The below policy applies to all divisions of Afea Pty Ltd.
The privacy of your personal information is very important to us.
PROTECTING YOUR PRIVACY
Afea Pty Ltd (Afea hereafter) is committed to protecting your privacy and the privacy of any personal information provided to us. We comply with the Australian Privacy Principles set out in the Privacy Act 1988 (Cth) (Privacy Act).
WHAT PERSONAL INFORMATION DO WE COLLECT AND WHY DO WE NEED IT?
Afea may collect personal and sensitive information from you in order to provide you with appropriate services and for marketing purposes. The information that we collect about you or the person you care for, may include, but is not limited to, identity and contact details, gender, culture, financial information and health details. When you contact Afea, the information that you provide will be collected and held in order to send marketing material to you and to manage our ongoing relationship with you. If you wish to opt out of receiving marketing material from Afea, please follow the unsubscribe link where applicable, or call us on 02 8913 6400. Visitors of our website will not be ‘spammed’ or have their information shared with third parties.
HOW DO WE COLLECT YOUR PERSONAL INFORMATION?
Information is primarily collected directly from you. It might also be collected on occasion by our contractors or from service providers, and it could be in writing, by telephone and by other electronic communication channels.
We may also need to obtain your personal information from others, with your consent, to ensure that we are fully informed for the provision of appropriate services or as part of a referral scheme.
WHO WILL SEE OR HAVE ACCESS TO YOUR PERSONAL INFORMATION?
Unless we are required to provide your personal information to others by law, by court order or to administer or investigate an incident or a claim, your information will only be seen or used by persons working within or contracted to Afea.
Information disclosed to program funding bodies for the purposes of reporting is de-identified. Information disclosed to third-party service providers and contractors for the purposes of referral only occurs with prior consent. Third-party contractors are predominantly in Australia, however may be based overseas, such as the United States of America.
SECURITY OF INFORMATION
Our information systems and files are kept secure from unauthorised access and our staff and contracted agents and service providers have been informed of the importance we place on protecting your privacy and their role in helping us to do so. Information will be stored and disposed of in a secure environment, which may only be accessed by authorised personnel.
WHAT IF I WANT TO CHECK WHAT PERSONAL INFORMATION YOU HOLD ABOUT ME?
You are entitled to view what personal information we hold about you. This will be the case unless there is a relevant exception under the Privacy Act that applies. If you wish to access this personal information, please call us on 02 8913 6400.
CAN I CORRECT THE INFORMATION?
If you believe there are errors in our records about you, please let us know and we will investigate and correct any inaccuracies.
CROSS BORDER DISCLOSURE OF INFORMATION
In order for us to provide our services to you, we may store your information on servers that are not in Australia. Afea will take reasonable practicable steps to ensure contracted data storage providers protect the security of our data in accordance with the Privacy Act.
HOW DO WE MANAGE SUSPECTED OR ACTUAL BREACH OF PERSONAL INFORMATION?
A data breach is an unauthorised access to or an unauthorised disclosure of personal information, or a loss of personal information, that Afea holds.
These are the steps that we follow once a data breach is suspected or known:
- Contain a suspected or known breach where possible. This means taking immediate steps to limit any further access or distribution of the affected personal information, or the possible compromise of other information.
- Assess – Afea will need to consider whether the data breach is likely to result in serious harm to any of the individuals whose information was involved. If Afea has reasonable grounds to believe that this is the case, then we are required and we will notify the Office of Australian Information Commissioner. If we have grounds to suspect that this is the case, then we must conduct an assessment process.
The assessment process will include a 3-step process:
- Initiate: the assigned personnel will plan an assessment
- Investigate: the assigned personnel will gather relevant information about the incident to determine what has occurred.
- Evaluate: the assigned personnel will make an evidence-based decision about whether serious harm is likely to occur.
- If serious harm is likely to happen, Afea will prepare a statement for the Commissioner. Afea will also notify the affected individuals and inform them of the contents of the statement.
- If serious harm is unlikely to happen, Afea will Review the incident and act to prevent future breaches.
Afea utilises external providers (Google Analytics) to track visits to our website. This information is collected anonymously to gauge website trends without identifying individual visitors.
We use this information to track the effectiveness of our website. Types of data collected include visits, viewed pages and the technical capabilities of our visitors. These statistics will not identify you as an individual.
Apart from notifying you of our service offerings, we do not, without your consent, sell, rent, license or otherwise disclose your information to any party not contracted to us for the purposes of direct marketing. An “opt out” mechanism is provided to enable you to stop receiving any direct marketing material from Afea.
If you would like further information, or if you have any complaints or concerns over the protection of the information you have given to us, or that we have collected from others, please contact us directly at email@example.com.