Legal

Privacy Policy

Plain language first, full legal detail underneath. Here's exactly what we collect, why we collect it, and the choices you have over it.

Last updated: July 1, 2026

At a Glance

The four-sentence version

📋

What we collect

Information you give us directly, plus what's generated when you open an account or use our services.

🚫

We don't sell data

Optus Finance has never sold customer data to third parties and never will.

🔒

How it's protected

Encryption, access controls, and monitoring designed to meet federal banking security standards.

Your choices

You can review, correct, limit, or request deletion of your information at any time.

01

Information We Collect

We collect information in three ways: what you give us directly, what we receive from your use of our products, and what comes to us from outside sources like credit bureaus.

CategoryExamplesSource
Identity & contactName, address, date of birth, Social Security number, phone, emailYou, directly
FinancialIncome, account balances, transaction history, credit historyYou, our systems, credit bureaus
Account activityDeposits, withdrawals, transfers, payment patternsOur systems
Device & usageIP address, browser type, login timestamps, app interactionsAutomatically collected
02

How We Use It

We use your information to open and service accounts, process transactions, and meet our obligations as a federally regulated bank. Specifically, we use it to:

  • Verify your identity and evaluate applications for accounts, loans, or other services
  • Process deposits, payments, and transfers accurately and on time
  • Detect and prevent fraud, unauthorized access, and financial crimes
  • Meet reporting and recordkeeping obligations under banking law
  • Improve our products and communicate with you about your accounts

What we don't do: we don't use your account activity to build advertising profiles, and we don't sell it to data brokers.

03

How We Share It

We share information only where it's needed to run your accounts, meet legal requirements, or with your permission — never to sell it.

  • Service providers: companies that process payments, host our systems, or support customer service, bound by contract to protect your data
  • Regulators & law enforcement: when required by subpoena, court order, or banking regulation
  • Credit bureaus: to report account standing as required for lending products
  • Joint account holders or authorized users: as applicable to your specific accounts
04

Cookies & Tracking

Our website and mobile app use cookies and similar technologies to keep you signed in, remember preferences, and understand how our digital tools are used so we can improve them.

Types we use

  • Essential: required for login, security, and core banking functions — these can't be turned off
  • Performance: help us understand how pages are used, in aggregate
  • Preference: remember settings like language or display options

You can control non-essential cookies through your browser settings at any time.

05

Data Security

We maintain administrative, technical, and physical safeguards designed to meet federal banking security standards, including:

  • Encryption of data in transit and at rest
  • Multi-factor authentication for online and mobile access
  • Continuous monitoring for unauthorized access or unusual activity
  • Employee access limited to what's needed for their role, with regular audits

No system is completely immune to risk, and we'll notify you promptly, as required by law, if an incident affects your information.

06

Your Rights & Choices

You have real control over your information. At any time, you can:

Access & review

Request a copy of the personal information we hold about you.

Correct

Ask us to fix inaccurate or outdated information on file.

Limit sharing

Opt out of the non-essential sharing described in this policy.

Request deletion

Ask us to delete information we're not legally required to keep.

To exercise any of these, contact us using the details at the bottom of this page. Some information must be retained to meet banking recordkeeping laws even after a request.

07

Children's Privacy

Our services are intended for individuals who are at least 18 years old, or who hold an account with a parent or legal guardian as co-owner. We do not knowingly collect personal information from children outside of that context. If you believe a child has provided us information without appropriate consent, contact us and we'll address it promptly.

08

Changes to This Policy

We may update this policy as our products, technology, or legal obligations change. When we make material changes, we'll post the updated policy here with a new "last updated" date and, where required, notify you directly. We encourage you to revisit this page periodically.

Questions about your privacy?

Our team can walk you through this policy or help with a specific request.

Contact Us