Catena Group Privacy Policy v1.0 as at 24 July 2025
Entity identification
Catena Digital Pty Ltd (ACN 669 901 302) and its parent company Catena Digital Holdings Pty Ltd (ACN 670 788 324) (together, Catena Group) collect and manage personal information as described below. Contact us at info@catenadigital.com.au or Level 37, 259 George St, Sydney NSW 2000 for privacy enquiries.
Types of data collected
We collect the following types of personal information, with examples:
Collection methods
We collect personal information:
If we receive unsolicited personal information, we will destroy or de-identify it unless it is required for our functions or activities.
Cookies and Website Tracking
Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyse website traffic, and assist in security measures. A cookie is a small data file stored on your device that allows a website to recognise repeat users.
We may collect information such as your IP address, browser type, operating system, pages visited, and access times to improve the security, performance, and usability of our website.
You can manage or disable cookies through your browser settings. Please note that disabling cookies may impact the full functionality and user experience of our website.
Providing Information About Others
Where you provide personal information about another individual to us (for example, by submitting someone else's contact details through a form), you must ensure that the individual is aware of this Privacy Policy, understands its content, and consents to you providing their information to us.
Where required, we will provide specific collection notices or obtain your consent at the point your information is gathered. These notices may reference or link to this Privacy Policy to explain how your data will be handled.
Purpose of collection
We collect, hold, use and disclose personal information to:
We will not collect, use, or disclose your government identifiers (e.g., Medicare numbers) unless authorised by law.
If you choose not to provide your personal information, we may be unable to provide you with certain services or respond to specific enquiries.
Sensitive information
We only collect sensitive information where it is directly relevant to our services and with your explicit consent. "Sensitive information" includes information about your health, racial or ethnic origin, political opinions, religious beliefs, trade or professional memberships, sexual orientation, criminal record, genetic or biometric information, and similar categories defined under the Privacy Act 1988 (Cth).
Direct Marketing & Marketing opt-out
In addition to the purposes above, we may use your personal information to send marketing communications about our services where you would reasonably expect us to do so, or where you have provided consent. You may opt out of receiving direct marketing communications at any time by contacting unsubscribe@catenadigital.com.au or following the instructions in our communications. We action unsubscribe requests within 5 business days.
Data sharing
We may share your personal information (including your sensitive information) with:
We require that overseas recipients comply with privacy standards equivalent to the Australian Privacy Principles.
Overseas transfers
We may disclose personal information (including your sensitive information) to overseas recipients for the purposes notes above, including Sumsub and other service providers involved in identity verification and compliance operations. Data may be transferred to and processed by our swervices providers overseas, which are likely to be located in Germany, the United Kingdom, the United States, Cyprus, Singapore, and the United Arab Emirates (UAE). Where data is transferred outside Australia, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or equivalent protections. We rely on Sumsub’s compliance with GDPR and other local data protection laws to ensure your information remains protected.
Data storage & security
We take reasonable steps to protect personal information from misuse, interference, and loss, and from unauthorised access, modification, or disclosure: e.g.
Data retention
We retain personal information for 7 years after you cease using our services, as required by the AML-CTF Act. After this period, if it is no longer needed, we will take reasonable steps to securely destroy or de-identify the information, including secure erasure of digital records and shredding of physical documents.
Access/ correction rights
To access or correct the personal information we hold about you, please contact our Privacy Officer by emailing privacy@catenadigital.com.au. You may be asked to verify your identity before access is granted or a correction is made. We aim to respond to requests within 30 days. If your request is complex, we may charge a reasonable administrative fee, which we will notify you of in advance.
We are not required to provide you with access to your personal information in certain limited circumstances, for example where a Court or Tribunal order requires us to deny access. There are also certain circumstances in which we are not required to correct your personal information – for example, where we are not satisfied that the information we have on record for you is inaccurate, out-of-date, incomplete, irrelevant or misleading.
However, if we refuse to give you access to or to correct your personal information, we will give you a notice explaining our reasons (except to the extent it would be unreasonable or unlawful for us to do so) and provide you with information on how you can complain about our refusal.
Complaints process
Privacy complaints should be directed to privacy@catenadigital.com.au
If unsatisfied with our response, you may contact the Australian Financial Complaints Authority
GPO Box 3
Melbourne VIC 3001
Phone: 1800 931 678 (free call)
Email: info@afca.org.au
Online: www.afca.org.au.
Under the Privacy Act you may complain to the Office of the Australian Information Commissioner (OAIC) if you have raised a complaint with us and you’re not happy with our response or have concerns about the way we handle your personal information:
GPO Box 5288
Sydney NSW 2001
Phone: 1300 363 992
Online: www.oaic.gov.au
Online enquiries: Enquiry form
Policy updates
We may update this Privacy Policy from time to time to reflect changes to our practices, regulatory requirements, or for other operational reasons. The most current version will always be available at Catena Privacy . Where material changes are made, we will notify you by placing a prominent notice on our website.
This Privacy Policy was published 24 July 2025.