Retail Finance Intelligence (RFi Group) (ABN 64 121 015 192) respects your privacy and is committed to protecting your personal information that you provide to us. This statement explains our policies and practices regarding the use and disclosure of your personal information by RFi Group. Please note that RFi Group reviews and updates this Privacy Policy from time to time as needed without notice. Therefore, you should review the terms of this policy periodically to make sure that you are aware of how RFi Group collects and uses personal information. By using our website, you consent to the collection and use of your personal information by RFi Group as explained below.

1. Privacy Policy

1.1 Retail Finance Intelligence Limited (UK), together with other members of its group listed in Annex B (RFi, we/us/our) are committed to safeguarding the privacy of our clients and users (you/your) and the Personal information you have entrusted to us. It is important for you to understand what Personal Information we will collect, how we will use it, and who may access it.

1.2  If you are an existing client of ours, further details about how we use your Personal Information may be set out in your client agreement with us.  Further notices highlighting certain uses we wish to make of your Personal Information together with the ability to opt in or out of selected uses may also be provided when we collect Personal Information from you.

1.3  Our websites, which are listed in Annex B (Websites), may contain links to other third-party websites.  If you follow a link to any of those third party websites, please note that they have their own privacy policies and that we do not accept any responsibility or liability for their policies or processing of your Personal Information.  Please check these policies before you submit any Personal Information to such third party websites. 

1.4  This Privacy Policy is intended to explain our privacy practices and covers the following areas:
(a)  What Personal Information about you we may collect
(b)  How we may use your Personal Information
(c)   Who we may share your Personal Information with
(d)   How we protect your Personal Information
(e)   Contacting us & your rights to prevent marketing and to access and update your Personal Information
(f)    Our Cookies Policy

1.5  All underlined terms or ► symbols can be clicked to provide further detail

1.6  If you are based in the European Economic Area during your interactions with us (other than solely for travel purposes), the laws in those countries require us to provide you with additional information about our processing activities. We have included this information in Appendix C

2. Information we may collect about you
2.1  We will collect and process all or some of the following Personal Information about you.

a) Information you provide to us

Personal Information that you provide to us, such as when using the subscription or registration forms on any of our Websites, when we communicate at our events or when purchasing a ticket or product from us. This may include your name, email address, and other contact details. It may also include details of the organisation that you work for and your position within that organisation;

b) Information you provide to our event organisation partners

When you purchase a ticket to one of our events through our third party service providers such as Eventbrite or Unbounce, they will pass the information that you provide them, such as your name and contact details, to us so that we can administer your attendance at our event;

c) Our correspondence

If you contact us, we will typically keep a record of that correspondence;

d) Survey information

We may also ask you to complete surveys that we use for research purposes.  In such circumstances we shall collect the information provided in the completed survey;

e) Device Information

Such as information about your operating system, browser version, software applications, IP address, security status and other device information in order to improve your experience, to protect against fraud and manage risk;

f) Marketing preference information

Details of your marketing preferences (e.g. communication preferences) and information relevant to selecting appropriate products and services to offer you;

g) Website and communication usage

Details of your visits to the websites and information collected through cookies and other tracking technologies including, but not limited to, your IP address and domain name, traffic data, location data, web logs, other communication data, and the resources that you access;

h) Publically available information

We may also collect information about you that is publicly available online, including from your website, social media profile, and other third parties including (www.rfigroup.com; www.globaldigitalbanker.com; www.globaldigitalbankingconferencenz.com.au; www.australianretailbankingsummit.com; www.australianbusinessbankingawards.com; www.leaderslectureseries.com; www.globaldigitalbanking.com; www.australianretailbankingawards.com.au; www.australianmortgageinnovationsummit.com.au; www.canadiansmebankingforum.com; www.campaigns.rfigroup.com; www.australian-lending-awards.com.au; www.globaldigitalbankinguae.com; www.businessbankinguk.com; www.arcaconference.com.au; www.canadianpaymentsforum.com; www.globaldigitalbankingau.com; www.australianinsuranceawards.com; www.australianinsurancesummit.com.au; www.globaldigitalbankingasia.com; www.globaldigitalbankingcanada.com; www.australianbusinessbankingsummit.com.au; www.innovationbeyonddigital.com.au)

3. Uses made of your Personal Information
3.1 We may use your Personal Information for one or more of the following purposes.

a) To provide and manage products and services you have requested

To administer our services (including organising our events and providing you with our publications), including to carry out our obligations arising from any agreements entered into between you and us, or to notify you about changes to our products and services;

b) To communicate with you regarding products and services that may be of interest

To provide you with updates and offers, where you have chosen to receive these. We may also use your information for marketing our [own and our selected business partners’] products and services to you by privacy@rfigroup.com Where required by law, we will ask for your consent at the time we collect your data to conduct any of these types of marketing. We will provide an option to unsubscribe or opt-out of further communication on any electronic marketing communication sent to you or you may opt out at any time as described in paragraph 6.1 below

c) To understand our clients and to develop and tailor our products and services

We may analyse the Personal Information we hold in order to better understand your usage patterns, preferences and marketing requirements, as well as to better understand our business and develop our products and services;

d) To monitor certain activities

To monitor queries and transactions to ensure service quality, compliance with procedures, terms of use and policies, and to combat fraud;

e) To inform you of changes

To notify you about changes to our services and products;

f) To ensure website content is relevant

To ensure that content from our websites is presented in the most effective manner for you and for your device, which may include passing your data to business partners, suppliers and/or service providers;

g) To reorganise or make changes to our business

In the event that we: (i) are subject to negotiations for the sale of our business or part thereof to a third party; (ii) are sold to a third party; or (iii) undergo a re-organisation, we may need to transfer some or all of your Personal Information to the relevant third party (or its advisors) as part of any due diligence process for the purpose of analysing any proposed sale or re-organisation. We may also need to transfer your Personal Information to that re-organised entity or third party after the sale or reorganisation for them to use for the same purposes as set out in this policy; and

h) In connection with legal or regulatory obligations

We may process your Personal Information to comply with our regulatory requirements or dialogue with regulators as applicable which may include disclosing your Personal Information to third parties, the court service and/or regulators or law enforcement agencies  in  connection  with  enquiries, proceedings or investigations by such parties anywhere in the world or where compelled to do so.  Where permitted, we will direct any such request to you or notify you before responding unless to do so would prejudice the prevention or detection of a crime.

4. Sharing your Personal Information
4.1          We will only use or disclose your Personal Information for the purpose(s) it was collected and as otherwise identified in this Privacy Policy. In addition to the disclosures mentioned above, we may share your Personal Information as follows.

4.2 Sharing outside the RFi group:

Personal Information may be provided to third parties, including anti-fraud organisations, legal, regulatory or law enforcement authorities in cases of suspected criminal activity or contravention of law, for the detection and prevention of fraud, or when required to satisfy the legal or regulatory requirements of governments, regulatory authorities or other self-regulatory organizations, or to comply with a court order or for the protection of our assets (for example, collection of overdue accounts).

4.3 Sharing within the RFi group:

We may share your Personal Information within the RFi group for marketing purposes, for legal and regulatory purposes, to manage business risks, to perform analytics, to ensure we have correct or up to date information about you (such as your current address or date of birth) and to better manage your relationship with us.

4.4 Business sale or reorganisation:

Over time, we may buy new businesses or sell some of our businesses. Accordingly, Personal Information associated with any accounts, products or services of the business being purchased or sold will be reviewed as part of the due diligence process and subsequently transferred as a business asset to the new business owner. We may also transfer Personal Information as part of a corporate reorganisation or other change in corporate control.

4.5 Sub-contractors and agents:

We may use affiliates or other companies to provide services on our behalf such as data processing, account administration, fraud prevention and detection, analytics and marketing. In particular, we use Eventbrite, Unbounce, and other event organisation companies to assist in administering our events, ticketing, and payment processing functions. Such companies will be given only the Personal Information needed to perform those services and we do not authorise them to use or disclose Personal Information for their own marketing or other purposes. We have contracts in place holding these companies to the same standards of confidentiality by which we are governed.

5. Security and retention of your Personal information
5.1          We use physical, electronic and procedural safeguards to protect against unauthorized use, access, modification, destruction, disclosure, loss or theft of your Personal Information in our custody or control.
5.2          We have agreements and controls in place with third party service providers requiring that any information we provide to them must be safeguarded and used only for the purpose of providing the service we have requested the company to perform.

Security over the internet
5.3          No data transmission over the Internet or website can be guaranteed to be secure from intrusion.  However, we maintain commercially reasonable physical, electronic and procedural safeguards to protect your Personal Information in accordance with data protection legislative requirements.
5.4          All information you provide to us is stored on our or our subcontractors’ secure servers and accessed and used subject to our security policies and standards.  Where we have given you (or where you have chosen) a password which enables you to access certain parts of our websites, you are responsible for keeping this password confidential and for complying with any other security procedures that we notify you of. We ask you not to share a password with anyone.

Retention of  Your Personal Information
5.5             Our retention periods for Personal Information are based on business needs and legal requirements. We retain your Personal Information for as long as is necessary for the processing purpose(s) for which the information was collected, and any other permissible, related purpose. For example, we may retain certain transaction details and correspondence until the time limit for claims arising from the transaction has expired, or to comply with regulatory requirements regarding the retention of such data. When Personal Information is no longer needed, we either irreversibly anonymise the data (and we may further retain and use the anonymised information) or securely destroy the data.

6. Your rights & contacting us
Right to opt out of marketing
6.1    If you prefer not to receive our Direct Marketing Communications and/or not have your Personal Information shared among the members of the RFi group for the purpose of marketing, you can have your name deleted from our Direct Marketing lists by clicking the unsubscribe link in the footer of the email that you receive, by visiting our Preference Centre or by contacting us below.

Updating Information
6.2       We will use reasonable endeavours to ensure that your Personal Information is accurate. In order to assist us with this, you should notify us of any changes to the Personal Information that you have provided to us by contacting us as set out in the Contacting Us section below

Contacting Us
6.3          If you have any questions or concerns about our privacy practices, the privacy of your Personal Information or you want to change your privacy preferences, please let us know.

6.4  To manage your email preferences, please visit our Preference Centre. You may also get in touch by clicking here to fill in our form to contact our privacy team, or by contacting them using the details below:

Retail Finance Intelligence Limited (UK)
2nd Floor, Saxon House
48 Southwark Street
London SE1 1UN
United Kingdom
privacy@rfigroup.com

7. Cookies Policy
7.1 We use cookies on the websites.  To find out more about how we use cookies, please see our Cookies Policy

8. Changes to our Privacy Policy and/or Cookies Policy
8.1             We may change the content of our websites and how we use cookies and consequently, our Privacy Policy and our Cookie Policy may change from time to time in the future.  If we change this Privacy Policy or our Cookies Policy, we will update the date it was last changed below.  If these changes are material, we will indicate this clearly on our Website.

8.2            This Privacy Policy was last updated on 21-6-2018.

ANNEX A: Definitions
Direct Marketing
is our communication with you such as mail, telemarketing or email, using your contact information, to inform you about products and services that we think may be of interest and value to you. This does not include communications regarding products or services that you currently have, including improved ways to use the products, or additional features of the products as well as transactional information.

Personal Information is information about an identifiable individual. It includes information that you have provided to us or was collected by us from other sources. It may include details such as your name and address, age and gender, personal financial records, identification numbers including your Social Insurance Number and personal references,  to the extent permitted by local laws.

ANNEX B: RFi Group Members and Websites

RFi Group Members:

RFi Group LLC (USA)

One Embarcadero Center

Suite 500

San Francisco, CA

94111, USA

Contact: Cyrielle Chiron

T: +1 416 644 8524

RFi Group Holdings Limited (Canada)

100 King Street

West Suite 5600

Toronto, Ontario

M5X 1C9

Contact: Cyrielle Chiron

T: +1 416 644 8524

Retail Finance Intelligence Limited (UK)

2nd Floor, Saxon House

48 Southwark Street

London SE1 1UN

United Kingdom

Contact: Victoria Bateman

T: +44 203 862 2166

RFi Pte Ltd (Singapore)

Level 12

9 Battery Road

MYP Centre

Singapore 049910

Contact: Gerald Ferguson

T: +65 6597 7028

RFi Group Limited (Hong Kong)

Unit 740, 2 Exchange Square

8 Connaught Place

Hong Kong

Contact: Cyrielle Chiron

T: +852 2297 2427

Retail Finance Intelligence Pty Ltd (Australia)

Level 12

70 Phillip Street

Sydney NSW 2000      

Contact: Simon Yeandle

T: +61 2 9126 2600

Asia-Pacific Banking & Finance Pty Ltd (Australia)

Level 12

70 Phillip Street

Sydney NSW 2000

Contact: Simon Yeandle

T: +61 2 9126 2600

RFi Websites:

www.rfigroup.com;
www.globaldigitalbanker.com;
www.globaldigitalbankingconferencenz.com.au;
www.australianretailbankingsummit.com;
www.australianbusinessbankingawards.com;
www.leaderslectureseries.com;
www.globaldigitalbanking.com;
www.australianretailbankingawards.com.au;
www.australianmortgageinnovationsummit.com.au;
www.canadiansmebankingforum.com;
www.campaigns.rfigroup.com;
www.australian-lending-awards.com.au;
www.globaldigitalbankinguae.com;
www.businessbankinguk.com;
www.arcaconference.com.au;
www.canadianpaymentsforum.com;
www.globaldigitalbankingau.com;
www.australianinsuranceawards.com;
www.australianinsurancesummit.com.au;
www.globaldigitalbankingasia.com;
www.globaldigitalbankingcanada.com;
www.australianbusinessbankingsummit.com.au;
www.innovationbeyonddigital.com.au

ANNEX C: European Appendix
This Appendix applies if you are based in the European Economic Area (the EEA) during your interactions with us (other than solely for travel purposes).

It sets out the additional information that we are required to provide you under European data protection law (EU DP Law), including information about rights that you have in relation to your Personal Information that we handle.

1.          Why we collect your data, and who we disclose it to
1.1   Under EU DP Law, we are required to inform you of the legal basis or “ground” for our use of your Personal Information. Below we set out the grounds that we use as the basis for our use of your Personal Information for each of the purposes mentioned in section 3 of the Privacy Policy. You can find an explanation of each of the grounds relied on by

EU use bases table

Processing activity

Reference to Privacy Policy

Use bases

The purpose for which we collect and use Personal Information

To provide and manage products and services you have requested

3.2(a)

  • contract performance
  • consent
  • legitimate interests (to enable us to perform our obligations and provide our services to you or to notify you about changes to our services)

To communicate with you regarding products and services that may be of interest

3.2(b)

  • legitimate interests (to keep you updated with news in relation to our products and services)
  • consent

To understand our clients and to develop and tailor our products and services

3.2(c)

  • legitimate interests (to ensure the quality and legality of our services and to allow us to improve our services)

To monitor certain activities

3.2(d)

  • contract performance
  • legal obligations
  • legal claims
  • legitimate interests (to ensure that the quality and legality of our services)

To inform you of changes

3.2(e)

  • legitimate interests (to notify you about changes to our service)

To ensure website content is relevant

3.2(f)

  • legitimate interests (to allow us to provide you with the content and services on the websites)

Processing activity

Reference to Privacy Policy

Use bases

The purpose for which we collect and use Personal Information

To provide and manage products and services you have requested

3.2(a)

  • contract performance
  • consent
  • legitimate interests (to enable us to perform our obligations and provide our services to you or to notify you about changes to our services)

To communicate with you regarding products and services that may be of interest

3.2(b)

  • legitimate interests (to keep you updated with news in relation to our products and services)
  • consent

To understand our clients and to develop and tailor our products and services

3.2(c)

  • legitimate interests (to ensure the quality and legality of our services and to allow us to improve our services)

To monitor certain activities

3.2(d)

  • contract performance
  • legal obligations
  • legal claims
  • legitimate interests (to ensure that the quality and legality of our services)

To inform you of changes

3.2(e)

  • legitimate interests (to notify you about changes to our service)

To ensure website content is relevant

3.2(f)

  • legitimate interests (to allow us to provide you with the content and services on the websites)

To reorganise or make changes to our business

3.2(g)

  • legitimate interests (in order to allow us to change our business)

In connection with legal or regulatory obligations

3.2(h)

  • legal obligations
  • legal claims
  • legitimate interests (to cooperate with law enforcement and regulatory authorities)

2. Use bases
These are the principal legal grounds that justify our use of your information

Consent: where you have consented to our use of your information (you will have been presented with consent language in relation to any such use and may withdraw your consent by visiting our Preference Centre or contacting us as set out in the Contacting Us section of the main Privacy Policy.

Contract performance: where your information is necessary to enter into or perform our contract with you.

Legal obligation: where we need to use your information to comply with our legal obligations.

Legitimate interests: where we use your information to achieve a legitimate interest and our reasons for using it outweigh any prejudice to your data protection rights.

Legal claims: where your information is necessary for us to defend, prosecute or make a claim against you, us or a third party.

3.  Export outside the EEA
3.1          Your Personal Information may be accessed by staff, suppliers or other persons in, transferred to, and/or stored at, a destination outside the EEA in which data protection laws may be of a lower standard than in the EEA.
3.2          Where we transfer Personal Information from inside the EEA to outside the EEA, we may be required to take specific additional measures to safeguard the relevant Personal Information.  Certain countries outside the EEA have been approved by the European Commission as providing essentially equivalent protections to EEA data protection laws and therefore no additional safeguards are required to export Personal Information to these jurisdictions. In countries which have not had these approvals (see the full list here http://ec.europa.eu/justice/data-protection/international-transfers/adequacy/index_en.htm), we will establish legal grounds justifying such transfer, such as EU Commission-approved model contractual clauses, or other legal grounds permitted by applicable EU DP Law.
3.3          Please contact us as set out in the Contact Us section of the main Privacy Policy if you would like to see a copy of the specific safeguards applied to the export of your Personal Information.

4.         Your additional rights
4.1    Under EU DP Law, you may have the following additional rights in relation to your Personal Information to those set out in the main Privacy Policy. Under certain conditions, you may have the right to:
(a)        require us to provide you with further details on the use we make of your information;
(b)        require us to provide you with a copy of information that you have provided to us;
(c)        require us to update any inaccuracies in the Personal Information we hold (please see paragraph

6.2 of the main Privacy Policy);
(d)        require us to transmit the Personal Information that you provided to use to a third party electronically;
(e)        require us to delete any Personal Information we no longer have a lawful ground to use;
(f)         where processing is based on consent, withdraw your consent so that we stop that particular processing;
(g)        object to any processing based on the legitimate interests ground unless our reasons for undertaking that processing outweigh any prejudice to your data protection rights;
(h)        object to Direct Marketing (please see paragraph 6.1 of the main Privacy Policy); and
(i)         restrict how we use your information whilst a complaint is being investigated.

4.2          Your exercise of these rights is subject to certain exemptions to safeguard the public interest (e.g. the prevention or detection of crime) and our interests (e.g. the maintenance of legal privilege). If you exercise any of these rights we will check your entitlement and respond in most cases within a month.

4.3           If you are not satisfied with our use of your Personal Information or our response to any exercise of these rights you have the right to complain to the data protection regulator in your country or the country where RFi’s EU Representative is located.

5. Contacting Us

5.1    RFi’s EU Representative is:
Retail Finance Intelligence Limited (UK)
Attention: Adelle Grisaffe
2nd Floor, Saxon House
48 Southwark Street
London SE1 1UN
United Kingdom
privacy@rfigroup.com 

5.2    If after contacting us you do not feel that we have adequately addressed your concerns, you may contact the data protection regulator in your country (listed here: http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080).