Privacy Statement

 

1: Introduction

FX Corp is committed to protecting your privacy and is bound by the Australian Privacy Principles (APPs) established under the Privacy Act 1988 (Cth). This privacy policy outlines how FX Corp collects, handles, uses, discloses and protects your personal information in accordance with the APPs and applicable legal provisions.

2: Anonymity and Pseudonymity

Where lawful and practicable, you have the option to deal with us anonymously or by using a pseudonym. However, in most cases we cannot provide our foreign exchange and remittance services without knowing who you are due to:

  • Our obligations under the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (AML/CTF Act), which requires us to verify your identity;

  • Our obligations under the Corporations Act 2001 as an Australian Financial Services Licensee; and

  • The nature of the financial services we provide

If you wish to make a general enquiry or provide feedback, you may do so anonymously or using a pseudonym.

3. Information we Collect

The information FX Corp collects depends on the services we provide. We collect personal information that is reasonably necessary for our functions and activities as a foreign exchange and remittance provider. This includes:

  • Identity details: name, date of birth, gender, residential address and contact details;

  • Identification documents: driver's licence number, passport details or other identification;

  • Email addresses and telephone numbers;

  • Bank account details and financial information;

  • Tax File Number (where you choose to provide it);

  • Employer details and occupation;

  • Details of specific services or products you require;

  • Transaction details and history;

  • Information necessary to assess and provide the services you request; and

  • Any additional information you provide to us online, by telephone, email or in person

We also collect information to comply with our obligations under the AML/CTF Act and other regulatory requirements.

4. How we collect your Information

We collect personal information directly from you unless it is unreasonable or impracticable to do so. We may collect information:

  • Through account application forms and onboarding documents

  • During conversations with our representatives

  • Through transactions you conduct using our services

  • Via emails or other correspondence you send to us

  • Through your use of our website

  • From third parties where you have consented or where we are legally required or authorised to do so (such as electronic identity verification services)

5. Website information and cookies

When you visit our website, we may automatically collect technical information including:

  • The domain and host from which you access the internet;

  • Your computer's IP address;

  • Browser type and version;

  • Date, time and pages accessed; and

  • Documents downloaded.

We use cookies (small text files stored on your device) to:

  • Identify pages accessed and documents downloaded

  • Store preferences and track activity on our website

  • Personalise website content

  • Facilitate administration and security

You can disable cookies through your browser settings, but this may limit your ability to use all features of our website. Please note, we block third party cookies.

6. Notification at Collection

At or before we collect your personal information (or as soon as practicable afterwards), we will provide you with a copy of this Privacy Policy to ensure you are aware of:

  • Our identity and contact details (FX Corp Pty Ltd, AFSL 459050);

  • The fact that we have collected or are collecting your information;

  • The purposes for which we collect your information;

  • The main consequences if you do not provide all or some of the information (for example, we may be unable to provide services to you or may be in breach of our AML/CTF obligations);

  • The types of organisations to which we usually disclose your information (such as banks, payment providers, regulatory authorities, identity verification services);

  • How you can access and seek correction of your information;

  • How you can complain about a breach of the APPs; and

  • Whether we are likely to disclose your information to overseas recipients and, if practicable, the countries where they are located.

This information is provided through this Privacy Policy and, where appropriate, our direct communications with you.

7. Use and Disclosure of Information

We collect your personal information for specific purposes (primary purposes) and will only use or disclose it for those purposes or related purposes you would reasonably expect (secondary purposes), unless you consent or an exception applies.

Primary purposes include:

  • Providing foreign exchange and remittance services

  • Processing your transactions

  • Verifying your identity as required by law

  • Assessing your service requirements

  • Managing our relationship with you

  • Meeting our legal and regulatory obligations

We may use or disclose your information for secondary purposes where:

  • You have consented to the use or disclosure

  • You would reasonably expect us to use or disclose the information for that purpose and it is related to the primary purpose (or directly related in the case of sensitive information)

  • We are required or authorised by law to do so

  • It is necessary to prevent or lessen a serious threat to life, health or safety

  • It is reasonably necessary for enforcement-related activities

  • Other permitted situations under the Privacy Act apply

Specific uses and disclosures

We may use or disclose your personal information to:

  • Provide you with financial services and undertake associated business functions

  • Respond to your specific requests

  • Administer your account and manage our operations

  • Verify your identity with external credit or identity verification providers

  • Comply with laws and regulatory requirements, including the AML/CTF Act, Corporations Act, and tax laws

  • Disclose to regulatory authorities including AUSTRAC, ASIC, and the ATO

  • Disclose to banks, payment service providers and correspondent financial institutions to facilitate transactions

  • Improve and monitor our services

  • Maintain records as required by law

Direct marketing

We may use your personal information (other than sensitive information) to notify you of products or services that may interest you where:

  • We collected the information from you and you would reasonably expect us to use it for this purpose

  • We provide a simple way for you to opt out of receiving marketing communications

  • You have not opted out

You have the right to:

  • Request not to receive direct marketing communications from us at any time

  • Request that we not use or disclose your information to facilitate direct marketing by others

  • Request the source of your information used for direct marketing

We will not charge you for making these requests or giving effect to them. To opt out, contact us using the details at the end of this policy.

We do not use or disclose sensitive information for direct marketing unless you have consented.

8: Document Verification Service (DVS)

The Document Verification Service (DVS) is a secure government-run system that enables us to confirm the authenticity of identification documents you provide. We use the DVS during our onboarding process to verify an account holder’s identity and meet our legal and regulatory obligations. This involves checking the details you submit against the issuing agency’s records to confirm they are valid and match your information.

9: Cross-Border Disclosure

We may disclose your personal information to recipients located outside Australia, including in countries where we maintain banking relationships or use service providers. This may include locations such as the United States, United Kingdom, European Union countries, and AsiaPacific countries depending on the nature of your transaction.

Before disclosing your personal information overseas, we take reasonable steps to ensure that overseas recipients do not breach the APPs in relation to your information. This may include:

  • Only using recipients in countries with substantially similar privacy protections to Australia; and

  • Ensuring contractual protections are in place.

Where we disclose information overseas as required or authorised by Australian law, or where permitted exceptions apply, we will inform you accordingly.

10. Data Quality and Security

We take reasonable steps to ensure that:

  • Personal information we collect is accurate, up-to-date and complete

  • Personal information we use or disclose is, having regard to the purpose of use or disclosure, accurate, up-to-date, complete and relevant

You can help us maintain accurate records by notifying us of any changes to your personal information.

We take reasonable steps to protect your personal information from misuse, interference, loss, unauthorised access, modification or disclosure. Security measures include:

  • Restricting access to personal information on a "need to know" basis

  • Using security clearances and access controls

  • Physical security measures including locked filing cabinets and secure offices

  • Electronic security including firewalls, encryption and secure data transmission

  • Staff training on confidentiality and privacy obligations

  • Secure destruction of information no longer required

Internet transmission risks

While we take reasonable precautions, we cannot guarantee the security of information transmitted over the internet. There is a risk that third parties may unlawfully intercept transmissions. You should take care to verify you are dealing with FX Corp and not an imposter when communicating electronically.

Data retention and destruction

We retain personal information for as long as necessary to fulfil the purposes for which it was collected, or as required by law. We are required under AML/CTF laws to retain identity verification records and transaction records for 7 years after the end of the relationship or transaction.

When we no longer need your personal information for any purpose and are not required by law to retain it, we take reasonable steps to destroy the information or ensure it is de-identified.

11. Access to your Personal Information

Your right to access

You have the right to request access to the personal information we hold about you. We will respond to your request within a reasonable period (generally within 30 days) and provide access in the manner you request where reasonable and practicable to do so.

How to request access

To request access, please contact our Compliance Officer using the details at the end of this policy. Please specify:

  • What information you wish to access

  • Your preferred format for receiving the information

  • How you would like us to verify your identity

Access charges

We do not charge for making an access request. If we provide access, we may charge a reasonable fee to cover our costs of providing access (such as photocopying or compiling information). Any charge will not be excessive. We will inform you of any charges before providing access.

When we may refuse or restrict access

In some circumstances, we may refuse to provide access or limit the access we provide. This includes where:

  • Giving access would pose a serious threat to life, health or safety

  • Giving access would have an unreasonable impact on others' privacy

  • The request is frivolous or vexatious

  • The information relates to existing or anticipated legal proceedings and would not be discoverable

  • Giving access would reveal our intentions in negotiations and prejudice those negotiations

  • Giving access would be unlawful

  • Denying access is required or authorised by law

  • Giving access would prejudice an investigation of unlawful activity or serious misconduct

  • Giving access would prejudice enforcement-related activities

  • The information is commercially sensitive evaluative information

If we refuse access

If we refuse access or refuse to provide access in the manner you requested, we will:

  • Provide you with a written notice explaining our reasons (unless it would be unreasonable to do so)

  • Inform you of available complaint mechanisms

  • Where possible, provide access through alternative means (such as through a mutually agreed intermediary)

12. Correction of Personal Information

You have the right to request correction of personal information we hold about you if you believe it is inaccurate, out-of-date, incomplete, irrelevant or misleading.

If we are satisfied that information should be corrected, we will take reasonable steps to correct it. We will also take reasonable steps to correct information if you request correction, even if we are not satisfied correction is necessary.

How to request correction

To request correction, please contact us using the details at the end of this policy. Please:

  • Specify what information you believe is incorrect

  • Explain why you believe it needs correction

  • Provide supporting documentation if available

Response timeframe

We will respond to your correction request within a reasonable period (generally within 30 days). We do not charge for making a correction request or for correcting your information.

If we refuse to correct

If we refuse to correct your information as requested, we will:

  • Provide you with a written notice explaining our reasons (unless unreasonable to do so)

  • Inform you of available complaint mechanisms

You may request that we associate a statement with the information indicating that you believe it is inaccurate, out-of-date, incomplete, irrelevant or misleading. We will take reasonable steps to associate this statement with the information so it is apparent to users of the information. Notification to third parties

If we correct information that we have previously disclosed to another organisation and you request we notify them of the correction, we will take reasonable steps to do so unless it is impracticable or unlawful.

13: Complaints

For complaints regarding how we have managed your privacy or handled your information please contact our complaints officer at complaints@fxcorp.com.au.

We hope to resolve your complaint to your satisfaction, but we understand that this won't always be possible. If you're not happy with our response or how we've handled your complaint, you have the right to take the matter to an independent external dispute resolution service.

Please refer to our full Complaint Policy, located on our website at www.fxcorp.com.au for more details about how we will manage and work with you to resolve your complaint.

Escalation Options

If you are not satisfied with our response, you have the right to complain to the Office of the Australian Information Commissioner (OAIC) or AFCA:

Office of the Australian Information Commissioner

The OAIC can investigate complaints about interference with privacy and may make determinations requiring us to take specific action.

OAIC Contact Information

  • Phone: 1300 363 992

  • Website: www.oaic.gov.au

  • Mail: GPO Box 5218, Sydney NSW 2001

Australian Financial Complaints Authority (AFCA)

AFCA provides a free and independent dispute resolution service for consumers and small businesses in the financial sector.

AFCA Contact Details

  • Phone: 1800 931 678 (free call)

  • Email: info@afca.org.au

  • Mail: Australian Financial Complaints Authority, GPO Box 3, Melbourne VIC 3001

  • Website: www.afca.org.au

14. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements or for other operational reasons.

Updated versions will be made available on our website at www.fxcorp.com.au. You can also request the current version by contacting us. We recommend you review this policy periodically to stay informed of how we protect your information.

By continuing to use our services after we post changes, you accept the updated Privacy Policy. For significant changes that affect how we handle your personal information, we will take reasonable steps to notify you directly.

15. Contact Us

Privacy Officer FX Corp Pty Ltd

Level 14, 1 Castlereagh Street Sydney NSW 2000

E: complaints@fxcorp.com.au Ph: 02 8076 9535

Business hours: 9:00 AM - 5:30 PM AEST, Monday to Friday AFSL: 459050

Version: 2.0

Last Updated: April 2026