Privacy Policy

Effective date: September 29th, 2025

At iTracer, your trust is our highest priority. We are an unclaimed money refund agency that helps individuals locate and reclaim funds that are rightfully theirs. To deliver this service, we must process certain personal information. This Privacy Policy explains what data we collect, how it is used, how we protect it, and what rights you have. Our practices comply with international data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), the Australian Privacy Act, and other relevant legislation.

1. How We Collect and Use Personal Data

We collect personal data when you interact with our services, including when you submit forms, communicate with us, or authorise us to conduct searches for unclaimed funds on your behalf. The types of data we may collect include your name, contact details, date of birth, identification documents, and banking information necessary to complete refund transactions. This data is used strictly to verify your identity, locate unclaimed funds, process claims, and maintain accurate records. We also use aggregated, anonymised information to improve our services.

2. Data Sharing with Third Parties

We may share your personal data with trusted third parties where necessary to provide our services. For example, we may share information with government agencies, financial institutions, and regulatory bodies to confirm entitlement to funds. We also use reputable service providers for secure cloud hosting, payment processing, and identity verification. These providers are bound by strict confidentiality and data protection obligations. iTracer never sells your personal data to third parties.

3. User Rights

You have the right to access the personal data we hold about you, request corrections, and in certain cases request deletion. You may also exercise your right to data portability, which allows you to receive your personal data in a structured, commonly used format. If you are in the European Union, you have additional rights under the GDPR, including the right to object to certain processing activities and the right to restrict processing. California residents may exercise rights under the CCPA, including the right to know what personal data is collected and the right to request deletion. Requests to exercise these rights can be made by contacting us via email.

4. Security Measures

We use industry-leading security measures to safeguard your data. All personal information is encrypted both in transit and at rest using AES-256 encryption standards. Access to sensitive data is restricted to authorised personnel only, and all staff undergo regular privacy and security training. Our systems are protected by multi-factor authentication, firewalls, and continuous monitoring to detect potential threats.

5. International Data Transfers

As a global service provider, we may transfer personal data outside your home country. When doing so, we rely on lawful mechanisms such as the Standard Contractual Clauses (SCCs) approved by the European Commission for international transfers, or equivalent frameworks where applicable. These mechanisms ensure that your data receives a level of protection consistent with applicable laws.

6. Data Retention Policies

We retain personal data only for as long as necessary to fulfil the purposes described in this Privacy Policy and comply with legal or regulatory obligations. Generally, identification and claim records are retained for seven years after the completion of a refund transaction, in line with financial record-keeping requirements. After this period, data is securely deleted or anonymised.

7. Privacy Considerations for Minors

Our services are not directed toward individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected data from a minor without proper parental consent, we will take immediate steps to delete it.

7. How to Exercise Your Rights or Make a Complaint

To exercise your rights or raise a concern about how your data is being handled, please contact our Privacy Officer at [insert contact details]. You also have the right to lodge a complaint with your local data protection authority, such as the Office of the Australian Information Commissioner (OAIC) for Australian residents, the Information Commissioner’s Office (ICO) in the UK, or your relevant supervisory authority in the EU.

7. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in law or our operations. When we make material changes, we will notify you through our website or direct communication, and we will indicate the date of the last update at the top of this page