CodeDream Solutions – Privacy Policy
Effective Date: 30/07/2025
Identity Verification Services Collection Notice
Use of Document Verification Services
Carbin may use the Commonwealth Government's Document Verification Service ("DVS") to verify your identity, using information available from your identity documents.
Why we collect this information and our legal obligations
We collect Identification Information to verify identity to reduce the risk of fraud in our operations. In collecting, using and disclosing such information, we comply with the requirements of the Privacy Act 1988 (Cth), the Identity Verification Services Act 2003 (Cth) and a special purpose agreement Document Verification Services Participation Agreement with Commonwealth, which governs our use of the DVS.
"Identification information" means:
- personal information contained in your identity documents, such as your name, date of birth, document number, and other details used to confirm your identity; and
- information about the outcome of a comparison involved in a DVS requested in relation to you.
Your rights
You have the right to request access to, and correction of, your Identification Information that we collect, use and disclose in connection with the DVS. You can also express your concerns or make a compliant about how we collect, use or disclose your Identification Information in connection with the DVS. Our Privacy Policy contains more information about how you can exercise these rights.
What happens if you do not consent
If you do not consent to the use of your Identify Information for verification via the DVS, we will not be able to verify your identity using this method. This may impact our ability to provide you with our products or services.
Further information about the DVS
You can find more information about how the DVS operates and is managed by the DVS Hub and the Framework Administrator at www.dvs.gov.au.
1. Our Commitment to Privacy
CodeDream Solutions ("CodeDream", "CarBin", "we", "our", "us") recognises the importance of protecting your personal information. We elect to be bound by the Privacy Act 1988 (Cth) and comply with the Australian Privacy Principles (APPs). This Policy explains how we collect, use, disclose, store and protect personal information, and how you can access or correct your information or make a complaint.
2. Purpose & Scope
This Policy covers all personal information we handle in Australia, including information about customers visiting our websites or applications. It applies to all CodeDream Solutions employees, officers, contractors, and partners.
Our business includes carbin.com.au, a SaaS solution specifically designed for car wreckers. CarBin provides technology solutions that facilitate the purchase of cars from customers. As part of this process, customers are required to share their Driver's Licence number to verify vehicle ownership. Consequently, we collect personal information, including names and Driver's Licence numbers, to conduct our business operations effectively.
3. What Personal Information We Collect
| Category | Information |
|---|---|
| Identity | Name, mobile number and driver license number |
We do not intentionally collect sensitive information (APP 3.3) unless required or authorised by law or with your explicit consent.
4. How We Collect Personal Information
- Directly from you (e.g. when we process the transaction with us, fill out a form, call or email us).
- In business process, while filling out the job order, we will take customer personal identification driving license number, name and verify with Gateway service provider
- In some situation, if online check is not available for any technical reasons. We temporarily store documents, verify them with gateway service providers, and then delete the numbers.
5. Purpose of Collection (Australian Privacy Principle 5)
We collect, hold, use and disclose personal information to:
- To verify whether it is valid document
- Issue invoices
- comply with legal, taxation and regulatory obligations
We will not use your information for purposes other than those disclosed without your consent or as required by law.
6. Handling Data
Our policy explicitly details the collection, storage, and usage of personal information, including sensitive information such as driver's licence details, and addresses handling of unsolicited personal information. We handle personal information securely, utilizing advanced and secure cloud technologies provided by Amazon Web Services (AWS) to store and manage data. AWS infrastructure ensures data encryption, secure access control, and regular security audits, safeguarding personal and sensitive information against unauthorized access and breach.
Information available only to authorized secured users on the application. General website visitor cannot access any type of personal information.
Data is not open to public.
7. Disclosing Personal Information
We may disclose information to: - Identity verification Gateway Service providers to verify the document (Driving Licence)
We do not sell personal information.
8. Data Security (Australian Privacy Principle 11)
We do not store any information on our system except name and reference from Gateway Service Providers. We employ physical, technical and organizational measures such as:
- Encryption in transit (TLS 1.2+) and at rest
- Role‑based access controls and MFA for staff accounts
- Secure coding practices and regular penetration testing
- ISO 27001‑aligned policies and incident‑response plans
If a data breach is likely to result in serious harm, we will notify affected individuals and the OAIC in accordance with the Notifiable Data Breaches scheme.
9. Access & Correction (Australian Privacy Principle 12 & 13)
You may request access to or correction of your personal information by contacting us (see Section 14). We will respond within 30 days. If we refuse a request, we will provide written reasons and information on how to complain.
10. Marketing Communications
We may send you product updates or event invitations. You can opt out at any time via the unsubscribe link or by contacting us. Opting out will not affect essential service emails.
11. Use of Cookies & Tracking Technologies
Our websites use cookies and similar technologies to authenticate users, remember preferences and analyse traffic. You can disable cookies in your browser, but functionality may be limited.
12. How to Make a Complaint
If you believe we have breached the Privacy Act or APPs, please contact our Privacy Officer (details below). We will investigate and respond in writing within 30 days. If you are unsatisfied, you may refer the matter to the Office of the Australian Information Commissioner (OAIC).
13. Risk Management
CodeDream Solutions (Carbin) employs robust risk management processes to safeguard personal information. Our approach includes:
- Risk Assessments and Auditing: Regular audits and risk assessments are conducted to identify potential vulnerabilities related to the collection, handling, and storage of personal information. These assessments help us proactively address and mitigate privacy risks, ensuring continuous compliance with the Australian Privacy Principles (APPs).
- Staff Training / Vendor Training: All employees and organization using software receive comprehensive training on privacy requirements and the importance of data security. Training covers best practices for handling sensitive information, recognizing security threats, and understanding responsibilities under the Privacy Act 1988 (Cth).
- Secure Data Handling: We implement strict access controls to limit who can view or use personal information, ensuring it is accessed only by authorised personnel.
14. Contact Us
Privacy Officer
CodeDream Solutions
4 Coachman Crescent Kellyville Ridge NSW 2155
Email: info@codedream.com.au
Phone: +61 466 114 660
15. Changes to This Policy
We may update this Policy from time to time. The most recent version will be published on our website. Changes take effect when posted.
© CodeDream Solutions