Privacy Policy — Financial Literacy Australia
Legal entity: Financial Literacy Australia (ABN: 87 671 583 387)
("Financial Literacy Australia", "we", "us" or "our")
1. Who this Policy applies to
This Policy applies to participants, parents/guardians and carers, support coordinators and plan managers, website visitors, and any person who engages with our NDIS‑related financial‑literacy education services (the Services).
We provide education and training only. We are not affiliated with or endorsed by the National Disability Insurance Scheme (NDIS) and we are not a registered NDIS provider. Our Services are general educational content and not personal or professional advice.
2. Our commitment
We handle personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Where the APPs do not strictly apply to us, we choose to follow them as a matter of good practice. We also comply with the Notifiable Data Breaches (NDB) scheme where applicable.
3. What we collect (only what’s needed)
We collect the minimum information needed to deliver the Services, such as:
Identity & contact: name, preferred name, email, phone, preferred contact method.
Enrolment details: program(s) selected, cohort/session dates, delivery mode.
NDIS‑related details: plan‑management status (self‑managed or plan‑managed), relevant funding category (e.g., Core or Capacity Building), high‑level goals and learning objectives as voluntarily provided by the participant, and the contact details of any authorised representative (e.g., plan manager or support coordinator). We do not ask for MyGov/NDIS portal logins.
Learning data: app usage, lesson/module completion, question responses, support requests and help tickets, attendance, and scheduling information.
Communications: emails, messages, and call notes related to delivering the program; appointment reminders you opt into; and your preferences (e.g., consent choices, marketing opt‑in/opt‑out).
Payment & invoices: billing contact (e.g., plan manager details), invoice and payment status. For self‑funded purchases we may collect basic payment details via our payment processor (we do not collect or store card numbers ourselves).
Website & device data: cookies and analytics (see Section 10).
Sensitive information (e.g., health information) is not required for our educational Services. If you choose to provide sensitive information, we will only collect, use and disclose it with your consent (or as otherwise permitted by law) and we will treat it with additional care.
4. How we collect information
Directly from you when you enrol, complete lessons, contact us, or participate in sessions.
From your authorised representative, such as your plan manager, support coordinator, parent/guardian or other nominated support person.
From our service providers that enable delivery (e.g., learning platforms and email/scheduling tools) where permitted by their terms and privacy notices and your settings.
We will tell you at the point of collection if information is required (for example, to enrol you) or optional.
5. Why we collect and use information
We collect and use personal information to:
Deliver and support the Services (enrolment, access, content delivery, educational assistance, scheduling, and reasonable non‑face‑to‑face support integral to the program).
Administer accounts and invoices (including issuing invoices to self‑managed and plan‑managed participants).
Communicate with you and your authorised representative (e.g., service information, appointment confirmations and reminders you opt into, service changes, and important notices).
Improve our content and user experience (e.g., de‑identified analytics and feedback).
Comply with law, manage risk, detect misuse or fraud, and handle complaints and disputes.
Direct marketing: where permitted, we may send information about new programs or updates; you can opt out at any time (see Section 11).
We do not use personal information to provide personal financial, medical, psychological, legal, or coaching services.
6. Disclosing information to others
We disclose personal information only as needed to deliver the Services or as required by law, including to:
Your authorised representatives (e.g., plan managers and support coordinators) for enrolment, invoice/payment, and service coordination purposes.
Service providers that help us operate (e.g., learning platform providers such as EdApp or equivalent, email/SMS tools, cloud hosting, analytics, video‑conferencing, and IT/security support). We require these providers to protect personal information and use it only for the contracted purpose.
Professional advisers (e.g., accountants and lawyers) and insurers where reasonably necessary.
Government regulators or law enforcement where required or authorised by law (e.g., tax law, privacy law, or consumer law). We do not contact the NDIA about your plan unless you ask us to, or we are legally required to.
We do not sell personal information.
7. Children, capacity and representatives
Where a participant is under 18 or has a nominated representative, we will accept instructions and collect information through a parent/guardian or other authorised person. We may take steps to verify authority. Participants can update their nominated contacts at any time.
8. Overseas disclosures
Some service providers (for example, learning platforms or cloud/email providers) may process or store personal information in other countries. Where that occurs, we take reasonable steps to ensure the recipient protects the information consistently with Australian privacy standards (e.g., contractual obligations). By using the Services, you consent to such overseas disclosures.
9. Security
We implement administrative, technical and physical safeguards designed to protect personal information from misuse, interference, loss, and unauthorised access, modification or disclosure. Despite our efforts, no method is 100% secure. If we become aware of an eligible data breach, we will assess and notify affected individuals and the OAIC where required by the NDB scheme.
10. Cookies and analytics
We use cookies and similar technologies to operate our websites/apps, remember preferences, and understand how our content is used. You can control cookies through your browser settings; however, essential cookies are required for the site/app to function. We may use aggregated, de‑identified analytics to improve the Services.
11. Direct marketing
We may send educational updates, invitations and program information where permitted by law. You can opt out at any time using the unsubscribe link in the message or by contacting us. Opting out of marketing does not affect essential service communications (e.g., enrolment details, invoices, or service notices).
12. Access and correction
You can request access to your personal information or ask us to correct it if it is inaccurate, out of date, incomplete, irrelevant or misleading. We will respond within a reasonable time. If we refuse a request, we will tell you why (unless it is unreasonable to do so) and how to complain.
13. Retention
We keep personal information only for as long as needed for the purposes set out in this Policy or as required by law (e.g., tax and record‑keeping requirements). When no longer needed, we take reasonable steps to de‑identify or securely destroy it.
14. Complaints
If you have a privacy concern or complaint, please contact us (details below). We will investigate and respond. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC). For service‑related complaints (not privacy), you may also contact the NDIS Quality and Safeguards Commission.
15. Changes to this Policy
We may update this Policy from time to time. The latest version will be available on our website and will state the effective date. Material changes will be highlighted or notified where appropriate.
16. Contact us
Financial Literacy Australia
Email: mentors@flaus.com.au
Website: flaus.com.au
Telephone: 1800 FLAUS 1