ASIC regulated · Australian Credit Licence 574609 AFCA member 119389 ABN 60 690 561 507

Legal

Privacy and Credit Reporting Policy

How HomePro Credit collects, uses, discloses and protects your personal and credit-related information.

Last updated: 17 March 2026

Download PDF

This page reproduces our Privacy and Credit Reporting Policy. The downloadable file above is the authoritative version.

Notification of collection of personal information

The law requires us to ensure you are aware of the following matters before we collect your personal information:

  • Our identity and contact details
  • The fact and circumstances of collection
  • Whether the collection is required or authorised by law
  • The purposes of collection
  • The consequences if personal information is not collected
  • Our usual disclosures of personal information collected by us
  • Information about our Privacy Policy
  • Whether we are likely to disclose personal information to overseas recipients and (if practicable) the countries where they are located

These matters are addressed in this policy. In particular, this policy explains likely disclosure to certain entities in the USA and India, and by continuing, you acknowledge that these overseas entities may not be subject to the Australian Privacy Principles.

Please let us know if you have any questions about these matters before providing your personal information to us.

This is the privacy and credit reporting policy of HomePro Finance Australia Pty Ltd ABN 60 690 561 507, Australian Credit Licence 574609, trading as HomePro Credit (we, us, our and HomePro Credit). It sets out how we collect, use and disclose personal information (including credit-related personal information) we hold about you.

Our commitment to protect your privacy

We understand how important it is to protect your personal information. This Privacy and Credit Reporting Policy (Privacy Policy, or this policy) sets out our commitment in respect of the personal information (including credit-related personal information) we hold about you and what we do with that information.

We recognise that personal information collected about you will only be used for the purposes for which it was collected, or as otherwise permitted by law. We want you to feel confident that we handle your personal information responsibly and in a way that protects your privacy.

Our commitment in respect of personal information is to abide by the Australian Privacy Principles (APPs), the Privacy Act 1988 (Cth) (Privacy Act), the Privacy (Credit Reporting) Code 2025 (CR Code) and any other relevant law.

Consumer Data Right (CDR)

We may participate in the Consumer Data Right (CDR) regime as a CDR representative. Under the CDR framework, we will operate under a written arrangement with an unrestricted accredited person (our CDR representative principal). Where you provide a valid consent under the CDR Rules:

  • our CDR representative principal will collect your CDR data from relevant CDR participants on our behalf; and
  • the CDR representative principal will disclose that CDR data to us so that we can provide the services you have requested.

We do not collect CDR data directly from data holders. CDR data would be collected by our CDR representative principal and disclosed to us under our CDR representative arrangement.

We will only seek to collect, use or disclose CDR data with your express consent and in accordance with the Competition and Consumer Act 2010 (Cth) and the Competition and Consumer (Consumer Data Right) Rules 2020. Consents are voluntary, time-limited and may be withdrawn at any time. We will not seek to collect, use or disclose CDR data beyond what is reasonably necessary to provide the goods or services you request.

In relation to CDR data disclosed to us under any CDR representative arrangement we may enter into, we will adopt and comply with our CDR representative principal's CDR policy, which governs the collection, use, disclosure, storage and deletion of CDR data under the CDR framework.

CDR data will be handled and deleted in accordance with the CDR Rules and our CDR representative principal's CDR policy.

Nothing in this section limits our separate obligations under the Privacy Act 1988 in relation to personal information that is not CDR data.

Personal information

When we refer to 'personal information', we mean information from which your identity is reasonably apparent. This information may include information or an opinion about you. The personal information we hold about you may include the following:

1. Personal identifiers and contact details (including socio-demographic information)

The kinds of personal information we may collect about you include your name, date of birth, address, account details, passport details, driver's licence details and any other information we may need to identify you.

We may rely on digital identification scanning technology that takes an electronic copy of your proof of identity documents, such as your driver's licence.

2. Technical and usage data

When you visit our websites or use our mobile apps, we may collect information about your location or activity, including your IP address, telephone number, whether you have accessed third-party sites, the date and time of visits, the pages that you viewed, information about the device used, and other user location information.

We collect some of this information using cookies as set out below.

3. Product profile

We may hold details of products and services (including their status) you have, such as any home loan, car finance or superannuation provider.

Sensitive information

'Sensitive information' is a subset of personal information. It includes information or an opinion about your racial or ethnic origin, political opinions, membership of a political, professional or trade association or trade union, religious or philosophical beliefs, sexual orientation or practices, criminal record, health or genetic information, and biometric information or biometric templates used for verification or identification purposes.

We will only collect sensitive information about you with your consent.

Credit-related personal information

'Credit-related personal information' is a subset of personal information, and includes:

  • credit information, which is information such as your identity; the type, terms and maximum amount of credit provided to you, including when that credit was provided and when it was repaid; repayment history information (including financial hardship information); default information (including overdue payments); payment information; new arrangement information; details of any serious credit infringements; court proceedings information; personal insolvency information; and publicly available information; and
  • credit eligibility information, which is credit reporting information supplied to us by a credit reporting body (CRB), and any information that we derive from it.

Credit-related personal information that we hold about you may include your financial position and transaction data.

We use your credit-related personal information to assess your eligibility to be provided with finance. Usually, credit-related personal information is exchanged between credit and finance providers and CRBs.

If you are applying for finance or provide a guarantee, we may also collect the ages and number of your dependents and cohabitants, the length of time you have resided at your current address, your employment details, and proof of your earnings and expenses.

Why we collect your personal information

We collect personal information for the purposes of assessing your application for finance and managing that finance (including using personal information within automated systems and analytical tools that assist us in performing those credit assessment and loan management functions), establishing your identity, contacting you, managing our risk and complying with our legal obligations. For example, we are required or authorised to collect certain identification information about you under the Anti-Money Laundering and Counter- Terrorism Financing Act 2006 (Cth), and certain information about your financial position under the National Consumer Credit Protection Act 2009 (Cth) (for applying for credit).

We exchange credit-related personal information for the purposes of assessing your application for finance and managing that finance. If you propose to be a guarantor, one of our checks may involve obtaining a credit report about you.

We may also collect your personal information for the purposes of direct marketing (see 'Direct marketing' below) and managing our relationship with you. Improvements in technology also enable organisations like ours to collect and use information to get a more integrated view of our customers. From time to time, we may offer you other products and services.

We may use artificial intelligence (AI) and other automated systems as part of our credit assessment and loan administration processes. We do not use personal information to train publicly available generative AI models.

How we collect and store your personal information

We collect personal information (including credit-related personal information) in a number of ways, including:

  • directly from you, for example, when you provide information by phone, in application forms or other agreements, or when you submit your personal details using our website;
  • other guarantors or borrowers (if more than one);
  • through our authorised dealers (tradespersons) who collect your information during the course of providing goods or services, or when assisting with your credit application, including via our application platform (or any similar third-party service management system);
  • from third parties or your representatives. If we obtained your information through any of these methods and you would like a list of these entities or websites, or if you feel you have not given us consent to use your details, please contact us (see 'How to contact us' below);
  • from publicly available sources of information. For example, when we obtain credit eligibility information from a CRB about you; we may also seek publicly available information and information about any serious credit infringement that you may have committed;
  • from our own records; and
  • when you visit our website.

We may also collect personal information using digital identification scanning technology. This may involve taking an electronic copy of your proof of identity documents (for example, your driver's licence or passport) to verify your identity. The scanned information is stored securely in electronic form and protected by our IT security measures described in this policy.

Personal information may be held by us in electronic form on our secure servers and may also be held in paper form. We may use cloud storage to store the personal information we hold about you. The cloud storage and the IT servers may be located outside of Australia.

Use of AI tools

We may use AI systems and other digital technologies to assist with our business functions, for example, to improve efficiency, analyse data, or support customer service. These systems may process personal information that we hold, but we do not use personal information to train external AI models. Any AI tools we use operate in controlled environments with human oversight, and are subject to the same privacy, security and governance measures described in this policy.

Automated decision-making

From time to time, we may use computer programs or automated systems to assist with decisions about products or services, such as assessing eligibility for finance or verifying information. Personal information may be used in the operation of these systems. Where a decision is made solely by an automated process, or where a computer program does something substantially and directly related to making such a decision, and that decision could reasonably be expected to significantly affect an individual's rights or interests, we will take reasonable steps to ensure transparency about how these systems operate and how individuals can seek review or further information.

The kinds of personal information that may be used in these automated processes include identification, demographic, contact, financial and credit-related information provided in applications or held in our systems. The kinds of automated decisions may include preliminary assessments of credit eligibility, verification of identity, and other processing steps that support the provision or administration of finance. Final lending decisions are subject to human review and oversight.

Collecting third parties' personal information

If you provide us with personal information about other individuals (for example, the name and contact details of your authorised representatives), you should inform them that you are doing so and advise them that they can contact us for further information (see 'How to contact us' below).

Information collected when using our website or third-party websites

1. IP address

Your internet protocol address (or 'IP address') is the numerical identifier for your device when you are using the internet. It may be necessary for us to collect your IP address for your interaction with some parts of our website.

2. Cookies (and targeting and remarketing)

A 'cookie' is a small text file placed on your device by a webpage server that may later be retrieved by webpage servers. There are different types of cookies and they are used for different purposes. For example, session cookies are generally active for one session only as they are used to facilitate completing online forms; they differ from persistent cookies that are stored on your device to help websites remember your information and settings when you visit them again. We use cookies on our website to provide you with a better website experience. We also use cookies for other purposes, such as to better understand our users' behaviours and habits (such as by measuring traffic patterns and analysing trends) so that we can diagnose problems and make improvements to our products and services. We may use cookie information to display targeted advertisements or content on our network and on this website, and also on third-party networks and websites (Third Party Websites) such as Google and Facebook. We may use remarketing tools such as Google AdWords to tailor our marketing to (for example) better suit your needs and only display advertisements that are relevant to you.

When you visit our website or related landing pages to read, browse, submit or download information, our system will record/log information such as your IP address, date and time of your visit to our site, the pages viewed and any information downloaded. We may automatically collect non-personal information about you, such as the site from which you were linked to our website. In some cases, we may also collect your personal information through the use of cookies.

You can configure your browser to refuse cookies or delete existing cookies from your hard drive.

Rejecting cookies may have the effect of limiting access to or functionality of parts of our website.

For more information about our use of cookies, please see our Website Terms of Use/Policy.

3. Web beacons and tracking pixels

A web beacon is typically a transparent graphic image invisible to the user that is placed on a website. The use of a web beacon allows the website to record the simple actions of the user (such as opening the page that contains the beacon) through a tracking pixel.

We may use web beacons (and cookies) for purposes such as site usage analytics, advertising auditing and reporting, as well as content and 'advertising / marketing personalisation'. We may share any data collected from web beacon (and cookies) with third parties to provide you with relevant advertising when browsing Third Party Websites.

We may use tracking pixels provided by third parties (for example, social media and analytics platforms) to help us understand how visitors use our website and to measure the performance of our advertising campaigns. Tracking pixels are small pieces of code that allow data such as IP address, pages visited, time spent on our site, form interactions or items viewed to be sent to the relevant third-party platform. We take a cautious approach to the use of tracking pixels, for example, we configure them to limit the collection of personal information to what is reasonably necessary for our business functions, and we do not intentionally share sensitive information through these technologies. Any personal information collected using tracking pixels is handled in accordance with this policy and the APPs.

4. Links to third-party websites

Our website contains links to third-party websites (for example, our authorised dealers (tradespersons) who provide goods or services). If you accessed third-party websites through our website and if those third parties collect information about you, we may also collect or have access to that information as part of our arrangements with those third parties.

Where you access a third-party website from our website, cookie and web beacon information, information about your preferences or other information you have provided about yourself may be shared between us and the third party.

5. Advertising and tracking

We may advertise on third-party websites. When you view our advertisements on third-party websites, the advertising company may use cookies, and in some cases, web beacons, to collect information such as the server your computer is logged onto, your browser type, the date and time of your visit and the performance of their marketing efforts.

When you access our website after viewing one of our advertisements on a third-party website, the advertising company may collect information on how you utilise our website (for example, which pages you viewed) and whether you commenced or completed an online application or other online forms.

Electronic Consent

By providing your email address and then clicking submit on any online form, application, calculator, tool or query, or by accepting or attending a meeting with us, you consent to receive notices and other documents from us by email to the email address provided, and you understand that if you give this consent: we may no longer send you paper copies of notices and other documents; that you should regularly check your email address for documents; and you can withdraw your consent to receiving documents by email at any time and without cost by advising us in writing. You also confirm that you have the facilities or ability to print any notice or document that we send you by email, if required.

Online applications

When you send a completed online application to us, we retain the information contained in that application. We can use that information to provide any products and services that you require.

You may also be able to suspend and save online applications, so you can complete and send the applications at a later time. If you suspend or save your application, the information that you have entered will be retained in our systems so that you may recover the information when you resume your application.

Online applications that have been suspended or saved may be viewed by us. In particular, if you start but do not submit an online application, we may contact you using any of the contact details you have supplied to offer assistance in completing it. If you do not wish to receive further contact or do not wish to proceed with your application, you can let us know at that time.

Unsolicited information

Sometimes people share information (including sensitive information) with us that we have not sought out. This could be through using our website or, for example, requesting us to assess or assist in a credit hardship application.

If we receive unsolicited personal information (including credit-related personal information) about you, we will determine whether we would have been permitted to collect that information. If yes, then we will handle this information the same way we do with other information that we seek from you or in the manner described in this policy. If no and the information is not contained in a Commonwealth record, then we will destroy or de-identify it as soon as practicable, but only if it is lawful and reasonable to do so.

Often, it is not possible for us to neatly unbundle this information then destroy or de-identify only certain sections or parts of it, and we may need to store this information for future use, such as to help resolve disputes between us or assess future applications by you. We have many security safeguards in place to protect the information from interference, misuse, loss, unauthorised access, modification or disclosure.

How we disclose your personal information

We will not sell or trade your personal information to any party outside of HomePro Credit (except as part of a sale of our business or a transfer of interests in our credit products as described below). We may disclose your personal information to third parties for the purpose of delivering the products or services you require. Your personal information is disclosed to these organisations only in relation to us conducting our business or providing our products and services to you.

We may disclose your personal information to:

  • organisations with which we form a strategic partnership or a similar business relationship;
  • prospective funders or other intermediaries in relation to your finance requirements;
  • other organisations that are involved in managing or administering your finance, such as third-party suppliers, printing and postal services, call centres, lenders, trade insurers, and CRBs;
  • companies that provide information and infrastructure systems to us;
  • our agents, contractors, external service providers to outsource certain functions, for example, statement production, debt recovery, and information technology support, including any servicers, or sub/backup servicers of your loan;
  • anyone who represents you, such as finance brokers, lawyers, guardians, persons holding power of attorney, and accountants;
  • anyone, where you have given your consent;
  • other guarantors or borrowers (if more than one);
  • borrowers or prospective borrowers, including in relation to any credit you guarantee or propose to guarantee;
  • our auditors, insurers and reinsurers;
  • claims-related providers, such as assessors and investigators who help us with claims;
  • where we are authorised to do so by law, such as under the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth), or by government and law enforcement agencies or regulators;
  • purchasers, investors, assignees, agents, advisers, trustees, rating agencies, or any entity that has an actual or prospective interest in your HomePro Credit loan or our business (including via securitisation or portfolio sale);
  • other financial institutions, for example, to process a claim for mistaken payment; or
  • organisations that provide products or services used or marketed by us.

We may disclose your personal information in accordance with the purposes outlined in this policy, including as set out under 'Direct marketing'.

Prior to disclosing any of your personal information to another person or organisation, we will take all reasonable steps to satisfy ourselves that:

  • the person or organisation commits to protecting your personal information at least equal to our commitment; or
  • you have consented to us making the disclosure.

Some of the third parties may be located outside of Australia. Where tracking pixels result in information being sent to a third-party platform located outside of Australia, we take reasonable steps to ensure the overseas recipient does not breach the APPs in relation to that information.

Transfer of information overseas

We run our business in Australia, but may from time to time need to share your personal information (including credit-related personal information) with organisations outside of Australia. This may include related entities and service providers located in the USA and India. Where we do this, we take reasonable steps to ensure appropriate data handling and security arrangements are in place. You should note that while overseas entities will often be subject to confidentiality or privacy obligations that apply in the relevant jurisdiction, they may not always follow the particular requirements of the Privacy Act. In the event that a disclosure is made in an overseas country, the information will not be protected by the APPs, and you will not be able to hold us accountable or seek redress under the Privacy Act if the overseas entity breaches the APPs. By providing us with your details, you consent to your personal information being disclosed in this manner. Overseas entities may be required to disclose information we share with them under a foreign law. In those instances, we are not responsible for that disclosure.

We may store your information in cloud or other types of networked or electronic storage. You should note that, as electronic or networked storage can be accessed from various countries via an internet connection, it is not always practicable to know in which country your information may be held.

We will not share any of your credit information with a CRB, unless it has a business operation in Australia.

We are not likely to share with an overseas entity credit information we obtain about you from a CRB or that we derive from that information.

Disclosure to CRBs

We may disclose information about you to a CRB in Australia when you are applying for credit, you have obtained credit from us, or if you guarantee or are considering guaranteeing the obligations of another person to us. When we give your information to a CRB, it may be included in reports that the CRB gives other organisations (such as other lenders) to help them assess your creditworthiness.

Some of that information may reflect adversely on your creditworthiness, for example, if you fail to make payments or if you commit a serious credit infringement (like obtaining credit by fraud). That sort of information may affect your ability to get credit from other lenders.

Notifiable matters

The law requires us to advise you of certain 'notifiable matters' in relation to how we handle your credit-related personal information. You can request to have these notifiable matters (and a copy of this policy) provided to you in an alternative form by contacting us (see 'How to contact us' below).

We exchange your credit-related personal information with CRBs. This includes information such as your identification details, the type and amount of credit you have, your repayment history, whether you have met your credit obligations, and whether you have committed a serious credit infringement (such as fraud).

We may disclose information to a CRB even if you do not consent to the disclosure. For example, we may make what is known as an information request to a CRB to obtain your credit report, and your consent is not required for us to do so.

A record of any information request we make may be used by the CRB, and shared with other credit providers, to assess your creditworthiness. This includes being used in the calculation of your credit score or credit rating. In general, more frequent credit enquiries may negatively impact your credit score, depending on how each CRB calculates it.

We use the credit-related personal information that we exchange with CRBs to confirm your identity, assess your creditworthiness, assess your application for credit or your capacity to act as a guarantor, and manage your credit account with us.

If you fail to meet your repayment obligations or commit a serious credit infringement, we may be entitled to disclose this to a CRB. The CRB may then include that information in reports provided to other credit providers to assist them in assessing your creditworthiness.

You have the right to:

  • request access to the credit-related personal information we hold about you;
  • request that we correct your credit-related personal information if it is inaccurate, out-of- date, incomplete, irrelevant or misleading; and
  • make a complaint if you believe we have mishandled your credit-related personal information.

This policy contains further information about how you may access and correct your information, how to make a complaint, and how we will deal with your complaint.

You can find out more about how we manage your credit-related personal information, including how to access and correct your information and how to make a complaint, by reading this policy, available on our website or by contacting us (see 'How to contact us' below).

CRBs may use your credit-related personal information for the purpose of pre-screening credit offers on behalf of other credit providers. You have the right to request that a CRB does not use your credit-related information for this purpose.

You may also contact a CRB directly to advise that you believe you have been, or are likely to be, a victim of fraud. If you do so, the CRB must not use or disclose your credit-related information during a 21-day ban period (or longer, if extended).

We are not likely to disclose your credit-related personal information to entities that do not have an Australian link. More information about any overseas disclosures is included in this policy.

You can contact any of the following CRBs for more information or to exercise your rights:

Equifax Pty Limited
https://www.equifax.com.au

illion Australia Pty Limited
https://www.illion.com.au/

Experian Australia Credit Services Pty Limited
https://www.experian.com.au/

Direct marketing

We may use or disclose your personal information to inform you about products and services offered by us, our agents, business partners or affiliates that may be of interest to you. These may include updates, newsletters, competitions, promotions, or other opportunities tailored to your financial, lifestyle or related needs.

We may conduct direct marketing via mail, email, telephone, SMS/MMS, or other electronic and non-electronic means. We may also advertise our products and services to you through third-party platforms, including social media channels. When tracking pixels are used to deliver or measure online advertising, you can opt out of targeted advertising through your browser settings or the preference tools offered by the relevant third-party platform.

We will only use or disclose your personal information for direct marketing purposes:

  • where you would reasonably expect us to do so;
  • where you have given us your consent; or
  • where it is impracticable to obtain your consent, in which case we will ensure a simple and prominent means for you to opt out is included in each communication.

If we collect your personal information from someone else, or you would not reasonably expect us to use your personal information for marketing, we will only do so with your consent or where it is impracticable to obtain it.

Each direct marketing communication we send will include a clear and prominent notice of your right to opt out of further communications, and how to do so easily.

We will not use or disclose your sensitive information (as defined in the Privacy Act) for direct marketing without your express consent.

With your consent, we may also disclose your personal information to third parties such as brokers, agents, or other businesses to connect you with relevant services or opportunities. You can ask us at any time not to disclose your information for this purpose.

Where we use third-party marketing service providers, those providers may combine the personal information we provide to them with information they already hold about you to deliver more relevant marketing messages about our or their services. We do not facilitate third-party marketing beyond these providers acting on our behalf.

If you do not wish to receive marketing communications, you can opt out at any time by contacting us (see 'How to contact us' below). You can also use the unsubscribe link in marketing emails or other communications where applicable. We will process your opt-out request free of charge and as soon as reasonably practicable, typically within a few business days.

If you are a prospective customer, we are happy to let you know how we obtained your personal information on request.

Updating your personal information

It is important to us that the personal information we hold about you is accurate and up-to- date. During the course of our relationship with you, we may ask you to inform us if any of your personal information has changed.

Please contact us if you wish to make any changes to your personal information (see 'How to contact us' below). We will generally rely on you to ensure the information we hold about you is accurate or complete.

Access to and correction of your personal information

We will provide you with access to the personal and credit-related information we hold about you. You may also request information about any automated decision-making processes that have been applied to your personal information and seek a review or explanation of such decisions, consistent with our privacy obligations. You may request access to any of the personal information we hold about you at any time. We may charge a reasonable fee for our costs of retrieving and supplying the information to you, but we will not charge you for making the request.

Depending on the type of request that you make, we may respond to your request immediately. Otherwise we usually respond to you within seven days of receiving your request. We may need to contact other entities to properly investigate your request.

There may be situations where we are not required to provide you with access to your personal or credit-related personal information – for example, if the information relates to existing or anticipated legal proceedings, if your request is vexatious, or if the information is commercially sensitive. In such cases, we will provide you with a written explanation of the reasons for our decision.

If any of the personal or credit-related personal information we hold about you is incorrect, inaccurate or out-of-date, you can request that we correct the information by contacting us (see 'How to contact us' below).

If appropriate, we will correct the personal information at the time of the request. Otherwise, we will provide an initial response to you within seven days of receiving your request. We will complete our investigation and advise you of the outcome within 30 days, unless you agree to a longer period in writing.

We will take responsibility for managing your correction request, even if the information was provided to us by another organisation. We will liaise directly with relevant third parties, such as CRBs or other finance providers, as necessary, to investigate and resolve your request.

If we refuse to correct personal or credit-related personal information, we will provide you with our reasons for not correcting the information. You may also request that we include a statement with your information that you believe it to be inaccurate, out of date, incomplete, irrelevant or misleading.

Where we correct personal or credit-related information that we have previously disclosed to a CRB or another credit provider, we will also take reasonable steps to notify them of the correction, unless it is impracticable or unlawful to do so.

Security of your personal information

The security of your personal information is important to us. We take reasonable steps to protect it from misuse, interference and loss, and from unauthorised access, modification or disclosure. Some of the ways we do this are:

  • confidentiality requirements of our employees;
  • document storage security policies, such as our Information Security Policy;
  • security measures for access to our systems;
  • only giving access to personal information to a person who is verified to be able to receive that information;
  • control of access to our buildings; and
  • electronic security systems, such as firewalls and data encryption on our website.

These measures also apply to any AI systems or digital technologies we use to process or analyse personal information, and information collected through cookies, web beacons and tracking pixels.

We have a data breach response plan in place to enable us to contain, assess and respond to suspected data breaches in a timely fashion to help mitigate potential harm to affected individuals. In the event of a serious data breach, affected individuals and the Office of the Australian Information Commissioner will be notified.

We also regularly review developments in security and encryption technologies. However, it is important to remember that the use of email and the internet may not always be secure, even with these safeguards in place.

If we transfer personal information to another organisation, for example, as described in 'Transfer of information overseas' above, or store personal information physically or electronically with third party data storage providers, we will take reasonable steps such as by way of the use of contractual arrangements to ensure those organisations and providers take appropriate measures to protect that information and restrict the uses of that information in accordance with the APPs.

When we no longer require your personal information, and we are legally permitted to, we take reasonable steps to destroy or de-identify the information. However, sometimes it is impossible or impractical to completely isolate the information then completely remove all traces of the information, and we may store the information for future use, such as to help resolve disputes between us or assess future applications by you. The same security safeguards will be in place to protect the information, as detailed in this policy.

Business without identifying you

In most circumstances, it will be necessary for us to identify you in order to successfully do business with you. However, where it is lawful and practicable to do so, we will offer you the opportunity of doing business with us without providing us with personal information – for example, if you make general inquiries about interest rates or current promotional offers.

If you choose not to provide certain personal information (for example, your date of birth), we may not be able to provide you with the products and services you require, or the level of service we aim to offer.

Complaints and further information

If you want to know more about the way we manage your personal or credit-related personal information, or you have a complaint about our compliance with the Privacy Act and the CR Code, you can contact us (see 'How to contact us' below).

We will acknowledge your complaint within one business day or as soon as practicable and aim to resolve the complaint as quickly as possible. We will provide you with a decision on your complaint within 30 days.

If you are dissatisfied with our response, you can make a complaint to the Australian Financial Complaints Authority scheme, which can be contacted on 1800 931 678, or the Office of the Australian Information Commissioner who can be contacted on either www.oaic.gov.au or 1300 363 992.

Changes to this policy

We review all of our policies regularly and seek to keep up to date with market expectations. This includes periodically reviewing our use of AI and digital technologies to ensure transparency and compliance with privacy obligations. Technology is constantly changing, as is the law and marketplace practices.

As a consequence, we may change this policy from time to time or as the need arises. We will post any changes to this policy on our website. We will notify you of material changes to this policy via email or your preferred communication method at least 30 days before they take effect.

You can request this policy in an alternative form by contacting us (see 'How to contact us' below).

How to contact us

You can contact us during business hours by:

  • Calling us on 1800 318 396 (toll free).
  • Writing to us at: HomePro Finance Australia Pty Ltd Level 26, 1 Bligh 1 Bligh Street Sydney, NSW 2000, Australia
  • Emailing us at contact@hpfinco.com.au.

This policy was last reviewed in March 2026.

Back to home