When you use qexiralon's budget consolidation tools, we collect different types of information to provide you with accurate financial insights and recommendations.

How We Collect Information

• Directly from you when you create an account or use our services
• From your connected financial institutions through secure API connections
• Automatically through your use of our platform and mobile application
• From third-party services that help us verify your identity and prevent fraud

We use your information solely to provide and improve our budget consolidation services. Here's exactly what we do with your data:

Primary Service Functions

• Consolidate transactions from multiple accounts into unified budget views
• Categorize spending and identify patterns in your financial behavior
• Generate personalized insights and budget recommendations
• Send account notifications and budget alerts you've requested
• Provide customer support and respond to your inquiries

Platform Improvement

• Analyze aggregated, anonymized usage data to enhance our features
• Conduct research to develop new budget management tools
• Test platform performance and identify technical improvements
• Ensure system security and prevent unauthorized access

Legal and Compliance

• Comply with Australian financial services regulations and reporting requirements
• Respond to legal requests from Australian authorities when required by law
• Protect against fraud and maintain the security of our platform
• Enforce our terms of service and resolve disputes

We don't sell your personal information to anyone. Ever. We only share your data in specific, limited circumstances:

Service Providers

We work with trusted third-party companies that help us operate our platform. These include:

• Cloud hosting providers for secure data storage (AWS Australia)
• Payment processors for subscription billing
• Customer support tools to respond to your questions
• Security services for fraud detection and prevention

All service providers sign strict data protection agreements and can only use your information as we direct them.

Financial Institutions

We connect with banks and financial institutions you authorize to access your account data. These connections use read-only access through secure, encrypted APIs. We never store your banking login credentials.

Legal Requirements

We may disclose information if required by Australian law, court order, or to protect the rights and safety of our users and platform.

Business Transfers

If qexiralon is acquired or merged with another company, your information may be transferred as part of that transaction. You would be notified of any such change in ownership or control.

Protecting your financial information is our highest priority. We implement multiple layers of security:

Encryption and Storage

• All data is encrypted both in transit and at rest using AES-256 encryption
• Financial data is stored in secure, geographically distributed data centers within Australia
• We use bank-level security protocols for all data transmissions
• Access to your information is strictly limited to authorized personnel

Access Controls

• Two-factor authentication required for all staff accessing user data
• Regular access reviews and immediate revocation when employees leave
• Comprehensive audit logs of all data access and modifications
• Automated monitoring for unusual access patterns or potential breaches

Third-Party Security

• All service providers undergo rigorous security assessments
• Regular penetration testing and vulnerability assessments
• Compliance with ISO 27001 and SOC 2 Type II standards
• Immediate notification protocols in case of any security incidents

We keep your information only as long as necessary to provide our services and comply with legal requirements.

Data Deletion Process

When we delete your data, we use secure deletion methods that make recovery impossible. This includes:

• Multiple-pass overwriting of storage media
• Cryptographic erasure of encrypted data
• Physical destruction of decommissioned storage devices
• Verification that all copies and backups are completely removed

qexiralon primarily operates within Australia, but some of our service providers may process data internationally. When this happens:

• We ensure the destination country has adequate privacy protections
• Service providers must contractually guarantee equivalent protection to Australian standards
• All international transfers use encrypted connections and secure protocols
• We regularly audit international partners for compliance with our privacy requirements

Countries where your data may be processed include New Zealand, Singapore, and members of the European Union, all of which have been recognized by the OAIC as providing adequate privacy protection.

qexiralon's services are designed for adults and we don't knowingly collect personal information from children under 13 years of age. If we become aware that we've collected information from a child under 13, we'll delete it immediately.

For users between 13 and 18 years old in Australia, we require parental consent before creating an account. Parents can request access to their child's information or ask for its deletion at any time.

We review and update this privacy policy regularly to reflect changes in our services, technology, or legal requirements. When we make significant changes:

• We'll notify you via email at least 30 days before changes take effect
• We'll post a notice on our platform highlighting key changes
• The updated policy will include a new "last updated" date
• We'll maintain an archive of previous policy versions for your reference

Minor updates for clarity or legal compliance may be made without advance notice, but we'll always update the "last modified" date.