Privacy Policy
Document Title | Review Date: | Approval Authority |
Privacy Policy | 10th February 2025 | Managing Director |
AustCorp complies with the following privacy-related laws and standards:
Information Privacy Principles contained in the Privacy Act 1988 (Cth) in relation to its noncommercial activities;
National Privacy Principles contained in the Privacy Act 1988 (Cth) in relation to its commercial activities;
Privacy Amendment Act 2012.
Australian Privacy Principles (APPs)
Australian Direct Marketing Association Code of Practice in relation to how we market to our customers;
Privacy and secrecy requirements contained in Part 7B of the Australian Postal Corporation
Act 1989 (Cth) in relation to our handling of mail and postal information;
Spam Act 2003 (Cth) in relation to electronic marketing; and
Do Not Call Register Act 2006 (Cth) in the event that any telemarketing is undertaken. =
This policy does not create or confer upon any individual any rights, or impose upon AustCorp Executive any rights or obligations outside of, or in addition to, those rights or obligations imposed by the Privacy Act 1988 (Cth), Australian Privacy Principles, or related legislation ('the legislation'). Should there be, in a specific case, any inconsistency between this statement and the Act, this statement shall be interpreted, in respect of that case, to give effect to, and comply with the legislation.
This policy includes examples but is not intended to be restricted in its application to such examples, therefore where the word 'including' is used, it shall mean 'including without limitation'.
Use and Information Sharing
We use personal information you provide only for purposes consistent with the reason you provided it, or for a directly related purpose.
Generally, we will not use your personal information to market to you unless we have either your implied or express consent but in situations where it is impractical to obtain your prior consent, we will ensure you have an ability to opt out of future such communications.
Austcorp uses the collected information to provide our services, including but not limited to:
Verifying consistency in personal information collected
Provide records of verification of an individual’s personal information for customer and for compliance
Legal obligations
We have a strict duty to maintain the privacy of all personal information we hold about you. However, certain exceptions do apply. For example, where disclosure of your personal information is:
Authorised or required by law (e.g. disclosure to various government departments and agencies such as the Australian Taxation Office, CentreLink, Child Support Agency, or disclosure to courts under subpoena).
In the public interest (e.g. where a crime, fraud or misdemeanour is committed or suspected, and disclosure against the customer's rights to confidentiality is justified).
With your consent
Your consent may be implied or express and it may also be verbal or written.
Collection
We may collect personal information from you when:
You fill in an application form;
Deal with us over the telephone;
e-mail us;
Ask us to contact you after visiting our web site; or
Have contact with us in person;
Ask you to submit information in the portals mentioned above
We will collect personal information from you by lawful and fair means and not in an unreasonably intrusive way.
Information and documents collected from you may include, but are not limited to:
CV/Resume
Name, address, phone number, email address
Date of birth
Identity documents, such as driver’s licence or passport
Licences or accreditation
Work history
Vaccination status and certificates
Education and Qualifications
References
Medical Reports
Police Check
Work Rights Check
Use of third-party service providers
We do not share your personal information with other organisations unless you give us your express consent, or where sharing is otherwise required or permitted by law, or where this is necessary on a temporary basis to enable our contractors to perform specific functions.
When we temporarily provide personal information to companies who perform services for us, such as specialist information technology companies, compliance portals, or other contractors to AustCorp Executive, we require those companies to protect your personal information as diligently as we do, ensuring that they have privacy policies in place or ISO certification.
Stringent contractual and other quality assurance measures are used to ensure your personal information is protected.
Access to your personal information
AustCorp Executive will, upon your request, and subject to applicable privacy laws, provide you with access to your personal information that is held by us. However, we ask that you identify, as clearly as possible, the type/s of information requested.
AustCorp Executive will deal with your request to provide access to your personal information in a reasonable time - usually within 30 days of receipt of your request.
AustCorp Executive will not charge you for lodging such a request but we may recover from you our reasonable costs incurred in supplying you with access to this information.
How personal information is held
Your personal information is held in our online portals for the purposes of delivering our services.
We utilise technical security measures to ensure that information and data is stored securely and to mitigate against theft, loss, misuse, and unauthorised access. IT systems that store personal data or other sensitive data are protected according to industry security compliance standards such as encryption, a firewall and anti-malware protection.
An individual’s information is protected by access controls, whereby users are positively identified and authenticated before gaining access to systems, services, or the information. The information is encrypted at rest and in transit.
Exceptions
Your right to access your personal information is not absolute. In certain circumstances, the law permits us to refuse your request to provide you with access to your personal information, such as circumstances where:
Access would pose a serious threat to the life or health of any individual;
Access would have an unreasonable impact on the privacy of others;
The request is frivolous or vexatious;
The information relates to a commercially sensitive decision-making process;
Access would be unlawful; or
Access may prejudice enforcement activities, a security function or commercial negotiation;
Direct marketing and your privacy
From time to time we may use the personal information we collect from you to identify particular AustCorp Executive products and services which we believe may be of interest to you. We may then contact you to let you know about these products and services and how they may benefit you. We will generally only do this with your consent and we will always give you a choice to opt out of receiving such information in future.
Direct mail
Where we use your personal information to send you marketing information via the post we may do so with your implied consent or, if this is impracticable, we will ensure that you are provided with an opportunity to tick an "opt out" box to ensure you do not receive future such communications. By not ticking a clearly displayed "opt out" box, we will assume we have your implied consent to receive similar marketing communications in the future. We will always ensure that our opt out notices are clear, conspicuous and easy to take up.
Electronic Transaction
When you are accessing our services, including our website, some personal information may be collected trough browsing and cookies. This may include pages visited and IP address. Cookies may be used to record user activity on our website to enable a better browsing experience. Browers can be set to not accept cookies.
Electronic marketing
Where we use your personal information to send you marketing information by e-mail, SMS, MMS or other electronic means we may do so with your express or implied consent. You may give us your express consent by, for example, ticking a box on an electronic or paper form where we seek your permission to send you electronic or other marketing information. Consent may be implied from our existing business relationship or where you have directly or indirectly provided us with your electronic address.
All of our electronic marketing activities will comply with the requirements of the Spam Act 2003 (Cth).
Telemarketing
AustCorp Executive usually does not engage in telemarketing activities to our consumer customers.
Generally, such marketing is only ever used in relation to our business customers. Should any consumer telemarketing be done or authorised by AustCorp Executive, will to the extent that it applies, comply with the:
Do Not Call Register Act 2006 (Cth);
Do Not Call Register (Consequential Amendments) Act 2006 (Cth);
Telecommunications (Do Not Call Register) (Telemarketing and Research Calls) Industry Standard 2007;
Your privacy preferences and choices
Every personalised marketing contact sent or made by AustCorp Executive will include a means by which customers may opt of receiving further marketing information.
You may instruct us at any time to remove any previous consent you provided to receive marketing communications from us.
Incident Management Process (Data Breach)
In the event of a data breach, AustCorp Executive is committed to protecting your personal information and taking immediate steps to address any security vulnerabilities. We have an established Incident Management Process to assess, contain, and resolve incidents in compliance with applicable privacy laws.
Key steps in our process include:
1.Identification and Containment:
When a potential data breach is detected, we will assess the scope and impact of the incident, immediately containing any risks to prevent further exposure of personal information.
2.Assessment and Evaluation:
We will evaluate the breach, including determining whether it is likely to result in serious harm to individuals. This includes considering the type of information involved, the likelihood of misuse, and any potential harm to individuals.
3.Notification:
If we determine that a data breach has occurred and there is a risk of serious harm, we will notify affected individuals promptly. We will also notify the Office of the Australian Information Commissioner (OAIC) as required by law.
Notifications will include details of the breach, the information involved, and steps individuals can take to protect themselves.
4.Corrective Actions:
We will take appropriate measures to mitigate any harm caused by the breach and to prevent similar incidents in the future. This may include enhancing security protocols or implementing additional safeguards to protect personal information.
5.Ongoing Communication:
We will provide affected individuals with updates as needed and will ensure that any corrective actions are communicated transparently.
Changes to Policy
We may update our Privacy Policy from time to time, and the last version will be available in our website.
Further information on privacy
You can obtain further general information about your privacy rights and privacy law from the Office of the Australian Information Commissioner by:
Calling their Privacy Hotline on 1300 363 992
Visiting their website at www.privacy.gov.au(External link)
Writing to:
The Australian Information Commissioner
GPO Box 5218
Sydney NSW 1042
Contact Us
AustCorp Executive is committed to working with its customers to obtain a fair resolution of any complaint or concern about privacy.
To contact us for complaint or a privacy question, you can:
Call us on (02) 8252 1111, between 8.30am and 5.30pm EST Monday to Friday.
Or
Write to us at:
AustCorp Executive
Privacy Contact Officer
Level 9, 16 Spring