Information We Collect

At solytravenox, we collect various types of information to provide you with our financial services and improve your experience. Our data collection practices comply with Australian Privacy Principles under the Privacy Act 1988, and we're committed to being transparent about what we collect and why.

How We Use Your Data

Your information helps us deliver personalized financial services and maintain the security of our platform. We process your data for specific, legitimate purposes that align with your expectations and our business operations.

Service Provision

We use your personal and financial information to create customized financial plans, provide investment recommendations, and deliver educational content tailored to your needs. This includes analyzing your financial situation to suggest appropriate strategies and monitoring your progress toward financial goals.

Platform Improvement

Technical data and usage patterns help us understand how users interact with our platform. We analyze this information to identify areas for improvement, develop new features, and ensure our services remain relevant and user-friendly. This analysis is typically conducted on aggregated, anonymized data.

Regulatory Compliance

As a financial services provider in Australia, we're required to collect and maintain certain information to comply with Anti-Money Laundering laws, Know Your Customer requirements, and other regulatory obligations. This includes verifying your identity and monitoring transactions for suspicious activity.

Data Sharing and Disclosure

We limit data sharing to essential business purposes and trusted partners who help us deliver our services. We never sell your personal information to third parties for marketing purposes, and all sharing arrangements include strict contractual protections for your data.

Service Providers

We work with carefully selected service providers who assist with payment processing, data storage, customer support, and platform maintenance. These providers are bound by confidentiality agreements and only have access to the minimum data necessary to perform their services. All service providers must demonstrate appropriate security measures and data protection practices.

Financial Partners

When you choose to invest through our platform or access financial products, we may share relevant information with fund managers, custodians, and product providers. This sharing is necessary to execute your investment decisions and provide ongoing account management. We only share information that's directly relevant to the specific services you've requested.

Legal Requirements

We may disclose your information when required by law, court order, or regulatory authority. This includes reporting to AUSTRAC for anti-money laundering purposes, responding to valid legal processes, and cooperating with law enforcement investigations. We'll notify you of such disclosures unless legally prohibited from doing so.

Your Privacy Rights

Under Australian privacy law, you have several important rights regarding your personal information. We've designed straightforward processes to help you exercise these rights and maintain control over your data.

We aim to respond to all privacy requests within 30 days. For complex requests that require additional time, we'll notify you within the initial 30-day period and provide an estimated completion date. There's no charge for most requests, though we may apply reasonable fees for excessive or manifestly unfounded requests.

Security Measures

Protecting your financial information is our top priority. We employ multiple layers of security controls, regular security assessments, and industry-leading technologies to safeguard your data against unauthorized access, loss, or misuse.

Technical Safeguards

All data transmission occurs over encrypted connections using TLS 1.3 protocol. Our databases use AES-256 encryption for data at rest, and we maintain separate encryption keys with restricted access. Multi-factor authentication is required for all staff accessing customer data, and we use advanced intrusion detection systems to monitor for suspicious activity.

Operational Controls

Access to customer information follows strict need-to-know principles. Staff receive regular privacy and security training, and all access is logged and audited. We conduct quarterly security assessments and annual penetration testing by independent security firms. Our offices maintain physical security controls including access cards, security cameras, and visitor management systems.

Incident Response

In the unlikely event of a data breach, we have comprehensive response procedures to contain the incident, assess its scope, and notify affected individuals and regulators as required by law. We maintain cyber insurance and work with leading forensic specialists to investigate and remediate any security incidents.

Data Retention

We retain your information only for as long as necessary to fulfill the purposes for which it was collected or as required by law. Different types of information have different retention periods based on legal requirements and business needs.

Account Information

Personal and financial information is retained while your account remains active and for seven years after closure, as required by Australian financial services regulations. This includes transaction records, investment history, and advisory documentation that may be needed for regulatory reporting or dispute resolution.

Communication Records

Email correspondence and customer service interactions are retained for five years to support ongoing client relationships and regulatory compliance. Phone recordings, where permitted, are kept for two years for quality assurance and training purposes.

Technical Data

Website analytics and technical logs are typically retained for two years to support platform improvements and security monitoring. This data is often aggregated and anonymized after shorter periods to protect individual privacy while maintaining analytical value.

International Data Transfers

While we primarily store and process your data within Australia, some of our service providers operate internationally. Any cross-border data transfers are conducted with appropriate safeguards to ensure your information receives equivalent protection to Australian privacy standards.

Transfer Safeguards

International transfers only occur with providers who have demonstrated adequate privacy protections through certification schemes, binding corporate rules, or contractual guarantees. We conduct due diligence assessments of international providers and require them to implement technical and organizational measures equivalent to Australian privacy standards.

Data Localization

Your core financial information, including account details and transaction history, remains stored within Australian data centers. Only limited technical data, such as system logs for platform monitoring, may be transferred internationally for processing by our technology partners.