Last updated: 15 June 2026. Effective: 18 April 2026.
Graham Marsland Pty Ltd (ABN 97 691 274 905) (“we”, “us”, “our”) is an Australian company providing a document preparation service that helps consumers affected by the collapse of the Shield Master Fund and the First Guardian Master Fund prepare AFCA complaint documents to lodge themselves. Director: Graham Marsland. Registered office: Melbourne, Victoria, Australia.
We are an APP entity under the Privacy Act 1988 (Cth).
This Privacy Policy explains how we handle your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
We collect the personal information you provide directly to us through the intake form and subsequent correspondence:
We do not ask for your date of birth, tax file number, driver's licence, or bank details. Stripe handles any payment directly if you purchase the paid complaints bundle — we never see your card details.
We collect your personal information for the sole primary purpose of preparing an AFCA complaint document for you to review and lodge yourself. Specifically, we use it to:
We use Anthropic's Claude — a large language model developed by Anthropic — as a drafting tool. We supply Claude with your rollover details, your description of the matter, and your non-financial loss statements, and it drafts the wording from the structured figures my calculator produces. The methodology — how AFCA's published lead decisions and Approach apply to your facts — is mine. We review the draft before it is sent to you.
The computer program does not make the decision to lodge the complaint. You review the draft, you decide whether to lodge it, and you lodge it yourself at afca.org.au. If the draft is materially inaccurate you may edit it before lodging, or email us and we will revise and resend.
The personal information we use is limited to the fields you submit on the intake form and any follow-up information you send us. Your data is sent to Anthropic's API for the duration of each draft and is not used by Anthropic to train its models (zero data retention is enforced by our API configuration).
We share your personal information only with the following service providers who are bound by their own privacy obligations and process data strictly on our instructions:
We do not sell your personal information to anyone.
Some of our service providers are based overseas. By using our service, you consent to the overseas disclosure of your personal information to those providers for the purposes set out above. Your data is stored with Supabase in Singapore (ap-southeast-1) and processed by service providers, including in the United States, under contractual protections. We take reasonable steps to ensure these providers handle your personal information in a manner consistent with the APPs, including through contractual privacy obligations.
If any provider handles personal information in a manner inconsistent with the APPs, we may still be liable to you under APP 8.1.
We retain your personal information for as long as is necessary to prepare and support your complaint, and for seven (7) years after your complaint is lodged, consistent with ASIC Regulatory Guide 104 record keeping guidance. You may request earlier deletion at any time (see below), subject to our right to retain records required by law.
Incomplete applications abandoned before phone verification is completed are de-identified within 30 days.
Phone verification records are retained for 30 minutes only and then automatically expire.
We use HTTPS for all web traffic. Personal information is stored in Supabase in the Singapore region (ap-southeast-1) with row-level security, with access restricted to the Director of Graham Marsland Pty Ltd. We apply technical and organisational measures proportionate to the risk profile, including access controls, encryption in transit, minimal data retention, and staff training. We cannot guarantee absolute security; however, we take reasonable steps to protect your information from misuse, interference, and unauthorised access.
Under the Australian Privacy Principles you may:
To exercise any of these rights, email privacy@grahammarsland.com or graham@grahammarsland.com. We will respond within 30 days.
If you believe we have breached the Australian Privacy Principles, please contact us at privacy@grahammarsland.com. If you are not satisfied with our response, you may complain to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
The public counter on the homepage is an aggregate count derived from lodgement confirmations; no individual data is shown.
We may update this policy from time to time. The “Last updated” date at the top reflects the most recent change. Material changes will be notified by email to active clients.
See also our Terms of Service.