Privacy Policy

Information We Collect

When you engage with hirenorium's educational programs, we gather different types of information depending on how you interact with us. Here's what we collect and why we need it.

Personal Information You Provide

• Contact details including your name, email address, phone number, and postal address when you enquire about our programs
• Educational background and professional experience to help us tailor content to your current knowledge level
• Financial goals and interests so we can recommend relevant learning modules
• Payment information when you enrol in our programs, though we don't store credit card details directly
• Correspondence you send us through email, contact forms, or during phone conversations

Information We Collect Automatically

Like most websites, we automatically collect certain technical information when you visit our site. This includes your IP address, browser type, device information, and how you navigate through our pages. We use this data to improve our website's functionality and understand which educational resources are most valuable to visitors.

How We Use Your Information

We're not in the business of collecting data for the sake of it. Everything we gather serves a specific purpose related to providing quality financial education.

We don't sell your personal information to third parties. That's not our business model, and frankly, we find the practice questionable. Your data stays within hirenorium unless you explicitly consent to sharing it with specific educational partners or service providers who help us deliver our programs.

Your Rights Under Australian Privacy Law

The Australian Privacy Principles give you significant control over your personal information. We take these obligations seriously and have established clear procedures for you to exercise your rights.

1. Access Your Information: You can request a copy of all personal data we hold about you. We'll provide this within 30 days, free of charge for the first request each year.
2. Correct Inaccurate Data: If any information we hold is incorrect or outdated, you can ask us to update it. We'll make corrections promptly and notify any third parties if necessary.
3. Request Deletion: You can ask us to delete your personal information, subject to certain legal requirements. We may need to retain some data for compliance purposes, but we'll explain why if that's the case.
4. Withdraw Consent: If you've given consent for specific data processing activities, you can withdraw that consent at any time. This won't affect the lawfulness of processing before you withdrew consent.
5. Object to Processing: You can object to certain types of data processing, particularly for direct marketing purposes. We'll stop processing your data for those purposes unless we have compelling legitimate grounds.
6. Data Portability: You can request your data in a structured, commonly used format and have it transferred to another service provider where technically feasible.

Data Security and Protection

We've implemented multiple layers of security to protect your information from unauthorized access, alteration, disclosure, or destruction. But let's be honest – no system is completely foolproof. Here's what we do and what you should know.

Technical Safeguards

• Industry-standard encryption for data transmission using TLS 1.3 protocols
• Secure servers hosted in Australian data centres with physical security measures
• Regular security audits and penetration testing by independent third parties
• Access controls that limit employee access to personal data on a need-to-know basis
• Automated backup systems with encrypted storage

Organizational Measures

Our staff undergo regular privacy and security training. We've established clear policies about data handling, and we enforce them. Every employee with access to personal information signs confidentiality agreements. We also conduct regular reviews of our practices to identify and address potential vulnerabilities.

Despite these measures, internet transmission isn't perfectly secure. We encourage you to use strong passwords, avoid accessing sensitive information on public Wi-Fi networks, and contact us immediately if you suspect any security issues with your account.

Data Retention and Deletion

We don't keep your information forever. Different types of data have different retention periods based on legal requirements, operational needs, and the purpose for which we collected it.

• Financial transaction records: 7 years from the date of transaction (required by Australian tax law)
• Educational progress and course completion data: Duration of your enrolment plus 5 years
• Contact information for inactive accounts: 3 years from last activity, then deleted unless you request otherwise
• Marketing communications data: Until you unsubscribe or request deletion
• Website analytics data: Aggregated and anonymized after 26 months

When we delete your data, it's permanently removed from our active systems and backup archives. In some cases, we may retain anonymized information for statistical purposes, but this data can't be traced back to you individually.

Third-Party Services and Data Sharing

We work with carefully selected service providers to deliver our educational programs effectively. These providers only receive the minimum information necessary to perform their specific functions.

Payment Processors

We use established Australian payment processors to handle transactions securely. These providers are PCI DSS compliant and operate under strict confidentiality agreements. We never store your complete credit card information on our servers.

Educational Platform Providers

Our online learning platform is hosted by Australian providers who meet stringent privacy and security standards. They may access technical information to maintain the platform but are contractually prohibited from using your data for any other purpose.

Analytics and Improvement Tools

We use analytics tools to understand how people use our website and educational resources. This helps us identify areas for improvement. These tools collect anonymized data about user behaviour, and we've configured them to respect privacy by masking IP addresses and avoiding personally identifiable information where possible.

International Data Transfers

Your data is primarily stored and processed in Australia. However, some of our service providers may have servers or operations in other countries. When we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Transferring data only to countries with adequate privacy protections as recognized by Australian law
• Using standard contractual clauses approved by the Office of the Australian Information Commissioner
• Ensuring service providers implement security measures equivalent to Australian standards
• Conducting regular compliance reviews of international data processing activities

If you have concerns about international data transfers or want to know where your specific data is stored, you can contact our Privacy Officer for details about current data processing locations.

Cookies and Tracking Technologies

We use cookies and similar technologies to make our website function properly and improve your experience. Here's what we use and why:

• Essential cookies that enable basic site functionality like secure logins and remembering your preferences
• Analytics cookies that help us understand which content is most useful to visitors
• Functional cookies that remember your settings and personalize your experience

You can control cookie settings through your browser, though disabling certain cookies may affect site functionality. We don't use third-party advertising cookies or tracking technologies for behavioural advertising. Our focus is education, not surveillance.

Children's Privacy

Our educational programs are designed for adults aged 18 and over. We don't knowingly collect personal information from individuals under 18 without parental consent. If we discover we've inadvertently collected data from someone under 18, we'll delete it promptly unless we have legal grounds to retain it.

Parents or guardians who believe we may have information about their child can contact us at support@hirenorium.com to request access or deletion of that information.

Changes to This Privacy Policy

We review and update this policy periodically to reflect changes in our practices, technology, or legal requirements. When we make significant changes, we'll notify you via email if you have an active account, or through a prominent notice on our website.

The "Last Updated" date at the top of this policy indicates when the current version took effect. We encourage you to review this policy occasionally to stay informed about how we protect your information. Continued use of our services after policy changes constitutes acceptance of the updated terms.

Complaints and Disputes

If you believe we've mishandled your personal information or violated your privacy rights, we want to know about it. Here's how our complaints process works:

1. Contact our Privacy Officer in writing at support@hirenorium.com, providing details of your concern and what outcome you're seeking.
2. We'll acknowledge your complaint within 5 business days and investigate the matter thoroughly.
3. You'll receive a detailed response within 30 days explaining our findings and any corrective actions we'll take.
4. If you're not satisfied with our response, you can escalate the matter to the Office of the Australian Information Commissioner (OAIC).

The OAIC is Australia's independent privacy regulator and can investigate complaints about potential breaches of the Privacy Act 1988. You can contact them at enquiries@oaic.gov.au or visit their website for more information about lodging a complaint.