.png)
Privacy Policy
WhiteLight AML | Privacy Policy
WhiteLight AML ("we," "our," or "us") is committed to safeguarding the privacy of personal
information collected in accordance with the Australian Privacy Act 1988 (Cth), the New Zealand
Privacy Act 2020, and other applicable privacy laws and regulations. This Privacy Policy outlines
how we collect, use, store and disclose personal information when providing Anti-Money Laundering
and Counter-Terrorism Financing (AML/CTF) compliance services to Australian and New Zealand
entities.
​
Scope of This Privacy Policy
​
This Privacy Policy applies to personal information collected by WhiteLight AML, including through
our website, customer portals, forms and interactions with clients, partners and regulatory bodies. By
engaging with WhiteLight AML, you consent to the collection, use and disclosure of personal
information as described in this policy.
​
Types of Personal Information We Collect
​
We may collect personal information from individuals (including our clients' customers) as part of our
AML/CTF compliance services. The types of personal information we collect may include:
​
• Name
• Date of birth
• Contact details (such as address, phone number, and email)
• Identification documents (e.g., passports, driver’s licenses, etc.)
• Financial information (such as bank account details)
• Employment information
• Transaction records and histories
• Other relevant information required for AML/CTF compliance
​
We collect personal information in compliance with the "Know Your Customer" (KYC) and "Customer
Due Diligence" (CDD) requirements imposed by Australian and New Zealand AML/CTF legislation.
​
How We Collect Personal Information
​
WhiteLight AML collects personal information in several ways, including:
• Directly from clients or their customers via forms or documentation required for compliance.
• From third-party service providers, such as identity verification platforms.
• Through interactions with regulatory authorities, where required.
• Automatically through our website, client portals and communication systems (e.g.,
metadata or usage data).
​
Use of Personal Information
​
We use personal information primarily to:
​
• Verify identity and conduct due diligence as part of AML/CTF obligations.
• Monitor, analyse, and report suspicious transactions to the appropriate regulatory
authorities, such as AUSTRAC (Australia) and the FIU (New Zealand).
• Ensure compliance with all applicable legal and regulatory frameworks.
• Maintain accurate client records for our internal processes.
• Improve and enhance our services.
​
Disclosure of Personal Information
​
WhiteLight AML may disclose personal information to:
​
• Relevant government and regulatory bodies (e.g., AUSTRAC, the New Zealand Financial
Intelligence Unit) for the purposes of complying with AML/CTF reporting obligations.
• Third-party service providers engaged in KYC, customer screening and data storage
processes, where necessary.
• Legal or professional advisers in the event of a legal or regulatory inquiry.
• Any other third parties where consent is provided or where disclosure is permitted by law.
​
We will not disclose personal information for marketing or unrelated purposes without explicit
consent.
​
Data Security
​
WhiteLight AML is committed to ensuring the security of personal information. We use technical and
organisational measures to protect personal information from unauthorised access, modification,
disclosure, or destruction. These measures include:
​
• Secure storage and transmission of personal information using encryption technologies.
• Regular audits and reviews of our security practices.
• Strict access controls limiting access to authorised personnel only.
​
In the event of a data breach, we will take appropriate steps to notify affected individuals and the
relevant authorities in accordance with the Australian Notifiable Data Breaches Scheme and New
Zealand’s privacy breach notification requirements.
​
Cross-Border Transfers of Personal Information
​
As part of providing our services, WhiteLight AML may need to transfer personal information to
entities located in other countries, including for third-party verification services. Where personal
information is transferred across borders, we ensure that the recipient country has adequate privacy
protections in place or that other mechanisms are used to safeguard the data.
​
Access and Correction of Personal Information
​
Individuals have the right to access and correct personal information held by WhiteLight AML. If you
wish to access or correct any personal information we hold, please contact us using the details
below. We will respond to requests in a timely manner, and where appropriate, update or correct the
information.
​
Retention of Personal Information
​
WhiteLight AML retains personal information only for as long as necessary to fulfill the purposes for
which it was collected and to comply with legal and regulatory obligations. We securely destroy or
de-identify personal information when it is no longer required.
​
Your Privacy Rights
​
Under Australian and New Zealand privacy legislation, individuals have the right to:
​
• Access personal information we hold about them.
• Request correction of inaccurate or outdated information.
• Complain about the way we have handled personal information.
​
We are committed to addressing any privacy complaints in a timely and transparent manner. Please
contact us if you wish to exercise any of your privacy rights.
​
Updates to This Privacy Policy
​
We may update this Privacy Policy from time to time to reflect changes in legal requirements or our
business practices. Any changes will be posted on our website, and where significant changes are
made, we will notify our clients directly.
​
Contact Us
If you have any questions or concerns regarding this Privacy Policy, or if you wish to make a privacy
complaint, please contact us at:
​
WhiteLight AML
Email: info@whitelightaml.com.au
Phone: +612 8075 9900
Website: https://www.whitelightaml.com.au