Privacy Policy | Growthrent – Australian Privacy Principles & Data Security 2026

Article 1: Identification of the Data Controller

This Privacy Policy outlines the rigorous data processing protocols maintained by Growthrent ("the Platform", "we", "us", or "our"), headquartered at Level 12, 350 Collins Street, Melbourne, VIC 3000, Australia. We operate as the Data Controller in strict accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). To ensure absolute data integrity, we have appointed a dedicated Data Protection Officer (DPO) reachable at [email protected].

Article 2: Categories of Personal Information Collected

In accordance with the principle of data minimisation, we collect:

• Identity Metrics: Full legal name, date of birth, nationality, and government-issued identification for mandatory KYC/AML verification.
• Financial Telemetry: Source of wealth, digital asset wallet addresses (public keys), and transaction histories.
• Digital Footprint: IP addresses, device hardware specifications, and granular interaction logs with our analytical interfaces.

Article 3: Legal Basis for Processing

Our collection and utilisation of information are founded upon:

• Contractual Necessity: Essential for managing your account and delivering our services.
• Statutory Obligations: Compliance with the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth).
• Legitimate Business Interests: Proactive fraud prevention and network security enhancement.
• Explicit Consent: For personalized market insights and non-essential analytical cookies.

Article 4: Advanced Security & Sovereignty

• Encryption: All data at rest is stored utilizing AES-256 cryptographic protocols.
• Transmission: Secured via TLS 1.3 end-to-end encryption.
• Hosting: Data is exclusively hosted on redundant, highly secure servers with strict access controls, ensuring full protection under Australian data sovereignty and privacy standards.

Article 5: Retention and Your Rights

We retain identity and financial records for a minimum of seven (7) years following account closure to satisfy requirements from the Australian Taxation Office (ATO) and AUSTRAC. Under the Privacy Act, you possess the right to access, correction, and the right to lodge a complaint if you believe your privacy has been breached. Requests may be sent to [email protected]. You also have the right to lodge a complaint with the Office of the Australian Information Commissioner (OAIC).