DCS Capital & Recovery
DCS Capital & Recovery
Institutional Recovery Division
Legal

Privacy Policy

Last Updated: May 2026

DCS Capital & Recovery ("we", "us", "Our") is committed to protecting the privacy of personal information in accordance with the Privacy Act 1988 (Cth) (the Privacy Act) and the Australian Privacy Principles (APPs). This Privacy Policy outlines how we collect, use, disclose, store, and secure personal information managed across our operations.

DCS Capital & Recovery is a brand operated by 34th Degree Pty Ltd (ACN 649 793 119).

1. What is Personal Information?

Under the Privacy Act, "Personal Information" is any information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether true or not.

2. The Types of Information We Collect

Depending on whether you are a Client (creditor) or a Debtor, we may collect different categories of personal information:

A. For Clients & Portal Users

  • Identity & Contact Details: Full name, business name, Australian Business Number (ABN), phone number, email address, and physical/postal addresses.
  • Financial & Evidence Portfolio Data: Bank account details for remittance, payment histories, and copies of supporting documentation containing debtor transaction records (including contracts, invoices, and text/email correspondence).

B. For Debtors

  • Identification & Contact Details: Full name, aliases, business names, postal and residential addresses, email addresses, and phone numbers.
  • Financial & Debt Profiles: Outstanding account balances, reference numbers, payment tracking data, dispute histories, and credit card or bank details provided during account settlement.

C. Digital Technical Data

Our web infrastructure uses cookies and analytic logs to capture interaction records, including device types, IP addresses, browser variants, and transaction success states, ensuring secure portal access and payment processing stability.

3. How We Collect Personal Information

We gather data through transparent, lawful industry methods:

  • Directly from Clients: When an onboarding client logs into our portal, registers a collection placement, or submits supporting debt files.
  • Directly from Debtors: When a debtor communicates with our staff over the phone, responds via email, or uses the secure payment verification screen on our website.
  • From Authorised Third Parties & Public Registers: We may collect data via ASIC register lookups, property titles, public directories, and skip-tracing networks to ensure files remain accurate.

4. Primary Purposes for Handling Data

We hold and process personal information strictly to fulfil our core operations:

  • To verify individual identities prior to disclosing or discussing open debt records, strictly honouring third-party privacy guidelines.
  • To systematically process, demand, negotiate, and collect outstanding commercial balances.
  • To securely process payments via our native integration with Stripe and deliver dynamic receipts.
  • To fulfil legally mandated record-keeping and audit obligations under Australian law.

5. Disclosure of Personal Information

We do not sell or lease personal data. Your information is only disclosed under strict operational scenarios:

  • To Our Clients: Progress reports regarding a debtor's settlement discussions are routinely provided to the original appointing creditor.
  • To Contracted Service Providers: Financial processors (Stripe), email service infrastructure providers, and secure data hosting providers bound by identical privacy obligations.
  • To Legal Practitioners or Courts: If an escalation path requires legal filings or formal process serving.
  • Where Authorised by Law: To satisfy regulatory authorities, police forces, or statutory court orders.

We handle information via Australian cloud infrastructure and do not routinely disclose personal information to overseas recipients.

6. Information Security and Storage

Data security is paramount to our status as a secure, high-authority recovery agency.

  • Storage Frameworks: All electronic data is managed via segmented, modern database environments protected by industry-standard encryption protocols.
  • Retention Boundaries: Personal data is retained only for the duration necessary to satisfy operational needs or legal record-retention statutes (typically up to 7 years for financial records). Unneeded or unverified data is permanently destroyed or de-identified.

7. Access and Correction Rights

Under the APPs, you possess explicit rights to request access to the personal data we hold about you, or to request corrections if you believe the records are out-of-date or inaccurate.

To protect your information, we require rigorous identity verification before facilitating any data modifications or releases. Access requests can be made in writing via the compliance channels listed below.

8. Complaints and Contact Information

If you have any questions about this policy, believe your privacy has been breached, or wish to dispute a data record, please forward your written inquiry directly to our compliance officer:

Email: compliance@dcscapitalandrecovery.com.au

Phone: 1300 63 40 60

Postal Address: Attention: Privacy Officer, PO BOX 289, Drysdale, Victoria 3222

If you are unsatisfied with our internal dispute resolution process, you maintain the right to lodge a formal complaint directly with The Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.