This Privacy Policy explains how iconarisylvo (“we”, “our”, “us”) processes personal information in connection with investment services offered in Australia. The policy is written in clear, neutral language and is designed to set accurate expectations about our practices. It applies to website visitors, prospective clients, clients, and authorised representatives who contact us or engage our services. Where the General Data Protection Regulation (GDPR) is relevant, we apply GDPR-aligned principles in addition to applicable Australian privacy law. This document should be read alongside our Cookie Policy and Terms & Conditions.
1) Definitions and Scope
This Policy covers personal information that identifies or can reasonably identify an individual, such as names, contact details, and service-related records. It applies to interactions via our website, phone, email, and any forms that you complete to request information or services. It also applies to operational records we maintain to deliver and administer investment services. Non-personal data, such as aggregated analytics that does not identify a person, is handled for operational insights and service improvement. This Policy does not govern third-party sites or services that may be referenced for convenience; their practices are determined by their own policies.
2) Categories of Personal Information We Process
We may process identification and contact details (e.g., name, email address, phone number), professional information (e.g., role, company, preferences you share), and service-administration records (e.g., communications, bookings, and documentation exchanged to deliver services). Technical information may include IP address, device and browser type, and general usage data collected for security and performance. Payment-related records may be processed to the extent necessary to administer agreed services, using appropriate safeguards. We do not seek sensitive information and request that you avoid submitting it unless we specifically ask and it is necessary for service delivery.
3) Sources of Personal Information
Information is usually provided directly by you when you submit a form, email us, call us, or engage our services. We may also obtain data generated during service provision, such as scheduling records or communications needed to coordinate with you. Technical and analytics data may be collected automatically through cookies or similar tools as described in our Cookie Policy. Where appropriate, we may receive information from service providers that support hosting, communications, analytics, or payment processing, with controls designed to protect your information. We do not purchase lists and do not use data brokers for marketing.
4) Purposes of Processing
We process personal information to respond to enquiries, establish and administer client relationships, deliver investment services, and maintain accurate records. We use technical data to operate, secure, and improve our website, including performance measurement and troubleshooting. Communications may be used to provide updates related to your requests or the services you have engaged. Aggregated insights help us plan content structure, capacity, and support resources, without identifying individuals. We avoid unnecessary collection and retain only what is relevant to the purposes described in this Policy.
5) Lawful Bases (GDPR-Aligned) and Australian Context
When GDPR-aligned principles apply, we rely on: contract (to provide services you request), consent (for optional cookies and certain communications), legitimate interests (to operate and secure our website, perform basic analytics, and manage service administration), and legal obligations (where record-keeping is required). In Australia, we handle personal information in line with applicable privacy requirements and the principles described here. Where processing is based on consent, you may withdraw it at any time with effect for the future, and we will adapt our processing accordingly. We document our bases and maintain records proportionate to the services delivered.
6) Cookies and Similar Technologies
We use cookies and similar technologies to support essential functions, preferences, and performance analysis. Essential cookies enable basic operations such as page navigation and form submissions. Preference cookies store selections like language or display settings. Performance tools help us understand how features are used so we can improve structure and clarity. You can control cookies through browser settings, and optional tools are activated only as described in our Cookie Policy. Disabling certain cookies may affect functionality, but the site remains accessible.
7) Sharing of Personal Information
We may share personal information with service providers that support hosting, data storage, communications, analytics, payment processing, and professional operations. These providers act under our instructions and implement measures intended to safeguard personal information. Where reasonably necessary, we may share information with professional advisers for operational purposes, subject to confidentiality obligations. We do not sell personal information. If we restructure parts of our business, personal information may be transferred under terms that preserve protections equivalent to those described in this Policy.
8) International Data Transfers
Some service providers may process data in locations outside Australia. When transfers occur, we use safeguards intended to protect personal information, including contractual commitments and technical controls appropriate to the nature of the data. These safeguards are designed to maintain a level of protection aligned with this Policy. We assess provider practices periodically and limit transfers to what is necessary for hosting, communications, or service delivery. You can contact us for general information about transfer mechanisms used for your data.
9) Retention and Deletion
We keep personal information only for as long as needed to fulfil the purposes described here, including service delivery, record-keeping, and security. Typical retention periods vary depending on the type of record, the duration of the client relationship, and operational requirements. When data is no longer required, we delete or de-identify it according to a documented schedule. Backups are cycled on a rolling basis and removed at set intervals. If retention must be extended for operational or legal reasons, we limit access and store the data securely for that period.
10) Security Measures
We apply administrative, technical, and physical safeguards proportionate to the sensitivity of the information we process. Measures may include access controls, encryption in transit, network monitoring, and staff guidance on secure handling. While no environment can be completely risk-free, we continually review controls to maintain an appropriate level of protection. We restrict access to personal information to personnel and providers who need it to operate our services. Security practices are designed to balance confidentiality, integrity, and availability.
11) Your Choices and Individual Rights
Subject to local law, you may request access to your personal information, ask for corrections if details are inaccurate, request deletion where appropriate, and obtain a copy in a portable format. You may also request restriction or object to certain processing where we rely on legitimate interests. To exercise these options, contact us using the details below so we can verify your identity and respond within a reasonable timeframe. If a request cannot be fulfilled in full, we will explain the reason and outline available options consistent with this Policy.
12) Children’s Information
Our services and website are intended for individuals aged 18 and over. We do not knowingly collect personal information from children. If we become aware that information relating to a minor has been provided, we will take steps to delete it or obtain appropriate authorisation consistent with this Policy. We encourage parents or guardians to oversee online interactions and avoid sharing details that are not necessary.
13) Automated Decision-Making and Profiling
We do not use automated decision-making that produces legal or similarly significant effects regarding individuals. Limited analysis may be performed to manage capacity, detect anomalies, or improve service efficiency, but decisions affecting service terms are made by qualified personnel. Any optional personalisation features, if introduced, would be disclosed with clear controls. We maintain documentation to ensure transparency around significant processing activities.
14) Updates to This Policy
We may update this Policy from time to time as our services, technologies, or applicable requirements evolve. The “Effective date” at the top indicates the latest revision. Substantive changes will be reflected in the text and made available on this page. Continued use of our services after an update signifies that you have read the revised Policy. We encourage you to review this page periodically for the most current information.
Contact Information
iconarisylvo
Address: 101 Heal St, New Farm QLD 4005, Australia
Phone: +61 1300 361 546
Email: info@iconarisylvo.com
