Privacy Policy
Last updated: 12 February 2026
This Privacy Policy explains how Velvetstreamerau Advisory Pty Ltd ("Velvetstreamerau", "we", "us") collects, uses, stores and discloses personal information when you visit velvetstreamerau.com or engage our advisory desk. We handle personal information in accordance with the Australian Privacy Principles set out in the Privacy Act 1988 (Cth), the Notifiable Data Breaches scheme, and — where applicable — the Spam Act 2003 (Cth) and the Do Not Call Register Act 2006 (Cth).
1. Who we are and how to reach us
Velvetstreamerau Advisory Pty Ltd (ACN 627 481 053 · ABN 41 627 481 053) is the data controller of the personal information processed through this website. Our advisory desk is based at Level 14, 1 Margaret Street, Sydney NSW 2000, Australia. Our Privacy Officer can be reached at privacy@velvetstreamerau.com or by post at the same address, marked 'Attention: Privacy Officer'.
2. The personal information we collect
We only collect information that is reasonably necessary for our advisory work. That typically includes: your name, email address and phone number; the contents of the messages you send us; broad household information you choose to share during an eligibility review (for example, postcode, number of dependents, whether you receive an existing Centrelink payment); business information you share if you operate as a sole trader or small business; and technical information such as IP address, device type, browser, and how you navigate the site. We do not ask for, and prefer that you do not send us, your tax file number by email — sensitive identifiers are handled through encrypted channels only after engagement.
3. How we use your personal information
We use your information to respond to your enquiries, deliver the advisory services you have requested, prepare eligibility reviews and applications, maintain client records as required by the Tax Agent Services Act 2009 (Cth) and the Corporations Act 2001 (Cth), improve the clarity of this website, comply with our legal obligations, and — only where you have consented — to send you periodic insights about Australian public-support programs. You can withdraw consent for marketing at any time using the unsubscribe link in every email.
4. Cookies, Google Consent Mode v2 and analytics
Until you make a choice in our cookie banner, every non-essential signal is set to 'denied' by Google Consent Mode v2. That means analytics, advertising and personalisation cookies are not activated for your visit. You can review or change your preferences at any time using the 'Cookie settings' link in the footer. Our full cookie disclosures are set out in our Cookie Policy.
5. When we disclose information to third parties
We disclose personal information only where it is necessary to deliver our services and only to recipients who are themselves bound by confidentiality and Australian privacy law. Typical recipients are: cloud document storage providers located within Australia; our professional indemnity insurer (Vero Insurance Ltd) in the unlikely event of a claim; and — only with your express written authority — the Australian Taxation Office, Services Australia or the relevant grant body when we lodge an application on your behalf. We do not sell personal information. We do not share your enquiry messages with marketing networks.
6. Overseas disclosure
Our primary storage and processing is in Australian-hosted infrastructure. A small number of business support tools may store backup logs in the United States or the European Union. Where this happens, we take reasonable steps to ensure the recipient handles personal information in a way consistent with the Australian Privacy Principles.
7. Data security and retention
We hold personal information using a combination of encrypted-at-rest storage, multi-factor authenticated access for staff, segregated client folders, and an internal data-handling policy reviewed annually. Where we are required to retain advisory records under the Tax Agent Services Act 2009 (Cth), we keep them for a minimum of five years after the end of the engagement, and then securely destroy or de-identify the information.
8. Your rights
You may request access to the personal information we hold about you and correction of any inaccurate or out-of-date information at no charge. We will respond within 30 days. If you believe we have mishandled your information, you may complain in writing to our Privacy Officer; if you are not satisfied with our response, you may refer the matter to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au or by phoning 1300 363 992.
9. Children
Our services are intended for adults. We do not knowingly collect personal information from anyone under the age of 16 without the involvement of a parent or guardian.
10. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. The 'last updated' date at the top of this page indicates when the most recent change was made. Material changes affecting existing clients are notified by email at least 30 days in advance.