budget categories, spending patterns, financial goals you choose to share
  • Communication Records: Messages you send through our contact forms or support channels
  • Survey Responses: Feedback about our services when you participate in surveys

Automatically Collected Information

  • Usage Data: Pages visited, features used, time spent on our platform
  • Device Information: Browser type, operating system, IP address, device identifiers
  • Location Data: General location based on IP address to serve relevant Australian content
  • Cookies: Small files stored on your device to improve your experience

Important Note: We never collect your actual bank account details, passwords, or complete financial records. You remain in control of what budget information you share with us.

How We Use Your Information

Your information helps us deliver personalised budget essentials services. We use your data for these specific purposes:

Purpose Legal Basis Data Used
Provide budget management tools Contract performance Account info, financial categories
Customer support and communication Legitimate interest Contact details, communication records
Improve our services Legitimate interest Usage data, feedback responses
Send educational content Your consent Email address, preferences
Comply with legal obligations Legal compliance Various, as required by law

Marketing Communications

We'll only send you marketing emails about budget tips and service updates if you've opted in. You can unsubscribe anytime using the link in our emails or by contacting us directly.

How We Share Your Data

We don't sell your personal information to anyone. However, we may share your data in these limited circumstances:

Service Providers

We work with trusted third-party companies to help deliver our services:

  • Cloud Hosting: AWS Australia for secure data storage
  • Email Services: Mailchimp for sending newsletters and updates
  • Analytics: Google Analytics to understand how people use our website
  • Customer Support: Zendesk to manage support requests

Legal Requirements

We may disclose your information if required by Australian law, court orders, or government requests. We'll notify you unless legally prohibited from doing so.

Business Transfers

If mylphorexan is acquired or merges with another company, your information may transfer to the new entity. We'll notify you of any such changes.

All our service providers must agree to strict data protection standards. They can only use your information to help us provide services to you.

Your Privacy Rights

Under Australian Privacy Principles, you have several rights regarding your personal information:

Access Your Data

Request a copy of all personal information we hold about you. We'll provide this within 30 days.

Correct Information

Update or correct any inaccurate personal information in your account at any time.

Delete Your Data

Request deletion of your personal information, subject to legal retention requirements.

Restrict Processing

Limit how we use your information in certain circumstances while keeping your account active.

Data Portability

Receive your personal data in a structured format to transfer to another service.

Withdraw Consent

Remove consent for marketing communications or optional data processing activities.

How to Exercise Your Rights

To make any of these requests:

  1. Email us at info@mylphorexan.com with "Privacy Request" in the subject line
  2. Include your full name and email address associated with your account
  3. Specify which right you want to exercise and provide relevant details
  4. We'll verify your identity and respond within 30 days

How We Protect Your Data

We take data security seriously and implement multiple layers of protection:

Technical Safeguards

  • Encryption: All data is encrypted both in transit and at rest using AES-256 encryption
  • Secure Servers: Our servers are hosted in Australian data centres with 24/7 monitoring
  • Access Controls: Only authorised staff can access your data, using multi-factor authentication
  • Regular Updates: We keep all systems updated with the latest security patches

Organisational Measures

  • Staff Training: All team members receive regular privacy and security training
  • Data Minimisation: We only collect and store information necessary for our services
  • Regular Audits: Annual security assessments by independent third parties
  • Incident Response: Clear procedures for handling any potential data breaches

What You Can Do

Help keep your account secure by:

  • Using a strong, unique password for your mylphorexan account
  • Not sharing your login details with anyone
  • Logging out when using shared computers
  • Contacting us immediately if you suspect unauthorised access

How Long We Keep Your Data

We don't keep your information longer than necessary. Here are our retention periods:

Data Type Retention Period Reason
Account Information Until account closure + 7 years Legal compliance, tax records
Budget Data Until account closure + 2 years Service provision, support queries
Communication Records 3 years from last contact Customer service quality
Website Analytics 26 months Service improvement
Marketing Consent Until consent withdrawn Regulatory compliance

Account Deletion

When you delete your account, we'll remove your personal data according to the schedule above. Some information may be retained in anonymised form for statistical purposes or as required by Australian law.

International Data Transfers

While we primarily store data in Australia, some of our service providers may process your information overseas:

Where Your Data Might Go

  • United States: Google Analytics, Mailchimp (Privacy Shield certified)
  • European Union: Some cloud backup services (GDPR compliant)
  • Singapore: Regional content delivery network servers

Protection Measures

When transferring data internationally, we ensure:

  • All transfers comply with Australian Privacy Principles
  • Adequate protection through contractual safeguards
  • Recipients maintain equivalent privacy standards
  • Data is encrypted during transfer and storage

You have the right to know where your data is being processed and can object to international transfers in certain circumstances.

Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience on our website:

Types of Cookies We Use

  • Essential Cookies: Required for basic website functionality and security
  • Performance Cookies: Help us understand how visitors use our site
  • Functional Cookies: Remember your preferences and settings
  • Marketing Cookies: Used with your consent to show relevant content

Managing Cookies

You can control cookies through:

  • Your browser settings (though this may affect website functionality)
  • Our cookie preference centre when you first visit
  • Contacting us to update your preferences

Third-Party Analytics

We use Google Analytics to understand website usage. This involves:

  • Tracking page views and user interactions
  • Anonymising IP addresses
  • Not linking analytics data to your personal account
  • Providing opt-out options through your browser

Third-Party Services and Links

Our website may contain links to external sites or integrate with third-party services:

External Links

When you click links to other websites, those sites have their own privacy policies. We're not responsible for how external sites handle your information, so please check their privacy practices.

Social Media Integration

We may include social media sharing buttons. These don't automatically share your data, but the social media companies may track that you visited our site if you're logged into their services.

Payment Processors

If we introduce paid services, we'll use secure payment processors who comply with PCI DSS standards. We won't store your payment card details on our servers.

Children's Privacy

Our budget essentials services are designed for adults managing their finances. We don't knowingly collect personal information from children under 18 without parental consent.

If You're Under 18

If you're under 18 and want to use our services:

  • Please ask a parent or guardian to create an account
  • They can help you learn about budgeting using our tools
  • We recommend adult supervision for financial education

For Parents

If you believe your child has provided us with personal information without your consent, please contact us immediately. We'll delete the information and close any accounts created by minors.

Changes to This Privacy Policy

We may update this privacy policy to reflect changes in our services, legal requirements, or industry best practices.

How We'll Notify You

When we make changes, we'll:

  • Update the "Last Updated" date at the top of this policy
  • Send email notifications for significant changes
  • Post notices on our website for major updates
  • Give you time to review changes before they take effect

Your Continued Use

By continuing to use our services after policy changes take effect, you accept the updated terms. If you don't agree with changes, you can close your account or contact us to discuss your concerns.

Privacy Questions and Concerns

We're here to help with any privacy-related questions or concerns about how we handle your personal information.

Email info@mylphorexan.com
Phone +61 2 6654 0320
Mail Fetherstone St
Bankstown NSW 2200
Australia

If you're not satisfied with our response to your privacy concern, you can contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au