Privacy Policy
lythenoraviq Financial Services
Last Updated: January 15, 2025
1. Introduction and Scope
lythenoraviq ("we," "our," or "us") operates lythenoraviq.com and provides departmental budgeting software solutions to organizations across Australia and internationally. This Privacy Policy explains how we collect, use, store, and protect personal information in accordance with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth) and other applicable privacy laws.
This policy applies to all personal information we collect through our website, software platforms, customer interactions, and related services. By using our services, you consent to the collection and use of information as described in this policy.
2. Information We Collect
Personal Information
- Name, email address, phone number, and job title
- Company name, address, and organizational structure
- Financial data related to departmental budgeting activities
- Login credentials and account authentication details
- Communication records and support interactions
Technical Information
- IP address, browser type, and device information
- Usage patterns and navigation behavior on our platform
- System logs and error reports
- Cookies and similar tracking technologies
3. How We Use Your Information
We use personal information for legitimate business purposes including:
| Purpose | Legal Basis |
|---|---|
| Service delivery and platform functionality | Contract performance |
| Customer support and technical assistance | Contract performance |
| Account management and billing | Contract performance |
| Security monitoring and fraud prevention | Legitimate interests |
| Product improvement and development | Legitimate interests |
| Legal compliance and regulatory requirements | Legal obligation |
4. Data Sharing and Disclosure
We maintain strict controls over personal information sharing and only disclose data in specific circumstances:
Service Providers
We work with trusted third-party service providers for cloud hosting, payment processing, and customer support. These providers operate under strict data processing agreements and can only use information for specified purposes.
Legal Requirements
We may disclose information when required by Australian law, court orders, or regulatory authorities. This includes compliance with Australian taxation laws and financial reporting requirements.
We never sell personal information to third parties for marketing purposes and maintain strict vendor management standards for all data processors.
5. International Data Transfers
lythenoraviq processes data within Australia wherever possible. When international transfers are necessary for service delivery, we ensure appropriate safeguards are in place:
- Standard contractual clauses approved by Australian authorities
- Adequacy decisions for countries with equivalent privacy protections
- Encryption in transit and at rest for all international data movements
- Regular audits of international processing arrangements
6. Data Security and Protection
We implement comprehensive security measures to protect personal information from unauthorized access, disclosure, alteration, or destruction:
Technical Safeguards
- AES-256 encryption for data at rest and TLS 1.3 for data in transit
- Multi-factor authentication for all administrative access
- Regular security assessments and penetration testing
- Automated backup systems with point-in-time recovery
Organizational Measures
- Role-based access controls and principle of least privilege
- Regular staff training on privacy and security requirements
- Incident response procedures and breach notification protocols
- Annual security audits by independent third parties
7. Your Rights and Choices
Under Australian privacy law, you have specific rights regarding your personal information:
Access and Correction
You can request access to personal information we hold about you and ask for corrections if the information is inaccurate or incomplete. We respond to access requests within 30 days of receiving a valid request.
Deletion and Restriction
You may request deletion of your personal information, subject to legal and contractual obligations. We can also restrict processing of your information in certain circumstances while maintaining system integrity.
Data Portability
Upon request, we can provide your personal information in a structured, commonly used format to facilitate transfer to another service provider.
8. Data Retention
We retain personal information only as long as necessary for the purposes outlined in this policy:
- Active account information: Retained during service relationship plus 7 years
- Financial records: 7 years from transaction date (Australian tax law requirement)
- Communication records: 3 years from last interaction
- Technical logs: 12 months from creation date
- Marketing preferences: Until withdrawal of consent or 5 years of inactivity
We conduct annual reviews of retained information and securely delete data that has reached its retention limit.
9. Cookies and Tracking Technologies
Our website uses cookies and similar technologies to enhance user experience and analyze platform usage:
Essential Cookies
Required for basic platform functionality, security features, and user authentication. These cannot be disabled without affecting service operation.
Analytics Cookies
Help us understand how users interact with our platform to improve functionality and user experience. You can opt out through your browser settings or our cookie preference center.
10. Changes to This Policy
We review and update this Privacy Policy annually or when significant changes occur to our data processing practices. Material changes will be communicated through:
- Email notification to registered users at least 30 days before implementation
- Prominent notices on our website and within the platform
- Updated version posted with clear indication of modification date
Continued use of our services after policy changes constitutes acceptance of the updated terms.
11. Complaints and Dispute Resolution
If you have concerns about how we handle your personal information, we encourage you to contact us directly. We investigate all privacy complaints promptly and fairly:
- Initial response within 5 business days of receiving your complaint
- Investigation completion within 30 days of initial contact
- Written resolution provided with explanation of findings and actions taken
If you're not satisfied with our response, you can lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.
Privacy Contact Information
Privacy Officer: lythenoraviq Financial Services
Address: 41 Westminster Blv, Elanora QLD 4221, Australia
Email: privacy@lythenoraviq.com
Phone: +61 409 461 629
Response Time: We aim to respond to all privacy inquiries within 5 business days