Independent research and standards

To advance fairer, faster, and more transparent payment dispute resolution.

Legal

Privacy Policy

This policy explains what information we collect, why we collect it, and how we handle it.

The Payment Dispute Institute

Last Updated: 04/05/2026
Your privacy is important to us. In this Privacy Policy, we aim to help you understand how Nina Kutzner Consulting and Advisory Pty Ltd (ACN: 665 842 268) trading as The Payment Dispute Institute ("The Payment Dispute Institute," "we," "us," "our") collects and uses information, and the choices you have about your information. This Privacy Policy applies to all websites operated by The Payment Dispute Institute, including www.paymentdisputeinstitute.org (the "Site"), and The Payment Dispute Institute's services, including our web service and any APIs we operate (collectively, together with the Site, the "Services").
By visiting our Site, applying for or using our Services, you consent to us collecting, holding, using and disclosing your personal information in accordance with this Policy. We collect your personal information in order to provide our Services and undertake actions related to the provision of such Services.
Participants in PDI programmes may also be subject to a separate Collaborators Agreement which governs rules of engagement, competition protocols and related obligations. Where you have entered into a Collaborators Agreement with PDI, the terms of that agreement apply alongside this Privacy Policy.

1. Information We Collect

We collect different types of personal information about you depending on the Services you use, how you use them, and the information you provide to us, as set forth below.

1.1 The type of information we collect

We collect certain information about you as you use the Services or when you otherwise interact with or communicate with us. We may also collect this information about you from others (for example, when a representative submits an application or enquiry on your behalf).
This information includes:
  • Identification and contact information, such as name, postal or email address, and device information;
  • Event and programme-related information, such as registration details and participation records for roundtables, research initiatives and other PDI programmes;
  • Information about professional advisers, representatives or affiliates interacting with us on your behalf.

1.2 How we collect your personal information

We generally collect your personal information through your interactions with us during registration and use of the Services. Other ways in which we collect your personal information include:
  • When registering for or participating in PDI events, roundtables, research programmes or other industry initiatives;
  • Requests for support, such as enquiries about our Services or requests for technical assistance;
  • Survey and feedback information you share in connection with surveys and requests for feedback;
  • Through automatic analytical tools as described in section 1.3 below;
  • Service providers including fraud prevention and risk assessment services;
  • Social media platforms following any interaction by you with our social media accounts;
  • Attendance at The Payment Dispute Institute events (whether physical or virtual).
If we receive information about you that we have not requested (i.e. unsolicited personal information), we will take the necessary steps to de-identify and destroy this information.

1.3 Other information we collect automatically as you use the Services

We and our service providers use a variety of third-party technologies, including cookies, Google Analytics and other similar tools, to automatically collect certain information when you use our Services. The types of information we collect include:
  • Log files: As you use our Services, we automatically record information in log files. These may include your web requests, IP address, browser type and settings, referring/exit pages and URLs, number of clicks, date and time stamp information, language preferences, and data from cookies and similar technologies.
  • Service metadata: We collect metadata that provides high-level information about how you interact with the Services, such as the names of pages you visit, frequency and duration of use, and other information.
  • Information from cookies and similar technology: We and our service providers collect information about your operating system, IP address, browser type and language, referring pages and URLs, date and time, which sections of our Site you visit, and similar data. We also work with third-party partners that use cookies to collect usage information to better understand how users interact with the Services. For more information, see section 7 below.

1.4 De-Identified Information

We may de-identify and/or aggregate any information we collect so that it cannot reasonably identify you or your device, or we may collect information that is already in de-identified form. Our use and disclosure of such de-identified information is not subject to any restrictions under this Privacy Policy, and we may use and disclose it to others for any purpose, without limitation.

2. How We Use Your Information

We collect, hold and use your personal information so that we can:
  • Provide, maintain, and operate the Services;
  • Improve the Services and develop new features and services;
  • Respond to your enquiries and requests for support;
  • Facilitate and administer industry events, roundtables, research initiatives and rules framework programmes;
  • Publish research findings, industry frameworks and other materials — where we do so, individual contributions made in the context of PDI events and programmes are treated as confidential and will not be attributed to named individuals; we may reference participating organisations where appropriate and with consent, but personal information is used only in aggregate or de-identified form in any public-facing publication;
  • Provide technical support and assistance;
  • Communicate with you about the Services, including service-related communications, new products or features, or requests for feedback;
  • Send you marketing communications about our products and services as permitted by applicable law and consistent with your preferences;
  • Engage in analysis, research and preparation of reports regarding use of the Services;
  • Protect and secure the Services and our users;
  • Establish, exercise, or defend our legal rights, including to enforce compliance with our Terms of Service and Privacy Policy, and any other agreements between you and The Payment Dispute Institute;
  • Comply with applicable laws, regulations, codes, subpoenas, governmental requests or legal process, or in connection with a legal or regulatory investigation;
  • Prevent, detect and investigate any actual or suspected fraud, crime, or non-compliance with laws;
  • Comply with our legal obligations owed to relevant service providers, infrastructure providers and licence holders;
  • Process your information for other purposes following your specific consent.

3. How We Disclose Your Information

We may share your information with entities outside of The Payment Dispute Institute only as follows:
  • Service Providers: We may share or provide access to your information with external service providers that use such information only to perform services on our behalf, such as supporting the operation of our Services, event management, advertising and marketing, analytics, research, data storage, security and compliance solution providers.
  • Third-party applications, with your consent: We may allow you to authorise the connection to and automated exchange of data with third-party applications. We will share data with such applications only with your authorisation.
  • Industry participants and research collaborators, with your consent: We may share information with other participants in PDI events, roundtables or research initiatives where you have consented to such sharing as part of a collaborative programme.
  • With other parties, with your consent: We may share information with others when we have your consent to do so.
  • Entities for legal and safety purposes: We may disclose the information we collect where we have a good faith belief that such disclosure is: (a) required by law (or to respond to subpoenas, warrants, government requests, or similar process served on us), or (b) reasonably necessary to establish, exercise or defend legal rights, or to prevent or lessen a serious threat.

4. Storage and Security of Your Information

We store information about you in computer systems and databases operated by either us or our external service providers. We maintain a variety of security measures to protect your information from loss, misuse and unauthorised access, disclosure, alteration and destruction. These security measures include (but are not limited to):
  • Utilising identity and access management technologies to limit and control access to systems on which personal information is processed and stored;
  • Requiring all employees and contractors to comply with internal information security policies, keep information secure and undertake regular training;
  • Monitoring and regularly reviewing our procedures and security controls.
However, as no method of internet transmission is completely secure, we cannot guarantee the security of your information.
When registering for an account through the Services, it is important that you select a strong password and do not share it with others. You must alert us immediately if you have any concerns about unauthorised use of your account.

5. Data Retention

We retain information for different periods of time depending on the purposes for which we collect and use it, as described in this Privacy Policy. We may retain personal information in accordance with applicable laws pertaining to the provision of services and our industry programmes.
We will delete or de-identify information when it is no longer needed to fulfil the purposes outlined in this Privacy Policy, and after the retention period required by any applicable laws.

6. Third-Party Services

The Services may allow you to connect to, and exchange data with, third-party applications, and may also contain links to third-party sites and services. We have no control over these third-party services, and as such, we are not responsible for their privacy policies or practices. You should check the applicable third-party privacy policy and terms of use before providing information or authorising the exchange of information with any third-party site or service.

7. Cookies and Online Analytics

The Payment Dispute Institute uses cookies and similar technologies to help identify and track visitors, analyse usage of the Services, and remember access preferences. Please note that you can change your browser settings to notify you when a cookie is being set or updated, or to block cookies altogether. Note, however, that if you choose to block cookies, certain features of the Site may not function properly or may be inaccessible altogether.

8. International Users

8.1 International data transfers

The Services are operated from Australia. If you are located outside of Australia, please be aware that any information you provide to us and/or that we collect from you, including personal information, will be transferred from your country of origin to Australia, which may have different data protection laws than your jurisdiction.
For Australian residents, we may transfer information that we collect about you to our affiliates and/or third-party processors located in other jurisdictions. Where we do so, we will take reasonable steps to ensure that your information continues to be protected in a manner consistent with this Privacy Policy and applicable Australian privacy law.

9. Your Rights and Choices

9.1 Email and other direct marketing

We may use your personal information to offer you products and services we believe may interest you. We may use a variety of methods to contact you for this purpose, including through email and social media. However, if you do not want us to contact you for marketing purposes, you can tell us at any time.
If you do not wish to receive marketing emails from us, please click the "Unsubscribe" link located at the bottom of any The Payment Dispute Institute marketing email and follow the instructions. Please note that processing your request will take some time, in accordance with our legal obligations. You cannot opt out of receiving transactional emails related to the Services, which communicate important information about the Services or legal notices to you.

9.2 Accessing and updating your information

If you believe we may not hold accurate information about you, you can contact us to access and correct it. If you would like to exercise your rights under applicable law, please email us at [email protected] with your name, the email address you used to register with The Payment Dispute Institute, and a description of your request.
We may request additional information to verify your identity, and will respond to your request as required by applicable law in your jurisdiction. Please allow us a reasonable time to respond to your enquiries and requests.

9.3 Do Not Track

At this time, The Payment Dispute Institute does not monitor, recognise or honour any opt-out or do not track mechanisms, including general web browser "Do Not Track" settings and/or signals.

9.4 Privacy Complaints

If you have a complaint regarding our handling of your personal information, we will attempt to resolve your complaint promptly upon you contacting us at [email protected].
If you believe the complaint cannot be or has not been resolved by us, you may lodge a complaint with the Office of the Australian Information Commissioner at https://www.oaic.gov.au/.

9.5 Quality of personal information

When we collect your personal information, we will take reasonable steps to ensure its accuracy. This may include taking additional steps for verification where we deem this is required.

10. Privacy Policy Changes

This Policy is effective as of the "Last Updated" date posted at the top of this page. We may change this Policy from time to time and will post any changes on this page as soon as they go into effect, and/or provide additional notice as required by applicable law. By accessing the Services after we make any such changes, you are deemed to have accepted such changes. Please refer back to this Privacy Policy on a regular basis.

11. Contact Us

If you have any questions, concerns, or complaints about The Payment Dispute Institute's Privacy Policy or information handling practices, please contact us:
The Payment Dispute Institute is a registered business name of Nina Kutzner Consulting and Advisory Pty Ltd (ACN: 665 842 268).