Privacy Policy

Privacy Policy Statement

Effective Date: 15 May 2025

ADMA Consulting Pty Ltd, ABN: 82650232483 (referred to as "we," "us," or "our") is committed to protecting the privacy of your personal information. This Privacy Policy outlines how we manage and protect the personal information we collect, including commercial and financial data, in compliance with the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth), as amended.

1. Information We Collect (APP 3)

1.1. We collect personal information that is reasonably necessary for the primary purpose of providing our financial consulting services, managing our relationship with you, and tracking key commercial and financial indicators relevant to our services.

1.2. The kinds of information we may collect include:

1.2.1. Identification and Contact Data:
Name, address, email address, phone number, and job title.

1.2.2. Financial and Commercial Data:
Financial statements, profitability reports, revenue figures, cost structures, banking and transaction details, and other key commercial indicators related to your SME.

1.2.3. Technical Data:
IP address, cookies, and website usage data for security and performance purposes.

1.3. We collect this information directly from you (e.g., via website forms, client intake processes, or documents shared during consultation).

2. Why We Collect and Use Information (APP 6)

2.1. We use your personal and commercial information for the following primary purposes:

2.1.1. To provide financial consulting services, including analysis of financial results and tracking key performance indicators.

2.1.2. To fulfil administrative, billing, and contractual obligations.

2.1.3. For internal risk management, training, and operational purposes.

2.2. We will not use your personal information for a secondary purpose unless permitted by the APPs (e.g., with your consent or where the use relates to the primary purpose and is reasonably expected).

2.3. We may use automated processes to analyze financial and commercial data to identify patterns, trends, or risks. We do not use automated decision-making alone to make decisions that produce legal or similar significant effects. If automated processes or profiling are used, we will provide information about these processes upon request.

3. Disclosure of Information (APP 6 & 8)

3.1. We may disclose your personal information to:

3.1.1. Professional advisors (e.g., accountants, auditors, legal counsel) on a confidential basis.

3.1.2. Third-party service providers (e.g., cloud storage hosts, IT support, payment processors) strictly for service delivery, which may include overseas entities.

3.1.3. Overseas recipients who are subject to the APPs or equivalent protections. If this cannot be ensured, we will inform you and request your consent before proceeding.

3.1.4. Entities as required or authorized by Australian law (e.g., ASIC, ATO, law enforcement).

3.2. We do not sell personal information to third parties.

4. Data Security and Storage (APP 11)

4.1. We take reasonable steps to protect personal information from misuse, interference, loss, unauthorized access, modification, or disclosure. Our safeguards include technical and organizational security measures appropriate to the sensitivity of the information and the risks involved.
When personal information is no longer needed for its purpose, we will take reasonable steps to destroy or permanently de-identify it in accordance with the law.

5. Data Retention

5.1. We retain personal information for the period necessary to provide our services and meet contractual, legal, tax, and administrative obligations.

5.2. Client-related information is generally retained for at least seven (7) years after the engagement concludes, in line with accounting record requirements.

5.3. When information is no longer required, we will destroy or securely de-identify it unless longer retention is required by law.

6. Data Breach Notification (APP 1 & Notifiable Data Breaches Scheme)

6.1. In accordance with the Privacy Act 1988, if we experience an eligible data breach likely to cause serious harm, we will:

6.1.1. Assess the breach within 30 calendar days;

6.1.2. Notify the Office of the Australian Information Commissioner (OAIC) as soon as practicable;

6.1.3. Notify affected individuals as soon as practicable, including details of the breach, recommended mitigation steps, and our response;

6.1.4. Make a public statement on our website if notifying individuals is not practicable.

6.2. You may lodge a complaint with the OAIC if you believe a data breach has occurred.

7. Access and Correction (APP 12 & 13)

7.1. You may request access to the personal information we hold about you or request correction of inaccurate, incomplete, or outdated information.

7.2. Requests should be submitted to our Privacy Officer (details below). We will respond within a reasonable timeframe and take reasonable steps to correct or provide access to the information.

8. Complaints and Contact Details (APP 1)

8.1. For questions about this Privacy Policy or concerns regarding a breach of the APPs, please contact our Privacy Officer:

Email: [email protected]
Postal Address: Ground Floor, 470 St Kilda Rd, Melbourne, Victoria, 3004

8.2. We will acknowledge and investigate your complaint, aiming to resolve it within 30 days. If you are dissatisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).