Collection of personal and credit information
Cookies are text files placed on your computer to collect standard internet log information and visitor behaviour information. When you visit our websites, we may collect the following information from you automatically through cookies or similar technology:
You can set your browser to accept or decline cookies, however, some of our website features may not function or function fully as a result.
Means of collection of personal data and credit information
Your personal information and credit information may be collected in a number of ways, including:
In some circumstances, where it is unreasonable or impracticable to collect information from you or to supplement information provided, we may collect information about you from a third party source (including public records). In such a case we will take reasonable steps to ensure that you are made aware of the personal information provided to us by the third party.
You need not provide all the information requested by us, but this may prevent us from providing some or all of our goods or services to you.
Purposes of collection and use
We collect and use your personal and credit information for the following purposes:
We will only use your information for the purposes for which it was collected (“primary purposes”) or a purpose related to the primary purpose, if this use would be reasonably expected by you, or otherwise, with your consent.
We may also collect personal information from other credit providers, Credit Reporting Bodies (“CRB”) and any other third parties for the purpose of our functions and activities including, but not limited to credit, sales, marketing and administration.
We may disclose your information to certain third parties to assist us with the primary purpose for which your information was collected. Third parties we may disclose your information to for this purpose include:
We may also be required to disclose information to third parties to comply with laws and regulations. This may include disclosure to:
We do not disclose your personal information to overseas recipients unless required as a matter of law.
We do not disclose your credit information to any credit reporting bodies Where personal information is disclosed to a third party, we will take all reasonable steps to satisfy ourselves that the information is held, used and disclosed in accordance with the APPs and the GDPR.
Quality, access to and correction of information
Where your request for access is accepted, we will provide you with access to your personal information in a manner, as requested by you, providing it is reasonable to do so.
Your request for correction will be dealt with within 30 days, or such longer period as agreed by you. If we deny your request, we will provide you with a written notice detailing reasons for the refusal and the process for making a complaint about the refusal to grant your request.
We will accept your request for correction of your credit information where we are satisfied that it is inaccurate, out-of-date, incomplete, irrelevant or misleading.
Upon accepting a request for correction of your personal information, we will take all steps that are reasonable in the circumstances, having regard to the purpose for which your information is held, to correct your personal information.
If your request for correction of credit information is accepted, we will provide written notice of this correction to any entity to which we have disclosed this information previously, to the extent that this is practicable.
Storage and security
Your personal and credit information will be stored as physical files in a secured area in Australia, on our electronic data base system and on computers with appropriate back up and security systems. All our servers are located in Australia. Any personal or credit information which is collected via our website, or which is held on our computer systems, is protected by safeguards including physical, technical (including firewalls and SSL encryption) and procedural methods.
We take reasonable steps to hold information securely in electronic or physical form. We are committed to keeping secure the data you provide to us and we will take all reasonable precautions to protect your personally identifiable information from loss, misuse, interference, unauthorised access or alteration.
We aim to achieve this through:
In the event of a data breach, we are committed to complying with our obligations at law, including our notification obligations.
Data subject rights under the GDPR
These rights are not absolute, and some only apply in certain circumstances.
You are not required to pay any charge for exercising your rights over your personal data.
If you make a request in relation to any of these rights, we have one month to respond to you. Please contact our Privacy Officer (details below) if you wish to make a request.
Our Privacy Officer will consider your complaint and respond as soon as reasonably possible, but no later than 30 days from receiving the complaint.
If you are unsatisfied with the outcome of your complaint you may refer your complaint to the Office of the Australian Information Commissioner.
If you are an individual residing in the EU, you may submit your complaint to your local data protection authority.
If you wish to:
Contact our Privacy Officer:
Privacy Officer contact: HR/WHS Manager
Postal address: c/- PO Box 785, Stirling South Australia 5152
Phone: +61 8 8130 9500
For more information on privacy, see the Office of the Australian Information Commissioner's website at: http://www.oaic.gov.au