This Policy was last revised on [15 May 2020]
1 Your Privacy
This Policy will be updated from time to time. You should review this Policy each time you provide us with personal information.
This Policy does not create any rights or obligations that you can legally enforce against us beyond the rights and obligations provided under the Act.
If you would like further information on this Policy, if you have any concerns over the protection of the information you have given to us or that we have collected from others, or if you would like to gain access to your personal information or correct or update your personal information, please contact our Privacy Officer:
The Privacy Officer
Leisurecom Group Pty Ltd
Phone: 07 5555 1800
2 What is personal information?
Under the Act, personal information is defined to mean information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether the information or opinion is true or not, and whether the information or opinion is recorded in a material form or not.
3 Collecting personal information
We will collect personal information by lawful and fair means and not in an unreasonably intrusive way.
Information may be collected from you, from third parties (e.g. third party service providers whom provide us services or whom engage with us on your behalf), from publicly available sources of information or public records.
Where practicable, we will inform you of the purpose for which we are collecting personal information and will collect personal information about you only from you, from a person authorised to act on your behalf, or with your authorisation.
4 What personal information we may collect
We may collect the following type of personal information from you:
- contact information including your name, email address, facsimile number, telephone numbers, residential or business address(es) and other details;
- identification information including your name, date of birth, current or previous residential or business address(es), and driver's licence number;
- information provided when you send an email or other communication to us;
- information provided when logging onto our websites, mobile applications, or other services;
- information recorded by our server which is sent by your browser or device when it connects to our server. The information provided may include your Internet Protocol (IP) address, cookies, and your browser and device type and language; and
- any other information you provide us.
5 Why we collect and how we use your personal information
We may collect, hold, use, and disclose, personal information to:
- provide you and others with services;
- verify other personal information we may hold from or about you;
- inform you of additional products, services or information which may be of interest to you;
- provide your contact details to our partners who have agreed to provide you with any offers, goods or services (if any);
- develop existing and new products and services;
- maintain and update our business infrastructure and systems;
- promote and advertise our business, products and services;
- for security and occupational health and safety purposes;
- for internal management and administrative purposes; and / or
- comply with any applicable law, regulation, legal process or governmental request.
If we do not collect the personal information we may not be able to provide you with particular products, services, offers or assistance you have requested.
We will not use your personal information for a purpose other than the primary purpose for which it is collected, unless we have obtained your consent to do so, the secondary purpose is related to the primary purpose (e.g. further correspondence from us regarding new products or services related to products and services you have previously obtained from us), or we are compelled by law.
6 Marketing and advertising
If you provide us with endorsements, we use these to promote and advertise our business, products and services.
We may use and disclose your personal information to provide you with information about products or services offered by us or other parties.
At any time, if you no longer wish to receive any additional marketing material from us, contact us in writing and your details will be removed from the marketing database.
We do not keep your personal information for any particular period of time, unless we are required to by law.
7 Disclosure of your personal information
We may disclose your personal information to our subsidiaries and other companies related to or associated with us for the purposes described above.
We may also disclose any personal information we receive (as we deem necessary in our sole discretion) to comply with any applicable law, regulation, legal process or governmental request.
Persons accessing your personal information may include our own and our contractor's affiliates (e.g. employees, agents, consultants, insurers, other advisers etc.), our subsidiaries, advertisers, our partners (who offer services, promotions and products from time to time) and affiliated companies. Some of these people may be located in countries outside Australia.
8 Integrity of personal information
We endeavour to ensure that all personal information that we hold is accurate, complete and up-to-date. To assist us with this, individuals should contact us if any of their personal information changes, or if they believe that the personal information that we have is not accurate or complete.
When personal information that we collect is no longer required by us, we will destroy or de-identify that personal information unless we are required by a law or a court/tribunal to retain the personal information.
We may retain personal information for so long as it is required for any of our business purposes, for the prevention of fraud, for insurance and governance purposes and in our ordinary back-ups and archival records.
9 Security of personal information
We take reasonable steps to protect your personal information from misuse, loss, unauthorised access, modification or disclosure.
However, the open nature of the Internet is such that information exchanged via the Internet may be accessed and used by people other than those for whom the data is intended. Any personal information is therefore sent via the Internet or email at your own risk. You should also be aware that no system is completely secure against attack by malicious actors.
You should contact us immediately if you believe that there has been unauthorised access or disclosure with respect to any personal information that we hold about you.
10 Access to personal information
You are entitled to have access to and seek correction of any personal information that we may hold about you, subject to the grounds for refusal under the Act.
We prefer that requests for access to or to update or correct your personal information to be in writing outlining the details of your request. Such requests should be addressed to our Privacy Officer via the details provided in this Policy.
We do not impose any charge for requesting access to personal information however we may, at our discretion, impose a reasonable charge for giving access to cover staff and copying costs.
We do not impose any charges with respect to requests to update or correct your personal information.
We will take appropriate steps to verify your identity (or verify that you act as an authorised agent of the individual concerned) before granting access to your personal information.
We will respond to your request for access to your personal information within a reasonable time after you make the request and if access is granted, access will be provided within 30 days from your request. If we deny your request, we will provide you with a written notice detailing the reasons for the refusal and the process for making a complaint about the refusal to grant your request.
Where your request for access is accepted, we will provide you with access to your personal information in a manner, as requested by you, providing it is reasonable to do so.
Your request for correction will be dealt with within 30 days, or such longer period as agreed by you. If we deny your request, we will provide you with a written notice detailing reasons for the refusal and the process for making a complaint about the refusal to grant your request. We will accept your request for correction of your personal information where we are satisfied that it is inaccurate, out-of-date, incomplete, irrelevant or misleading.
Upon accepting a request for correction of your personal information, we will take all steps that are reasonable in the circumstances, having regard to the purpose for which your information is held, to correct your personal information.
If we refuse to correct your personal information you have the right to associate with the information a statement that the information is inaccurate, out-of-date, incomplete, irrelevant or misleading. We will take such steps as are reasonable in the circumstances to associate that statement with all records we hold that contain the relevant information.
By providing us with personal information, you consent to:
- our maintaining, using and disclosing your personal information in the way described in this Policy; and.
- any disclosure of your personal information by us overseas on the understanding that if the overseas recipient handles the personal information in breach of the Australian Privacy Principles, the entity will not be accountable under the Act, and you will not be able to seek redress under the Act. The overseas recipient may not be subject to privacy obligations or any principles similar to the Australian Privacy Principles. Individuals may not be able to seek redress in some overseas jurisdictions, and overseas recipients may be subject to a foreign law that could compel the disclosure of personal information to a third party such as an overseas authority.
12 Notifiable data breaches
We will notify you and the Office of the Australian Information Commissioner about any data breach that is likely to result in serious harm to you. There are exceptions where notification is not required, for example where we have already taken appropriate remedial action that removes the risk of serious harm to any individuals, or where there is another party whom has the more direct relationship with you and whom it is more appropriate to provide you with that notice.
If you believe that we have breached the Act you may make a complaint. A written complaint can be emailed or posted to our Privacy Officer using the contact details set out below. Please include contact details for us to contact you regarding your complaint.
Our Privacy Officer will consider your complaint and respond as soon as reasonably possible, but not more than 30 days from receiving the complaint.
If you are unsatisfied with the outcome of your complaint you may refer your complaint to the Office of the Australian Information Commissioner.
14 Further information
If you would like further information regarding your privacy rights, please contact the Office of the Australian Information Commissioner.
Postal address: GPO Box 528
Sydney NSW 2001
Phone: 1300 363 992
Facsimile: +61 2 984 9666