Privacy Policy
WhiteLight AML Privacy Policy
Last updated: 01 September 2024
WhiteLight AML ("we," "our," or "us") is committed to safeguarding the privacy of personal information collected in accordance with the Australian Privacy Act 1988 (Cth), the New Zealand Privacy Act 2020, and other applicable privacy laws and regulations. This Privacy Policy outlines how we collect, use, store and disclose personal information when providing Anti-Money Laundering and Counter-Terrorism Financing (AML/CTF) compliance services to Australian and New Zealand entities.
1. Scope of This Privacy Policy
This Privacy Policy applies to personal information collected by WhiteLight AML, including through our website, customer portals, forms and interactions with clients, partners and regulatory bodies. By engaging with WhiteLight AML, you consent to the collection, use and disclosure of personal information as described in this policy.
2. Types of Personal Information We Collect
We may collect personal information from individuals (including our clients' customers) as part of our AML/CTF compliance services. The types of personal information we collect may include:
-
Name
-
Date of birth
-
Contact details (such as address, phone number, and email)
-
Identification documents (e.g., passports, driver’s licenses, etc.)
-
Financial information (such as bank account details)
-
Employment information
-
Transaction records and histories
-
Other relevant information required for AML/CTF compliance
We collect personal information in compliance with the "Know Your Customer" (KYC) and "Customer Due Diligence" (CDD) requirements imposed by Australian and New Zealand AML/CTF legislation.
3. How We Collect Personal Information
WhiteLight AML collects personal information in several ways, including:
-
Directly from clients or their customers via forms or documentation required for compliance.
-
From third-party service providers, such as identity verification platforms.
-
Through interactions with regulatory authorities, where required.
-
Automatically through our website, client portals and communication systems (e.g., metadata or usage data).
4. Use of Personal Information
We use personal information primarily to:
-
Verify identity and conduct due diligence as part of AML/CTF obligations.
-
Monitor, analyze, and report suspicious transactions to the appropriate regulatory authorities, such as AUSTRAC (Australia) and the FIU (New Zealand).
-
Ensure compliance with all applicable legal and regulatory frameworks.
-
Maintain accurate client records for our internal processes.
-
Improve and enhance our services.
5. Disclosure of Personal Information
WhiteLight AML may disclose personal information to:
-
Relevant government and regulatory bodies (e.g., AUSTRAC, the New Zealand Financial Intelligence Unit) for the purposes of complying with AML/CTF reporting obligations.
-
Third-party service providers engaged in KYC, customer screening and data storage processes, where necessary.
-
Legal or professional advisers in the event of a legal or regulatory inquiry.
-
Any other third parties where consent is provided or where disclosure is permitted by law.
We will not disclose personal information for marketing or unrelated purposes without explicit consent.
6. Data Security
WhiteLight AML is committed to ensuring the security of personal information. We use technical and organisational measures to protect personal information from unauthorised access, modification, disclosure, or destruction. These measures include:
-
Secure storage and transmission of personal information using encryption technologies.
-
Regular audits and reviews of our security practices.
-
Strict access controls limiting access to authorised personnel only.
In the event of a data breach, we will take appropriate steps to notify affected individuals and the relevant authorities in accordance with the Australian Notifiable Data Breaches Scheme and New Zealand’s privacy breach notification requirements.
7. Cross-Border Transfers of Personal Information
As part of providing our services, WhiteLight AML may need to transfer personal information to entities located in other countries, including for third-party verification services. Where personal information is transferred across borders, we ensure that the recipient country has adequate privacy protections in place or that other mechanisms are used to safeguard the data.
8. Access and Correction of Personal Information
Individuals have the right to access and correct personal information held by WhiteLight AML. If you wish to access or correct any personal information we hold, please contact us using the details below. We will respond to requests in a timely manner, and where appropriate, update or correct the information.
9. Retention of Personal Information
WhiteLight AML retains personal information only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal and regulatory obligations. We securely destroy or de-identify personal information when it is no longer required.
10. Your Privacy Rights
Under Australian and New Zealand privacy legislation, individuals have the right to:
-
Access personal information we hold about them.
-
Request correction of inaccurate or outdated information.
-
Complain about the way we have handled personal information.
We are committed to addressing any privacy complaints in a timely and transparent manner. Please contact us if you wish to exercise any of your privacy rights.
11. Updates to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in legal requirements or our business practices. Any changes will be posted on our website, and where significant changes are made, we will notify our clients directly.
12. Contact Us
If you have any questions or concerns regarding this Privacy Policy, or if you wish to make a privacy complaint, please contact us at:
WhiteLight AML
Email: info@whitelightaml.com.au
Phone: +612 8075 9900
Website: https://www.whitelightaml.com.au