Privacy Policy

Last updated: 16 April 2026

Find a Financial Planner is operated by Boring Ventures Pty Ltd (ABN 67 671 943 758). This Privacy Policy explains how we handle your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

1. What we collect

  • Lead enquiry data: name, email, phone, postcode, suburb, service need, urgency, priority
  • Provider application data: business name, contact person, ABN, registration numbers, service areas
  • Technical data: IP address, user agent, pages viewed, referrer, session timestamps
  • Voluntary feedback: email replies, survey responses, review submissions

2. How we use it

  • Match you to up to 3 providers meeting your criteria (postcode, service, capacity)
  • Send you confirmation of the match and follow-up nurture emails (you can unsubscribe at any time)
  • Invoice providers for acknowledged leads
  • Analyse aggregate site performance and improve matching quality
  • Comply with ATO, regulator, or court requests if legally required

3. Who we share with

We share your enquiry with up to 3 matched providers for the specific service you requested. We do not sell your data to any party outside this matching purpose. Technical partners we rely on:

  • Cloudflare (hosting, CDN, DNS)
  • Resend (transactional email delivery)
  • Stripe (provider invoicing, not consumer payments)
  • Anthropic (AI concierge responses, stateless — your questions are processed, not stored)

4. How long we keep it

Lead enquiries: 24 months then anonymised. Provider applications: for duration of the relationship plus 7 years (tax record requirement). Technical logs: 12 months.

5. Your rights

Under the APPs you can:

  • Access your personal information (email [email protected])
  • Correct inaccurate information
  • Request deletion (subject to legal retention obligations)
  • Unsubscribe from any marketing email (one-click link in every email we send)
  • Complain to the Office of the Australian Information Commissioner (oaic.gov.au) if we fail to meet our obligations

6. Security

We encrypt all data in transit (TLS 1.3) and at rest (AES-256 database encryption). Access to your data is limited to authorised staff of Boring Ventures Pty Ltd. We notify affected individuals within 72 hours of any notifiable data breach as required under Part IIIC of the Privacy Act.

7. Cookies

We do not use third-party tracking cookies by default. A first-party image beacon records page views (IP + user agent, no cookie). If you enable retargeting ads (Meta, Google) through your consent, those vendors will set their own cookies per their policies.

8. International transfers

Some of our service providers (Cloudflare, Anthropic, Resend) store data outside Australia. By using our site you consent to such transfers. All providers maintain security standards equivalent to Australian law.

9. Changes

We may update this policy. Material changes will be notified by email (if we hold your address) and posted here with an updated "last updated" date.

10. Contact

Privacy questions: [email protected]
Postal: Boring Ventures Pty Ltd, GPO Box, Melbourne VIC 3000
Our Privacy Officer responds within 30 days as required by APP 12.