Purpose and Objectives
Company collects and manages personal information in the course of performing its activities, functions and duties. We respect the privacy of the personal information held by us.Company shall manage personal information in accordance with the Information Privacy Act 2009 (Qld) (the Act).
Scope/Coverage
This policy applies to all Company staff and describes how Company as a whole manages personal information.
Policy Statement
Company is authorised or required under various legislation to collect personal information. Company collects personal information so that it can use it for the following purposes:
- to review and consider any applications or submissions you have submitted to the organisation (for example, bank account details, personal address etc)
- to process any related payments or transactions which clients make with the organisation, and to identify and protect clients from unauthorised access to their personal or account information
- to carry out any site inspections (for example, building inspections)
- to protect employee safety, security and well-being at controlled sites, events, or functions
- to respond to any communications and correspondence (which includes answering any queries and dealing with any feedback or complaints clients may have)
The kinds of personal information the organisation collects may include:
- name
- residential address
- postal address
- date of birth
- gender
- telephone numbers
- email address
- photo and video images
- addresses of your property whether owned or leased by you
- credit card information
- bank account details
- driver licence details
- passport details
As far as possible, Company will collect personal information directly from customers. However, in certain circumstances, the organisation may collect personal information from a third party, for example:
- Government departments and bodies (for example, the Department of Education)
- current or former employer (for example, to obtain a reference check if you are applying for employment)
- Council and other databases (for example, to obtain information about properties in the event of any enforcement action)
Disclosure of Personal Information
In accordance with the Act, Company will not disclose personal information unless:
- Company has obtained express or implied consent;
- Company is required or authorised by law to do so (including where information has been self-published);
- the information is necessary for law enforcement agency to perform its functions, duties and activities (including, but not limited to, the prevention, detection, investigation, prosecution or punishment of criminal offences);
- the disclosure is necessary for research, or the compilation or analysis of statistics in the public interest (in which case client personal information will be de-identified); or
- Company believes that the disclosure is necessary to lessen or prevent a serious threat to the life, health, safety of a person, or to public health, safety or welfare.
The above entities may, in turn, disclose the personal information Company provides them to third parties to which they are authorised or required by law to disclose such information.
Storage of Personal Information
Company stores the personal information it collects in secure locations and databases. We take precautions to protect your personal information against loss, and unauthorised access, use, modification, disclosure or other forms of misuse.
Some examples of the safeguards Company uses to protect your personal information include:
- password protection on all computers
- restricted access to Company’s offices
- induction and training for all employees
- information security and confidentiality procedures
- regular back up of all databases.
Access to Personal Information
Please note that Company requires requests be made in writing and that clients may need to provide us with evidence of identity, and that under some circumstances under the Act or other legislation, we may not be able to provide clients with the access they requested.
Complaints
If clients have a complaint about how Company has handled personal information, please make contact through “Privacy Contact Details” below.
Please note that Company staff will ask clients to lodge their complaint in writing. We will:
- within 5 business days of receiving your complaint – acknowledge receipt of your complaint; and
- within 45 business days of receiving your complaint –
- investigate the circumstances of your complaint and provide you with a response.
Changes to the Privacy Policy
The organisation may, from time to time, make changes to this Privacy Policy.
Company monitor visits to the website to assist in understanding the areas of interest to visitors of our website. For statistical and site design purposes, we make a record of your visit in log files contained on the server.
The information we collect about site visits is usually in the form of “cookies”. Cookies are small pieces of information (text) which a website can transfer to an individual’s computer hard drive for record keeping. Cookies can reside on an individual’s machine for a fixed period of time, or expire at the end of an Internet session.
The information we collect on-site visits include:
- your server address
- your top level domain name (e.g. .com, .gov, .au, .org etc.)
- the date and time of your visit to our website
- the pages you accessed and documents you downloaded
- the previous site visited
- your browser type.
Emailing Company
All electronic mail messages sent to [insert relevant email address] become part of Companys records and may be retrieved by a keyword searchable archive in accordance with the Public Records Act 2002 (Qld). Your attention is also drawn to the fact that the organisation is subject to the Right to Information Act 2009 (Qld) (RTI Act). Under the RTI, persons other than the intended recipient may access your e-mail message.