Privacy Policy

Last updated: 3/28/2026

1. Introduction

Welcome to ABA Converter ("we," "our," or "us"). We are committed to protecting your privacy and handling your personal and financial data with the utmost care. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our CSV to ABA file conversion service.

2. Information We Collect

2.1 Payment Information

When you make a payment for our services, we collect:

• Email address for transaction receipts and service delivery
• Payment details processed securely through Stripe (we never store credit card information)
• Transaction history for billing and support purposes

2.2 File Data

During the conversion process, we temporarily process:

• CSV files containing payment information (BSB numbers, account numbers, payment amounts)
• Generated ABA files

Important: For pay-as-you-go users, all file data is immediately deleted after successful download. For subscription users, files are stored encrypted for 30 days to enable re-downloads, after which they are permanently deleted.

2.3 Account Information

If you create an account, we collect:

• Email address and password (encrypted)
• Subscription status and billing information
• Conversion history and usage statistics

2.4 Technical Information

We automatically collect:

• IP address and browser information
• Device type and operating system
• Usage data and analytics
• Cookies and similar tracking technologies

3. How We Use Your Information

We use collected information for:

• Service Delivery: Processing your CSV to ABA file conversions
• Payment Processing: Handling transactions and billing
• Customer Support: Responding to inquiries and resolving issues
• Service Improvement: Analyzing usage patterns to enhance our platform
• Security: Detecting and preventing fraud or unauthorized access
• Legal Compliance: Meeting regulatory and legal obligations

4. Data Security

We implement industry-standard security measures to protect your information:

• 256-bit SSL/TLS encryption for all data transmission
• Encrypted storage for sensitive data
• Regular security audits and penetration testing
• Secure payment processing through PCI DSS compliant Stripe
• Limited employee access to personal data
• Automatic file deletion after specified retention periods

5. Data Retention

• Pay-as-you-go users: File data is deleted immediately after download
• Subscription users: Files retained for 30 days, then permanently deleted
• Account data: Retained while your account is active and for 7 years after closure for tax and legal purposes
• Transaction records: Kept for 7 years as required by Australian tax law

6. Data Sharing and Disclosure

We do not sell your personal information. We may share data only with:

• Payment Processors: Stripe for secure payment processing
• Cloud Service Providers: For hosting and infrastructure (AWS, Vercel)
• Analytics Services: For service improvement (anonymized data only)
• Legal Authorities: When required by law or to protect our legal rights

7. Your Rights

Under Australian Privacy Principles (APPs), you have the right to:

• Access your personal information
• Correct inaccurate or incomplete information
• Request deletion of your data (subject to legal retention requirements)
• Export your data in a portable format
• Opt-out of marketing communications
• Withdraw consent for data processing
• Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)

8. Cookies and Tracking

We use cookies for:

• Essential site functionality and security
• Remembering your preferences and settings
• Analytics to improve our service

You can control cookies through your browser settings. Note that disabling cookies may limit site functionality.

9. Third-Party Links

Our service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to read their privacy policies.

10. Children's Privacy

Our service is not intended for individuals under 18 years of age. We do not knowingly collect information from children.

11. International Data Transfers

Your data is primarily stored and processed in Australia. If transferred internationally, we ensure appropriate safeguards are in place through:

• Standard contractual clauses
• Privacy Shield certifications (where applicable)
• Adequate data protection frameworks

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or prominent notice on our website. Your continued use of the service after changes indicates acceptance of the updated policy.

13. Contact Us

For privacy-related questions or to exercise your rights, contact us:

• Email: privacy@abaconverter.com
• Support: support@abaconverter.com

14. Australian Privacy Compliance

This Privacy Policy complies with the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs). For more information about privacy in Australia, visit the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.