AusBlock. Australian Blockchain Association Pty Ltd (“AusBlock”, “ABA”, “we”, “us” or “our”) operating under registration ACN 663 532 241, is committed to protecting your privacy and the security of your personal data. We operate a registered Australian digital exchange service that allows customers to buy, sell, and trade cryptocurrencies and related assets. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you access or use our website and associated services (“Services”). By using our Services, you agree to the terms outlined below.
A. Overview and Applicability
AusBlock respects the privacy of all individuals who engage with our websites, applications, and other platforms (collectively, “services”). We comply with The Privacy Act 1988 (Cth), the Australian Privacy Principles, and additional obligations under the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth), also known as the “AML/CTF Act”. This Privacy Policy applies to all personal data processed by us in Australia or elsewhere in connection with the provision of our services.
Key Points of This Policy
We aim to maintain transparent and accountable data practices. If you have any concerns or queries, you can contact our Data Privacy Officer using the details provided in Part ‘N’ of this Policy.
B. Introduction
At AusBlock, we understand the importance of privacy and data security. This Privacy Policy describes:
We follow strict internal guidelines, legal requirements, and industry best practices to ensure that your data is kept secure and processed in accordance with applicable laws.
C. Our Commitment to Protecting Your Data
We have designed our privacy practices around respect for your personal data:
D. AusBlock’s Privacy Principles
E. How AusBlock Uses Your Data
Definition of Personal Data
“Personal data” refers to information that identifies you or relates to an identifiable individual. This may include:
Types of Personal Data We Collect and Hold
We gather information from you either directly (e.g. during onboarding) or indirectly (e.g. through cookies, blockchain checks, or third-party verifications). The extent of data collected and held may depend on your usage, location, and applicable laws.
Examples of personal data we may collect and hold include, but are not limited to:
We may also collect sensitive or biometric data, such as a ‘self-portrait’, ‘selfie’ or “liveness check,” for identity verification. We only do so with your consent or where permitted by law, and we implement appropriate safeguards to ensure confidentiality.
At Ausblock, we use the Document Verification Service (DVS) to verify a customer’s identity by confirming that the details on their identity document match the government’s records. The DVS can also confirm that the details are still valid and have not expired or been cancelled. We do not give you the option of dealing with us anonymously or under a pseudonym. This is because it is impractical, and, in some circumstances, illegal for Ausblock to deal with individuals who are not identified.
F. Exercising Your Privacy Rights
Our global privacy framework takes inspiration from the European Union’s General Data Protection Regulation (GDPR) and other applicable data protection laws. While specific rights may vary depending on your jurisdiction, you may generally be entitled to:
Please note that AML and sanctions regulations can override certain privacy rights, as we must retain or share data if mandated by law. If an automated decision significantly impacts you, you may request a review involving human intervention.
How to Exercise Your Rights
AusBlock will generally respond to your requests within one month or within the timeframe required by local law.
Data Retention and Deletion
Certain information must be retained to comply with legal and regulatory requirements (e.g., financial transaction data or identity verification details). Where data retention is not mandated, we will honour your request to delete or remove personal data not strictly required for compliance purposes.
To provide more clarity, we generally apply the following guidelines:
G. Automated Decision-Making
We use automated tools to expedite processes like identity verification (KYC). While these tools enhance speed and accuracy, occasional errors may occur (for example, if family members closely resemble each other). If you believe you have been negatively impacted by an automated decision, please use our in-app or webform appeal feature or contact our DPO for assistance with a human review.
H. Data Portability
Where applicable, you may request a copy of your personal data in a commonly used, machine-readable format. You can do this through our Privacy Centre or by contacting our DPO.
I. Withdrawal of Consent
If you have previously consented to our use of your personal data for specific purposes (e.g. cookies for analytics, marketing communications), you may withdraw consent at any time. You can:
Withdrawing consent does not affect the legality of any processing carried out before your withdrawal.
J. Law Enforcement and Legal Requests
We may disclose user data in response to legitimate government, regulatory, or legal requests. Law enforcement authorities, courts, or other government officials may submit their requests directly through our dedicated channels. If you are not a registered user, you can still reach out to us via our website and proceed as a visitor. Relevant information may be shared when necessary and permissible by applicable laws.
K. Updates to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our privacy practices or legal requirements. When we make material changes, we will notify you via email or through prominent notices on our Services and update the “Effective Date” at the top of this Privacy Policy.
L. International Transfers
Although AusBlock primarily processes data within Australia, we may use service providers or store backups in other jurisdictions. When transferring personal data outside of Australia, we ensure that recipients implement safeguards akin to Australian Privacy Principles, often via contractual obligations or recognised data transfer mechanisms. We continue to monitor compliance to maintain the confidentiality, integrity, and security of your data, regardless of its physical location.
If local privacy laws in a recipient jurisdiction offer fewer protections, we limit transfers to what is strictly necessary and use additional measures—such as encryption at rest or strong access controls—to protect your data.
M. Children’s Privacy
Our services are not intended for users under the age of 18. We do not knowingly collect, use, or store personal information from minors. If you suspect a minor has provided us with personal data, kindly notify us so that we can delete such information and terminate the account, except where retention is required by law. Our services may be available to minors through parent/guardian supervision through the use of a Trust.
N. Contact Us or Lodge a Complaint
If you wish to exercise your rights, ask questions, or file a privacy complaint, you may reach out to the AusBlock Data Privacy Officer at:
Email: [email protected]
We will acknowledge your communication within a reasonable timeframe and strive to address your concerns promptly—usually within (30) days. If you remain dissatisfied, you can contact the Office of the Australian Information Commissioner (OAIC) or another relevant regulatory body in your jurisdiction. We encourage you, however, to allow us the opportunity to resolve any concerns first.
AusBlock strives to handle personal information responsibly while delivering secure, user-friendly digital exchange services. We are committed to meeting both Australian and international data protection standards and to upholding best practices for privacy, security, and compliance. If you have any questions about this Policy or wish to explore how AusBlock manages your personal information, please contact us at the details noted above.