Who We Are

caderonival operates as a digital banking security platform in Australia. We're registered with the Australian Prudential Regulation Authority (APRA) and comply with the Privacy Act 1988, including the Australian Privacy Principles (APPs). Our registered office is at 46 MacAlister St, Mackay QLD 4740, Australia.

When we say "we," "us," or "our," we're referring to caderonival and our affiliated entities. "You" means you, the person using our services or visiting our website.

Information We Collect

Look, we only collect what we actually need to provide secure banking services. Here's what that includes:

Personal Identification Data

• Full name, date of birth, and residential address
• Government-issued identification (driver's licence, passport)
• Contact details including email address and phone number
• Tax File Number (optional, but helps with certain services)
• Employment information and income details for account verification

Financial Information

• Transaction history and payment patterns
• Account balances and banking details
• Credit history when relevant to services you're applying for
• Information about your relationship with other financial institutions

Technical and Usage Data

• IP address, device type, and browser information
• How you interact with our platform (pages visited, features used)
• Location data when you access our services
• Cookies and similar tracking technologies

How We Use Your Information

We're not in the business of collecting data for the sake of it. Every piece of information serves a specific purpose:

Data Sharing and Disclosure

Sometimes we need to share your information with other organizations. But we're selective about who gets access and why.

Service Providers

We work with carefully vetted third-party companies that help us operate our platform. This includes cloud hosting providers, payment processors, and identity verification services. All these partners are bound by strict confidentiality agreements and can only use your data to provide services on our behalf.

Legal Requirements

We'll disclose your information when required by Australian law or valid legal processes. This includes responding to court orders, regulatory investigations, or requests from law enforcement. We also report certain transactions to AUSTRAC under anti-money laundering regulations.

Business Transfers

If caderonival merges with another company or sells parts of our business, your information might be transferred as part of that transaction. You'd be notified beforehand, and the new entity would still be bound by this privacy policy.

Your Privacy Rights

Under Australian privacy law, you have significant control over your personal information. Here's what you can do:

To exercise any of these rights, contact our privacy team at support@caderonival.com. We'll respond within 30 days and guide you through the process. There's no fee unless your request is clearly unreasonable or excessive.

Data Security Measures

Protecting your financial information is our primary responsibility. We use multiple layers of security:

Encryption

All data transmitted between your device and our servers uses TLS 1.3 encryption. Stored data is encrypted using AES-256 standards. Your passwords are hashed using bcrypt with individual salts, meaning we can't actually see what your password is.

Access Controls

Only authorized staff can access customer data, and they're logged into specific systems based on job requirements. We maintain detailed audit logs of who accesses what information and when. Two-factor authentication is mandatory for all employee accounts.

Infrastructure Security

Our systems are hosted in Australian data centres that meet ISO 27001 standards. We conduct regular penetration testing and security audits. Our networks are protected by enterprise-grade firewalls and intrusion detection systems.

Monitoring and Response

We monitor our systems continuously for suspicious activity. If we detect a potential security incident, our response team investigates immediately. You'll be notified within 72 hours if a breach affects your personal information, as required by the Notifiable Data Breaches scheme.

Data Retention

We keep your information for different periods depending on its type and purpose:

• Transaction records: 7 years (required by Australian tax law)
• Account information: Duration of your relationship with us plus 7 years
• Identity verification documents: 7 years after account closure
• Marketing communications data: Until you opt out, plus 2 years
• Technical logs and analytics: 2 years maximum
• Customer support correspondence: 3 years after resolution

After these periods, we securely delete or anonymize your data. Some information might be retained longer if required for legal disputes or regulatory investigations.

International Data Transfers

Your data is primarily stored in Australia. However, some of our service providers operate globally, which means your information might be processed in other countries. When this happens, we ensure appropriate safeguards are in place:

• Standard contractual clauses approved by the Office of the Australian Information Commissioner
• Verification that the receiving country has adequate privacy protections
• Additional security measures for transfers to countries without equivalent privacy laws
• Right to request details about where your data is being processed

Cookies and Tracking Technologies

Our website uses cookies to function properly and improve your experience. Here's what we use:

Essential Cookies

These are necessary for basic site functionality like maintaining your login session and remembering your security preferences. You can't opt out of these if you want to use our services.

Analytics Cookies

We use these to understand how people interact with our platform. This helps us identify confusing features or technical problems. The data is anonymized and aggregated.

Preference Cookies

These remember your choices like display settings or notification preferences. They make your experience more personalized without collecting sensitive information.

You can manage cookie preferences through your browser settings. But disabling certain cookies might affect how our platform works for you.

Children's Privacy

Our services aren't designed for anyone under 18. We don't knowingly collect information from minors. If you're a parent and believe your child has provided us with personal information, contact us immediately and we'll delete it.

For accounts held by minors with parental consent, the parent or guardian has the right to access, modify, or request deletion of the child's information.

Changes to This Policy

We review and update this privacy policy regularly to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you via email or through a prominent notice on our platform.

Minor updates might be posted without direct notification, so check back periodically. The "Last Updated" date at the top shows when changes were last made.

Continued use of our services after changes take effect means you accept the updated policy. If you disagree with changes, you can close your account, though we'll still need to retain certain information for legal compliance.

Making a Complaint

If you're concerned about how we've handled your personal information, start by contacting our privacy team. We take complaints seriously and will investigate thoroughly.

Our complaint process:

• Submit your complaint in writing to support@caderonival.com
• We'll acknowledge receipt within 7 days
• Investigation typically takes 30 days, though complex matters might need longer
• You'll receive a detailed written response explaining our findings and any actions taken

If you're not satisfied with our response, you can escalate to the Office of the Australian Information Commissioner (OAIC). They're an independent body that handles privacy complaints. Visit oaic.gov.au for information on lodging a complaint.