Privacy Policy

Last updated: July 2025

Who we are

CVSO Pty Ltd ("CVSO", "we", "us", "our") operates the Virtual Mailbox service available at https://travelling.cvso.com.au. We are committed to protecting your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

What information we collect

When you register for our Virtual Mailbox service, we collect:

  • Full name, email address, and mobile number
  • Residential and postal address details
  • Business name, ABN/ACN (if applicable)
  • Identity verification documents (e.g. passport, driver's licence)
  • Date of birth and contact phone number
  • Payment information (processed securely via Stripe — we do not store card details)
  • VoIP emergency contact details (if VoIP add-on selected)
  • Digital signature and agreement acceptance timestamp

How we use your information

  • To provide and manage your Virtual Mailbox service
  • To verify your identity in compliance with Australian AML/CTF regulations
  • To process payments and issue invoices
  • To send service notifications, mail alerts, and account updates
  • To provision VoIP services and register emergency address details
  • To comply with legal obligations including reporting requirements
  • To improve our services and customer experience

Who we share your information with

We share your information only where necessary to provide the service:

  • OfficeRND — member management and billing platform
  • Stripe — secure payment processing
  • Dropbox — secure document storage for identity documents
  • VoIP providers (VoIPCloud, Symbio, VoIP.ms) — phone number provisioning and emergency address registration
  • Resend — transactional email delivery
  • Government authorities where required by law

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

Identity verification and AML compliance

As a provider of virtual address services, CVSO is subject to Australian Anti-Money Laundering and Counter-Terrorism Financing (AML/CTF) obligations. We are required to verify the identity of all customers using a 100-point identification check before services are activated. Identity documents are stored securely and retained for a minimum of 7 years as required by law.

Meta Pixel and advertising

Our website uses the Meta Pixel to measure the effectiveness of our advertising campaigns on Facebook and Instagram. This may involve sending hashed (anonymised) data such as email addresses to Meta for matching purposes. You can opt out of interest-based advertising through your Facebook ad settings.

Data security

We store your data in secure, encrypted databases hosted in Australia. Identity documents are stored in access-controlled cloud storage. Passwords are hashed using industry-standard algorithms. We use HTTPS for all data transmission and regularly review our security practices.

Your rights

You have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your data (subject to legal retention requirements)
  • Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)

Data deletion requests

To request deletion of your personal data, please email us at privacy@cvso.com.au. You can also submit a deletion request through our data deletion status page. Note that some data must be retained to comply with legal obligations.

Contact us

If you have any questions about this Privacy Policy or how we handle your personal information, please contact our Privacy Officer:

CVSO Pty Ltd
Email: privacy@cvso.com.au
Website: cvso.com.au