ImmediateNextgen

1. Introduction

Welcome to Immediate Nextgen ("we," "us," "our," or "the Platform"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy outlines how we collect, use, disclose, store, and protect data when you access or use our website, mobile applications, and related services (collectively, the "Services").

By accessing or using Immediate Nextgen, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree with these terms, please discontinue use of our Services immediately.

This Privacy Policy complies with the Australian Privacy Act 1988 (Cth), including the Australian Privacy Principles (APPs), and where applicable, the European Union's General Data Protection Regulation (GDPR) for users in the European Economic Area.

2. Information We Collect

We collect various types of information to provide, maintain, improve, and secure our Services:

2.1 Personal Information You Provide

When you register for an account, we collect:

• Identity Information: Full name, date of birth, gender, residential address
• Contact Information: Email address, phone number, postal address
• Financial Information: Bank account details, payment card information, transaction history
• Verification Documents: Government-issued ID (passport, driver's licence), proof of address (utility bills, bank statements)
• Account Credentials: Username, password, security questions and answers

2.2 Information Collected Automatically

When you use our Services, we automatically collect:

• Device Information: IP address, browser type and version, operating system, device identifiers
• Usage Data: Pages visited, features used, time spent on pages, click patterns, session recordings
• Location Data: Approximate geographic location based on IP address
• Cookies and Tracking Technologies: Session cookies, persistent cookies, web beacons, analytics tags (see our Cookies Policy for details)

2.3 Information from Third Parties

We may receive information about you from:

• Identity Verification Services: Third-party verification providers for KYC (Know Your Customer) compliance
• Payment Processors: Transaction confirmation and payment status information
• Crypto Exchanges: Trading activity, account balances (via secure API connections you authorise)
• Analytics Providers: Aggregated usage statistics and performance metrics

3. How We Use Your Information

We use collected information for the following purposes:

• Service Provision: To create and manage your account, execute trades, process payments, and deliver platform features
• Identity Verification: To comply with Australian Anti-Money Laundering and Counter-Terrorism Financing (AML/CTF) regulations
• Customer Support: To respond to enquiries, troubleshoot issues, and provide assistance
• Security and Fraud Prevention: To detect, prevent, and investigate suspicious activity, unauthorised access, and fraudulent transactions
• Platform Improvement: To analyse usage patterns, develop new features, and optimise user experience
• Communication: To send account notifications, security alerts, updates, promotional materials (with your consent)
• Legal Compliance: To meet regulatory requirements, respond to lawful requests, and enforce our Terms & Conditions
• Research and Analytics: To conduct market research and generate statistical insights (using anonymised data)

4. Legal Basis for Processing (GDPR Compliance)

For users in the European Economic Area, we process personal data based on:

• Contractual Necessity: Processing required to fulfill our agreement with you
• Legal Obligation: Compliance with AML/CTF laws, tax regulations, and financial reporting requirements
• Legitimate Interests: Fraud prevention, security improvements, business analytics (balanced against your rights)
• Consent: Marketing communications, optional data collection (which you can withdraw at any time)

5. How We Share Your Information

We do not sell, rent, or trade your personal information. However, we may share your data with:

5.1 Service Providers

Third-party vendors who perform services on our behalf, including:

• Payment processors (for transaction processing)
• Cloud hosting providers (for data storage and server infrastructure)
• Identity verification services (for KYC compliance)
• Email and communication platforms (for notifications)
• Analytics and monitoring tools (for performance tracking)

All service providers are contractually obligated to protect your data and use it only for specified purposes.

5.2 Regulatory and Legal Authorities

When required by law, we may disclose information to:

• Australian Transaction Reports and Analysis Centre (AUSTRAC)
• Australian Securities and Investments Commission (ASIC)
• Law enforcement agencies (in response to valid legal requests)
• Tax authorities (for tax reporting obligations)

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity, subject to the same privacy protections outlined in this policy.

6. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: All data transmissions use SSL/TLS encryption; sensitive data at rest is encrypted using AES-256
• Access Controls: Strict role-based access controls limit employee access to personal data
• Two-Factor Authentication (2FA): Available for all user accounts
• Regular Security Audits: Independent third-party penetration testing and vulnerability assessments
• Secure Infrastructure: Data stored in ISO 27001-certified data centres with physical security controls
• Incident Response: Comprehensive breach notification procedures in place

While we strive to protect your information, no method of transmission or storage is 100% secure. Users are responsible for maintaining the confidentiality of their account credentials.

7. Data Retention

We retain personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law:

• Active Accounts: Data retained while your account remains active
• Closed Accounts: Identity verification records retained for 7 years (Australian AML/CTF requirement)
• Transaction Records: Retained for 7 years for financial reporting and tax compliance
• Communications: Support enquiries retained for 3 years
• Marketing Data: Deleted within 90 days of consent withdrawal

8. Your Privacy Rights

Under Australian privacy law and GDPR (where applicable), you have the following rights:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data (subject to legal retention requirements)
• Objection: Object to processing of your data for marketing purposes
• Portability: Request transfer of your data to another service provider (where technically feasible)
• Restriction: Request temporary restriction of processing in certain circumstances
• Withdraw Consent: Withdraw previously given consent at any time

To exercise these rights, contact us at [email protected]. We will respond within 30 days of receiving your request.

9. International Data Transfers

Your information may be transferred to and processed in countries outside Australia, including the United States, European Union, and Singapore. We ensure adequate protection through:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequate safeguards as recognised under Australian Privacy Principles
• Data processing agreements with all international service providers

10. Children's Privacy

Immediate Nextgen is not intended for individuals under 18 years of age. We do not knowingly collect personal information from minors. If we become aware that a user is under 18, we will promptly delete their account and associated data.

11. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. Significant changes will be communicated via email or prominent notice on our website at least 30 days before taking effect.

Your continued use of the Services after changes take effect constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have questions, concerns, or complaints about this Privacy Policy or our data practices, please contact:

Privacy Officer
Immediate Nextgen
Email: [email protected]
Phone: 1800 NEXTGEN (1800 639 843)
Post: Privacy Officer, Immediate Nextgen, Level 12, 120 Collins Street, Melbourne VIC 3000, Australia

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au or call 1300 363 992.

For users in the EEA, you may also contact your local data protection authority.