Brisbane   Melbourne   Hobart   Launceston   Devonport

Privacy is a serious business.

 

Privacy Policy

Privacy Policy

As a function of our operations, we need to obtain and process personal information. The company is committed to treating the personal information collected in accordance with the Australian Privacy Principles in the Privacy Act 1988 (the Privacy Act) and relevant state Privacy Acts in which the company operates. This Privacy Policy sets out how we handle personal information.

Collecting Personal Information

The types of personal information we collect will depend on the circumstances in which the information is collected. However, the types of personal information we collect and hold about you may include:

•   General identification information such as names, job title, occupation, date of birth and gender.

•   Contact details such as address, email address, phone and mobile phone number.

•   Organisation and position, where your organisation has business dealing with us.

•   Records of our communications with you, such as telephone, email, SMS, online and in- person communications.

•   Other information that you provide us during the course of business.

•   CCTV images of you may be captured at our sites.

•   For employees:

o Educational qualifications, employment history, salary, and referee reports.

o Payment details including group certificates, payslips, and other income earning

information.

o Information contained in identification documents such as passport or driver’s

licence.

o Government-issued identification numbers such as tax file numbers.

o Emergency contacts

o Photographs used for HR and Safety systems.

o Certification and training records.

The company collects this information in a transparent way and only with the full cooperation and knowledge of interested parties.

Purpose for Collecting, Holding, Using & Disclosing Personal Information

The company uses and discloses your personal information for the purposes for which we collect it where you would reasonably expect us to, or otherwise as set out in this Privacy Policy. Generally, we will use and disclose your personal information for the following purposes:

•   To maintain a business relationship, where you are a client or candidate.

•   To provide services to you.

•   Recruitment purposes such as contacting referees, processing applications, administering psychometric testing, assessment for suitability for future positions, background checks, medical checks.

•   For business purposes such as part of an actual (or proposed) acquisition, disposition, merger, or de-merger of a business.

•   For administrative purposes, including:

o Processing payments, salary and superannuation.

o Ensuring certifications and training are kept up to date.

o Maintenance of internal phone lists and organisational charts.

o To communicate company related contact details on email footers.

o To use your photograph for safety tagging and electronic profile (e.g. Microsoft 365

profile photo).

•   For governance and compliance purposes:

o Managing any quality, conduct or risk management issues.

o Meeting regulatory requirements

o Where we are required to or authorised by legislation or industry code, direction or

standard to do so

Holding Personal Information

We hold personal information in both hard copy and electronic formats. In some cases, we engage third parties to host electronic data on our behalf. To exercise data protection, we’re committed to:

•   Train employees in online privacy and security measures.

•   Establish clear procedures for reporting privacy breaches or data misuse.

•   Implement physical controls, such as document shredding, lockable cabinets, site access systems.

•   Implement technological data protection controls such as data encryption, firewalls, frequent backups, access authorisation, multi-factor authentication, intrusion prevention systems, etc.

•   Personal information no longer required shall be destroyed securely.

Sharing Personal Information

We may share your personal information with other parties including:

•   Government or regulatory bodies (for example, the Australian Taxation Office).

•   Nominated superannuation funds.

•   Insurance agencies used by the company.

•   Third party contractors and suppliers that assist us with providing our business processes and products and services.

•   Other parties when you ask us to do so or when you consent to that disclosure.

  Access to Personal Information

It’s important that you make sure the personal information we hold about you is accurate, up to date = and complete. If any of your details change or if you believe that any personal information the company has collected about you is inaccurate you can contact us and we will take reasonable steps to correct it in accordance with the requirements of the Privacy Act.

You can request access to your personal information that we hold about you. To make a request regarding personal information contact refer to the contact details provided below (‘How to contact us’).

Complaints

You can notify us of any complaint you may have about our handling of your personal information via the contact details provided below (‘How to contact us’). Following your initial contact, you will be asked to set out the details of your complaint in writing in a form provided.

We will endeavour to reply to you within 30 days of receipt of the completed complaint form and, where appropriate, will advise you of the general reasons for the outcome of the complaint.

While we hope that we will be able to resolve any complaints you may have without needing to involve third parties, if you are not satisfied with the outcome of your complaint, you can refer your complaint to the Office of the Australian Information Commissioner.

How to Contact Us

If you have any questions in relation to this Privacy Policy or our management of your personal information you can contact the Privacy Officer at  privacy@cromarty.com.au.