This Policy details how Indigo Bridge and its associated entities collects, uses, discloses and stores the personal information about its clients, potential clients, suppliers, employees, prospective employees, subcontractors, prospective subcontractors and others.
The policy details how we comply with the Privacy Act, including the APPs which regulate how we collect, use, disclose and store Information.
This Policy does not apply to the collection or use of Information about corporations.
If you would like a hardcopy of this Policy, please contact our Privacy Officer by email to [email protected]
1.1. APPs means the Australian Privacy Principles introduced under the Privacy Act.
1.2. Information is used in this Policy to describe Personal Information and Sensitive Information collectively.
1.3. Personal Information means information or an opinion about an identified individual, or an individual who is reasonably identifiable:
1.4. Privacy Act means the Privacy Act 1988 (Cth) as amended from time to time.
1.5. Sensitive Information is defined in the Privacy Act to include things such as race, sexual orientation, political opinions, members of a trade association or trade union, criminal record or health information.
2.1. Personal Information
Personal Information that we collect and hold is information that is reasonably necessary for the proper performance of our functions and activities as a supplier of management consulting services.
While the type of Personal Information we collect and hold may vary depending on the nature of our interactions with you, generally it will include the following:
2.2. Sensitive Information
We may at times, subject to this Policy, also collect and hold Sensitive Information.
We collect Information only by fair and lawful means where it is reasonable and practicable to do so. We do so in order to conduct our business, to provide accurate information to you, to market our services and to meet our legal obligations.
If you do not provide us with Information we reasonably request, we may not be able to provide the requested services in the most efficient manner possible, or at all. We also may not be able to provide you with the information about the services that you may want.
3.1. How we Collect Information
3.1.1. We collect Information that you provide:
3.1.2. We also collect Information provided by third parties when it is necessary for a specific purpose, such as checking Information that you have given us or where you have consented, or would reasonably expect us, to collect your Information in this way.
If it is unclear to us whether you have consented to the collection of Information from a third party, we will take reasonable steps to contact you to ensure that you are aware of the reason and purpose of the collection.
If we collect Information from a third party, if it is reasonably possible we will inform you that the Information has been collected and the circumstances of the collection.
3.1.3. We will also collect Information about you if we are required to do so under an Australian law. If so, we will inform you of this, including details of the law requiring the collection.
3.1.4. We may also collect Information about you from a range of publicly available sources including newspapers, journals, directories, the internet and social media sites.
3.2. Internet Usage
It is important that you understand that there are risks associated with use of the internet and you should take all appropriate steps to protect your Information. You can contact us by email or telephone if you have concerns about making contact via the internet.
3.3. Unsolicited Information
Where we receive unsolicited Information about you, we will check whether that Information is reasonably necessary for our functions. If it is, we will handle this Information in the same way we do other Information we seek from you. If not, we will destroy or de-identify it.
4.1. Personal Information
We may use and disclose your Personal Information for the primary purpose for which it is collected, for reasonably expected secondary purposes which are related to the primary purpose, and in other circumstances authorised by the Privacy Act. In general, we use and disclose your Personal Information to:
4.2. Sensitive Information
We will not collect Sensitive Information about you unless:
4.3. Overseas Disclosure
We may also disclose Information to certain overseas recipients. Before disclosing Information to an overseas recipient, we will take reasonable steps to ensure that the overseas recipient does not breach the APPs with respect to the Information.
We may use and/or disclose your Information in order to:
Only with your express consent will we use or disclose Information about you for the purposes of direct marketing. You can ask us not to do this at any time by writing to our Privacy Officer by email to [email protected].
We will not sell your Information.
Personal information collected by us is stored on on-site physical servers or on-line cloud based third party data storage providers. We take reasonable steps to protect your Information against misuse, interference, loss, unauthorised access, modification and disclosure. The protective steps we take include:
We aim to ensure that the Information we hold is accurate, complete and up-to-date. We encourage you to contact us in order to update any Information we hold about you by contacting our Privacy Officer on [email protected].
If you contact us regarding an apparent inaccuracy in relation to your Information and we are satisfied that the Information is inaccurate, out-of-date, incomplete, irrelevant or misleading, then reasonable steps will be taken to correct the Information within 30 days, or a longer period as we agree with you in writing.
We will not charge you for a correction.
If we determine that the correction is not required, we will provide you with written notice stating the reasons why the correction was not made and refer you to our complaints procedure.
If a correction is made to any Information that was previously disclosed to a third party, as long as it is reasonable to do so, we will give each such recipient written notice of the correction within a reasonable period. We will also notify you that the correction has been made.
You are entitled to access your Information held by us.
If you wish to access your Information, you must lodge a request for access by contacting our Privacy Officer by email on [email protected].
We may charge a fee to cover our reasonable costs in meeting an access request. You will be provided with access to your Information within 30 days of the request (unless unusual circumstances apply).
We are not required to give you access to your Information if:
If we do not give you access to your Information you will receive written notice that explains the reason for the refusal.
Complaints about alleged breaches by us of the Privacy Act, the APPs or this Policy can be made by contacting our Privacy Officer by email on [email protected]. If you do not consider that your complaint has been adequately dealt with by us, you may make a further complaint to the Office of the Australian Information Commissioner, which has complaint handling responsibilities under the Privacy Act.
This Policy will be reviewed from time to time to take account of new laws and technology, changes to our operations and practices and the changing business environment.
The most current version of this Policy will be uploaded to our website at www.indigobridge.com.au or can be obtained by contacting our Privacy Officer on [email protected].
If you have any questions about privacy-related issues please contact our Privacy Officer on [email protected].
For further information about privacy and the protection of privacy please visit the Office of the Australian Information Commissioner’s website at www.oaic.gov.au.