SecureWorx Pty Ltd (SecureWorx) provides secure cloud services and associated communications facilities for the information and information processing systems of our customers. These information assets play a vital role in supporting business processes that contribute to the operational and strategic business decisions of our customers and in conforming to their legal and statutory requirements.
At SecureWorx we care about your policy and we are committed to managing the personal information we collect in compliance with the National Privacy Principles stated in the Privacy Act 1988 (Cth) (Privacy Act) and in protecting the security and confidentiality of data and information in our possession.
This document describes how SecureWorx manages the collection, use and disclosure of personal information.
What kind of personal information do we collect and hold?
SecureWorx will only collect sensitive information with appropriate consent and in compliance with the Commonwealth Privacy Act and any relevant Australian State privacy legislation.
We collect personal information directly from you as part of our business activities when we deal with you in person or when you send us correspondence. Generally, the personal information collected includes your name, contact details and job title. We may also collect personal information indirectly from third parties such as from credit reporting agencies, our customers or advisers.
Personal information is collected and maintained for various purposes including establishing a relationship with our customers, performing necessary credit checks with our credit applications processes, providing our services and receiving payment.
The cloud services that we provide on behalf of our customers may involve the collection, holding, use, correction, disclosure and transfer of personal information relating to our customers’ business processes.
HOW WE USE AND DISCLOSE PERSONAL INFORMATION?
We do not use or disclose personal information except:
- as permitted or required by the Commonwealth Privacy Act 1998 and any relevant Australian State privacy legislation; or
- if you consent.
We may disclose personal information to third parties including our related bodies corporate and parties who advise or assist us in our business or are involved in the provision of our services.
We take reasonable steps to ensure that your personal information is accurate, complete and up-to-date whenever we collect or use or disclose it.
If the required personal information is not provided, we or our third party contractors may not be able to provide the services.
WHAT WE EXPECT OF OTHER PARTIES
When a third party provides us with personal information about other individuals, we rely on the third party to have made the individuals aware that they would provide this information to us, the purposes we will use it for, the types of organisation we disclose it to and how the individual whose information it is can access it (as described in this document). If it is sensitive information we rely on the third party to have obtained the individual’s consent to the above. If the third party has not done either of these things, it must tell us before it provides the relevant information.
If we provide a third party with personal information, the third party and its representatives must only use it for the purposes we agreed to.
Where relevant, any third party must meet the requirements of the Commonwealth Privacy Act 1988 and relevant Australian state privacy legislation, when collecting, using, disclosing and handling personal information on our behalf.
A third party must also ensure that its agents, employees and contractors meet the above requirements.
SECURITY OF PERSONAL INFORMATION
We place a high degree of importance on security. We take reasonable steps to protect any personal information that we hold from misuse, loss, unauthorised access, modification or disclosure. The personal information you provide to us will be retained only for as long as necessary for the purposes for which it was collected, as required by law or in compliance with our document retention policies.
ACCESSING YOUR PERSONAL INFORMATION AND MAKING COMPLAINTS.
You have the right to request access to personal information that we hold about you and, if it is inaccurate, to request its correction. We will handle requests for access to personal information in accordance with the APPs.
- request access to, or correction of, your personal information; or
- make a complaint in relation to privacy, the handling of your personal information or your request to access it
If you believe we may have breached this policy, or any of the APPs, then you should make a complaint to us in the first instance. You should address your complaint in writing to our Privacy Officer (contact details are set out below). Please include as much detail as you can about the personal information affected, and the circumstances that you believe amount to a breach of this policy or the APPs.
We will undertake an internal investigation, and we may contact you if we need to obtain any further information in relation to your complaint. We will generally provide a written response to your complaint within 30 days.
If you are unhappy with our response to your complaint, you have the right to make a complaint to the Office of the Australian Information Commissioner. The Office of the Australian Information Commissioner can be contacted by telephone on 1300 363 992. Full contact details for the Office of the Australian Information Commissioner can be found on its website at www.oaic.gov.au.
HOW TO CONTACT US
Attention: The Privacy Officer
SecureWorx Pty Ltd Level 6, 94 Elizabeth Street
We may change this policy from time to time and will notify you by posting an updated version on our website at www.secureworx.com.au