Protecting your personal information is of the utmost importance to us.
The purpose of this policy is to provide you with information on the type of personal information that we collect, retain and how we handle your personal information in accordance with the Australian Privacy Principles (APPs).
This policy outlines:
・The type of personal information that we collect and store;
・ The business purposes for which we collect, hold, use and disclose personal information to third parties
・ How you may access your personal information and correct any information held by us;
・ How you may raise any concern or complaint about a breach of the Australian Privacy Principles, and how we will deal with such a complaint; and
・ Whether we will or disclose your personal information to overseas recipients and the specific countries whereby information will be sent.
・ In the event of unauthorised access of your personal information, the steps we will undertake to inform you and the OAIC in accordance with mandatory data breach reporting requirements effective 22nd February 2018.
Except as outlined below, we do not share, or sell, or disclose to a third party, any personally identifiable information collected at this site.
‘Personal information’ is any information that can personally identify you as an individual.
We are required to obtain personal information about you to ensure we can provide you with financial products and services pertaining to your account and comply with legislative and regulatory requirements in Australia.
Further, when you apply for, or maintain your equities trading account with Monex AU, the personal information we will collect from and about you is for the purposes such as confirming your identity, evaluating your suitability in relation to our products and services, processing your requests and transactions on your behalf. We may use your personal information to inform you about products and services that may be suitable to you, and providing superior customer service support.
We are required to collect your personal information to confirm your identity and we will collect personal information directly from you and commercially available third party databases and publicly available resources for the purpose of complying with our obligations under Anti-Money Laundering laws ( Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth)).
We collect or confirm your personal information from a third party service provider such as a credit-reporting agency or through a document verification service (DVS) provider. We will use reasonable efforts to seek your consent to do this.
Such information may include:
・ Application related information: such as your name, residential and postal address, email address, telephone number/s, date of birth, government identification numbers, your occupation, source of funds and bank account details to settle your transactions on your behalf;
・ Transaction related information: Information about your transactions with us. Examples include your account balances, trading activity, your inquiries, and our responses;
・ Verification information: Information necessary to verify your identity, such as a passport or driving license. Examples also include background information about you we may obtain from public records, third party credit reporting agencies and DVS or from other entities not affiliated with us. Australian Money Laundering Regulations require us to collect information and take actions necessary to verify your identity.
We will not collect sensitive information unless you have consented or an exemption under APPs applies. These exemptions include if the collection is required or authorised by law or if it is necessary to take appropriate action in relation to suspected unlawful activity or serious misconduct.
By not providing us your personal information for the purpose of establishing an equities trading account, we may delay or not be able to provide you with some or all of the products or services we make available.
We will not accept the option of dealing with you anonymously, or under pseudonym. This is because it is impractical for us to deal with individuals who are not identified.
We may receive unsolicited personal information about you. Our employees are required to notify the Privacy Officer of all unsolicited personal information received by them.
Further, when you visit our website ( www.monexsecurities.com.au), use our software applications (apps) or other web-based content and services (“Websites”), our service providers or us will record information (such as your computer’s IP address and top level domain name, the type of browser you are using, the date, time and pages accessed) in relation to your visit.
You can configure your Internet browser to notify you when you receive a cookie, please consult with your Internet browser provider on how to do this.
Given our website may contain links to other websites. We are not responsible for the privacy practices of linked websites and these websites are not subject to our privacy policies and procedures.
This information is recognised by our servers and the pages that you visit are recorded. We shall not under any circumstances, divulge your e-mail address to any person who is not an employee or contractor of Monex AU, and who does not need to know, either generally or specifically. This information is used:
• To correspond with you or deal with you as you expect;
• In a collective way not referable to any particular individual, for the purpose of quality control and improvement of our site;
• To send you news about the services to which you have signed up;
• To tell you about other of our services or services of sister web sites.
When you call our contact centre, we may collect Calling Line Identification (CLI) information. We use this information to help improve the efficiency and effectiveness of our services.
Monex AU or other parties providing connected services to us may record telephone conversations. Should we record telephone conversations, this will be disclosed prior to speaking to our staff member and you will be given an opportunity to refuse such recording.
When you send an electronic message or mail to us, we collect the data you have given to us in that message in order to obtain confirmation that you are entitled to receive the information and to provide to you the information you need. We record your request and our reply in order to increase the efficiency of our business. We may retain personally identifiable information associated with your message, such as your name or email address. Please notify us if you do not wish for this information to be retained.
We are required by law to collect information to identify and verify you. We make enquiries as to your identity (ies) and other personal details in accordance with Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth).
We will only use your personal information for the purpose of providing you with our financial products and services. Your personal information will be used by us for the purpose of assessing your application, communicate with you pertaining to your account so We can provide you with a continuous service to you and to operate our business processing functions by disclosing your personal information to our related business entities, appointed service providers or other third parties.
We will also use your personal information provided to us assist us with the administrative, marketing and direct marketing, product or service development and internal quality assurance and control.
We take all reasonable steps to ensure that all personal information we hold is as accurate as possible. You can contact us if you believe the information we have about you is inaccurate or incomplete, or to provide us with information about changes to your personal information.
We will keep your personal information secure from misuse, loss, interference, unauthorised access, modification or disclosure. We have security measures in place such as encryption, firewalls, intrusion detection and anti-virus technology to prevent unauthorised access.
We retain information for so long as may be necessary to respond to issues that may arise at a later date, and longer in appropriate cases where required by law. When personal information is no longer required by us, it is destroyed or de-identified.
The Internet is inherently insecure and we cannot give any assurance to any person regarding the security of transmission of information you communicate to us online. We also cannot guarantee that the information you supply will not be intercepted while being transmitted over the Internet. Accordingly, any personal information or other information, which you transmit to us online, is transmitted at your own risk.
When you open an account with us, you are issued a unique account number, login and a password. You are ultimately responsible for maintaining the confidentiality of your account number, login, and password. We strongly recommend that you do not disclose this information to anyone else.
We may also send you direct marketing communications and information about our products and services by mail, SMS and email. You consent to us sending you those direct marketing communications by any method. You can opt-out of receiving marketing communications from us by contacting us by telephone or in writing. We will then ensure that your name is removed from the relevant list.
Please note that that we may be required to send you essential information about your account, the relevant services or products and other information required by law, such as welcome emails, trade confirmations and holding statements. This information for the purpose of this policy is not deemed direct marketing.
Our website may contain references or links to other external websites. Those references or links may in turn refer or link to other references or links. We, our directors, officers, employees or agents are not responsible to you or any person for any breach of the Australian Privacy Principles or damage that may occur from any privacy policies or practices or content of websites to which we provide external links.
We will only use or disclose your personal information collected from and about you for the purpose you provided it to us (or related purposes which would reasonably be expected, without your permission, or as permitted by the Australian Privacy Principles).
We take reasonable steps to ensure that any third party organisations we engage with to deliver our products and services abide by our confidentiality and privacy requirements in relation to the protection of your personal information.
We also disclose your personal information to entities located overseas for one or more of the purposes set out below. We will take reasonable steps to ensure that the overseas recipient of your personal information does not breach the Australian Privacy Principles relating to your personal information.
Other examples of when your personal information may be disclosed to external parties including the following:
・Affiliates, agents, contractors, or external service providers appointed by us (such as our custodians and appointed auditors);
・A government or regulatory body (such as ATO, AUSTRAC, ASIC or an Australian law enforcement agency);
・External service providers that provide services to us including electronic identification services;
・Credit reporting agency, any credit provider whose details have been provided to us by you; and
・In order to comply with a court order or in conjunction with court proceedings.
We may also provide your personal information to a third party in the event that Monex sells its business assets, or engages a third-party service provider to provide services to Monex (such as software services).
Further, we may need to share some of your information with organisations outside Australia. For example, when we use service providers located overseas to perform a function on our behalf.
Monex AU may share your information with overseas organisations that are located in the following countries:
When we share your information with organisations overseas we ensure appropriate data handling and security measures are in place.
Our web sites are hosted in Hong Kong. We also use outsourced services in countries outside Australia from time to time in other aspects of our business. [Specifically, our technical centre is based in Hong Kong]. Accordingly, data obtained within Australia may be “processed” outside Australia and data obtained in any other country may be processed within or outside that country.
When you have agreed to set up a direct debit arrangement, the information you have given to us is passed to our own bank [Commonwealth Bank of Australia] for processing according to our instructions. We do keep a copy.
Direct debits can only be set up for payments to beneficiaries that are approved "originators" of direct debits. In order to be approved, these beneficiaries are subjected to careful vetting procedures. Once approved, they are required to give indemnity guarantees through their banks.
We are subject to the law like everyone else. We may be required to give information to legal authorities if they so request or if they have the proper authorisation such as a search warrant or court order.
This confidentiality policy has been compiled so as to comply with the law of every jurisdiction in which we aim to do business. If you think it fails to satisfy the law of your country, we should like to hear from you, but ultimately it is your choice as to whether you wish to use our website.
Further, Monex AU has an internal policy on dealing with data breaches as a result of unauthorised access to your personal information in accordance with the mandatory data breach-reporting requirements effective 22nd February 2018.
Our data breach response policy contains four key steps including actions to be taken to contain the breach, evaluating the risks, impact to you as our customer and steps on notification to the OAIC, affected individuals and law enforcement agencies (as applicable). Further information is available to you on request.
Under the Privacy Act, you have the right to obtain a copy of any personal information that we hold about you and to advise us of any inaccuracies.
To make a request, you will need to write to us verifying your identity and specifying what information you require. We will respond to your request within 14 days. If the information sought after is extensive we may charge a fee to cover cost.
In normal circumstances we will give you full access to your information. However, there may be times where some legal reason requires us to deny access, such as where granting access would interfere with the privacy of others or it would result in a breach of confidentiality. If access is denied, we will give you written reasons for any refusal.
We aim to ensure that the personal information held about you is accurate, complete and up -to-date. You should contact us as soon as possible if any of your details change. If we do not agree that there are grounds for amendment, then we will add a note to the personal information stating that you disagree with it.
Monex has regulatory obligations to keep your Personal Information on record for a period of seven years in the case you wish to terminate your working relationship with us.
If you believe that your privacy has been breached, please contact our Privacy Officer and provide details of the incident so that we can investigate it immediately.
We request that complaints about breaches of privacy be made in writing, so we can be sure about the details of the complaint. We will attempt to confirm as appropriate and necessary with you your understanding of the conduct relevant to the complaint and what you expect as an outcome. We will inform you whether we will conduct an investigation, the name, title, and contact details of the investigating officer and the estimated completion date for the investigation process.
After we have completed our enquiries, we will contact you, usually in writing, to advise the outcome and invite a response to our conclusions about the complaint. If we receive a response from you, we will assess it and advise if we have changed our view.
The Privacy Officer – Alex Douglas
Monex Securities Australia Pty Ltd
Registered Address: Level 2, The Bond, 36 Hickson Road, Sydney NSW 2000
Postal Address: Level 2, The Bond, 36 Hickson Road, Sydney NSW 2000
Phone: +61 2 9103 9600
You may refer your complaint directly to the relevant External Dispute Resolution (EDR) scheme.
Financial Ombudsman Service Australia
GPO Box 3
Melbourne Vic 3001
You are not required to supply any of the personal information that we may request from you although failure to do so may result in us being unable to open or maintain your equity account or provide services to you. While we make every effort to ensure that all information we hold about you is accurate, complete, and up to date, you can help us considerably in this regard by promptly notifying us if there are any changes to your personal information.
Please contact us should you wish to unsubscribe from any general non-account specific information on Monex AU products and Services.
Should you wish to obtain further information about privacy you can do so by visiting the Office of the Australian Information Commissioner (OAIC) website at www.oaic.gov.au
Dated: 19 February 2018 (version 1.10)