Privacy Policy
Last updated: May 28, 2025
This Privacy Policy outlines how Moolah Personal Finance Pty Ltd (“Moolah”, “we”, “us”, or “our”) collects, uses, discloses, and protects your personal information when you use our services, including the Moolah mobile application and our membership site (“the Service”).
Your privacy is important to us. We are committed to handling your data responsibly and in compliance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and the Consumer Data Right (CDR) framework.
By using our Services, you consent to the collection, use, and disclosure of your information as outlined in this Privacy Policy.
1. Definitions
Account – A user account created to access our services.
Application – The Moolah mobile application.
CDR – Consumer Data Right, the framework under which we access Open Banking data.
Company – Moolah Personal Finance Pty Ltd, 11 Conti Drive, Mount Duneed VIC 3217, Australia.
Personal Data – Any information relating to an identified or identifiable person.
Service Provider – Any third-party that processes data on our behalf (e.g., Xano, Basiq).
Usage Data – Automatically collected data from your use of the Service.
2. Types of Data Collected
Personal Data
We may collect the following information:
Name
Email address
Phone number
Personal financial information (e.g., account balances, transaction history)
Goals or preferences you enter into the app
Usage Data
Collected automatically, including:
IP address
Browser and device type
Pages visited and time spent
Unique device identifiers
Diagnostic and performance metrics
App Permissions
With your permission, we may access:
Your device’s camera or photo library (for profile pictures or receipt uploads)
Push notification tokens
You may manage these permissions in your device settings.
3. How We Use Your Data
We use your data to:
Provide, maintain, and improve our Services
Create and manage your account
Generate financial insights and forecasting
Communicate with you regarding updates, alerts, or offers
Conduct internal analysis and product development
Comply with legal obligations
We will never sell your personal data to third parties.
4. Open Banking and Consumer Data Right (CDR)
Moolah.so operates under the Consumer Data Right (CDR) framework and accesses banking data as a CDR Representative of Basiq Pty Ltd (ABN 76 601 742 181), an Accredited Data Recipient (ADR).
When you connect a financial account:
You provide explicit consent for us (via Basiq) to access your banking data.
This data is used to help you budget, forecast, and track goals.
Your credentials are handled securely by Basiq and never stored by Moolah.You can manage or revoke consent at any time through your Moolah account settings.
For more information, please review Basiq’s CDR Policy.
5. Service Providers and Hosting
We use trusted third parties to support our Services:
Xano – Provides backend services. Your data is hosted via Google Cloud, with storage restricted to servers located in Australia.
Basiq – Handles secure access to financial institution data via Open Banking.
These providers do not access your data except as needed to deliver our Services securely and in accordance with this policy.
6. Retention of Your Data
We retain your data:
As long as necessary for the purposes outlined above,
In accordance with legal and regulatory obligations,
Unless you request deletion or account closure (see Section 9).
7. Disclosure of Your Personal Data
We will only disclose your personal information to third parties:
With your explicit consent,
Where required by law (e.g., legal orders, regulatory requirements), or
As necessary to provide our Services (e.g., Basiq, Xano).
We take reasonable steps to ensure third-party recipients handle your data securely.
8. Transfer and Storage of Data
Your data is:
Stored on servers located in Australia,
Subject to Australian privacy laws,
Not transferred overseas unless required by law or where you have provided explicit consent.
9. Your Rights Under Australian Privacy Law
Under the Australian Privacy Principles, you have the right to:
Access the personal information we hold about you,
Request correction of inaccurate or outdated data,
Request deletion of your data,
Withdraw consent for data collection at any time,
Make a privacy-related complaint.
To exercise any of these rights, contact us at: ryan@moolah.so
10. Analytics and Tracking Technologies
We may use anonymised tools such as Google Analytics or Meta Pixel to:
Monitor usage patterns,
Improve user experience,
Run advertising or marketing campaigns.
These tools may use cookies or similar technologies. You can manage or disable tracking via your browser or device settings.
11. Security
We implement safeguards including:
Encryption in transit and at rest,
Access controls and logging,
Hosting on secure Australian cloud infrastructure.
While we follow industry best practices, no system is completely secure. Use of our Services is at your own risk.
12. Children’s Privacy
Our Services are not intended for users under 13. We do not knowingly collect data from children. If you believe a child has provided us with data, contact us and we will delete it promptly.
13. Links to Other Websites
Our Services may contain links to third-party websites. We are not responsible for the content or practices of these websites.
14. Changes to This Policy
We may update this Privacy Policy periodically. When we do, we will:
Update the “Last updated” date at the top of the policy,
Notify users of material changes via email or in-app notices.
Continued use of the Service indicates acceptance of the revised policy.
15. Contact Us
If you have questions or concerns about your privacy or this policy:
📧 ryan@moolah.so
You may also contact the Office of the Australian Information Commissioner (OAIC) if you're not satisfied with our response:
🌐 https://www.oaic.gov.au
Last updated: May 28, 2025
This Privacy Policy outlines how Moolah Personal Finance Pty Ltd (“Moolah”, “we”, “us”, or “our”) collects, uses, discloses, and protects your personal information when you use our services, including the Moolah mobile application and our membership site (“the Service”).
Your privacy is important to us. We are committed to handling your data responsibly and in compliance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and the Consumer Data Right (CDR) framework.
By using our Services, you consent to the collection, use, and disclosure of your information as outlined in this Privacy Policy.
1. Definitions
Account – A user account created to access our services.
Application – The Moolah mobile application.
CDR – Consumer Data Right, the framework under which we access Open Banking data.
Company – Moolah Personal Finance Pty Ltd, 11 Conti Drive, Mount Duneed VIC 3217, Australia.
Personal Data – Any information relating to an identified or identifiable person.
Service Provider – Any third-party that processes data on our behalf (e.g., Xano, Basiq).
Usage Data – Automatically collected data from your use of the Service.
2. Types of Data Collected
Personal Data
We may collect the following information:
Name
Email address
Phone number
Personal financial information (e.g., account balances, transaction history)
Goals or preferences you enter into the app
Usage Data
Collected automatically, including:
IP address
Browser and device type
Pages visited and time spent
Unique device identifiers
Diagnostic and performance metrics
App Permissions
With your permission, we may access:
Your device’s camera or photo library (for profile pictures or receipt uploads)
Push notification tokens
You may manage these permissions in your device settings.
3. How We Use Your Data
We use your data to:
Provide, maintain, and improve our Services
Create and manage your account
Generate financial insights and forecasting
Communicate with you regarding updates, alerts, or offers
Conduct internal analysis and product development
Comply with legal obligations
We will never sell your personal data to third parties.
4. Open Banking and Consumer Data Right (CDR)
Moolah.so operates under the Consumer Data Right (CDR) framework and accesses banking data as a CDR Representative of Basiq Pty Ltd (ABN 76 601 742 181), an Accredited Data Recipient (ADR).
When you connect a financial account:
You provide explicit consent for us (via Basiq) to access your banking data.
This data is used to help you budget, forecast, and track goals.
Your credentials are handled securely by Basiq and never stored by Moolah.You can manage or revoke consent at any time through your Moolah account settings.
For more information, please review Basiq’s CDR Policy.
5. Service Providers and Hosting
We use trusted third parties to support our Services:
Xano – Provides backend services. Your data is hosted via Google Cloud, with storage restricted to servers located in Australia.
Basiq – Handles secure access to financial institution data via Open Banking.
These providers do not access your data except as needed to deliver our Services securely and in accordance with this policy.
6. Retention of Your Data
We retain your data:
As long as necessary for the purposes outlined above,
In accordance with legal and regulatory obligations,
Unless you request deletion or account closure (see Section 9).
7. Disclosure of Your Personal Data
We will only disclose your personal information to third parties:
With your explicit consent,
Where required by law (e.g., legal orders, regulatory requirements), or
As necessary to provide our Services (e.g., Basiq, Xano).
We take reasonable steps to ensure third-party recipients handle your data securely.
8. Transfer and Storage of Data
Your data is:
Stored on servers located in Australia,
Subject to Australian privacy laws,
Not transferred overseas unless required by law or where you have provided explicit consent.
9. Your Rights Under Australian Privacy Law
Under the Australian Privacy Principles, you have the right to:
Access the personal information we hold about you,
Request correction of inaccurate or outdated data,
Request deletion of your data,
Withdraw consent for data collection at any time,
Make a privacy-related complaint.
To exercise any of these rights, contact us at: ryan@moolah.so
10. Analytics and Tracking Technologies
We may use anonymised tools such as Google Analytics or Meta Pixel to:
Monitor usage patterns,
Improve user experience,
Run advertising or marketing campaigns.
These tools may use cookies or similar technologies. You can manage or disable tracking via your browser or device settings.
11. Security
We implement safeguards including:
Encryption in transit and at rest,
Access controls and logging,
Hosting on secure Australian cloud infrastructure.
While we follow industry best practices, no system is completely secure. Use of our Services is at your own risk.
12. Children’s Privacy
Our Services are not intended for users under 13. We do not knowingly collect data from children. If you believe a child has provided us with data, contact us and we will delete it promptly.
13. Links to Other Websites
Our Services may contain links to third-party websites. We are not responsible for the content or practices of these websites.
14. Changes to This Policy
We may update this Privacy Policy periodically. When we do, we will:
Update the “Last updated” date at the top of the policy,
Notify users of material changes via email or in-app notices.
Continued use of the Service indicates acceptance of the revised policy.
15. Contact Us
If you have questions or concerns about your privacy or this policy:
📧 ryan@moolah.so
You may also contact the Office of the Australian Information Commissioner (OAIC) if you're not satisfied with our response:
🌐 https://www.oaic.gov.au
