Metronode Group Pty Ltd (ACN 162527282) and its related bodies corporate (“we”, “us”, “our”) are committed to protecting your privacy. We are required to protect information about you (“personal information”) in accordance with the Privacy Act 1988 (Cth) (the ‘Act’).
2. Collecting Personal Information
- 2.1 We will only collect your personal information using fair and lawful means. If we collect your personal information, we will take reasonable steps to inform you of the purposes for which that information is collected and held.
- 2.2 The kinds of personal information that we collect and hold include:
- (a) contact details such as your name, address, email and phone details;
- (b) information about your employment such as your place of work and position;
- (c) information about your needs, interests and preferences relating to our
- (d) information required for you to purchase our products and services, or otherwise do business with us, including bank account details, credit check information and other financial information;
- (e) records of your communications with us;
- (f) information regarding your access and use of our products and services, and your account payment history; and
- (g) information relevant to your employment application including your work history, forms of identification, and details of your qualifications.
3. How is Personal Information Collected?
- 3.1 We collect personal information when you:
- (a) request information about our products and services;
- (b) interact with our websites;
- (c) place an order for our products or services;
- (d) apply for employment with us;
- (e) request customer service or support;
- (f) apply for credit with us;
- (g) respond to surveys, research and marketing activities conducted by or for us; and
- (h) visit our facilities.
- 3.2 If you cannot provide us with information that we request we may not be able to fulfill the purpose of collection, such as to supply products and services to you, or to assess your application for employment.
- 3.3 Where practicable, we will collect personal information directly from you. If we receive information about you from someone else (for example from someone who supplies goods or services to us), we will take reasonable steps to ensure that you are aware that we have collected personal information about you, and the circumstances of that collection.
- 3.4 At some facilities bio metric systems for controlling access into highly restricted areas are in place. These systems currently use retina or fingerprint technologies.
4. Purposes of collection, holding and use of personal information
- 4.1 We collect, hold and use personal information where it is reasonably necessary for one or more of our functions or activities, including to:
- (a) verify or establish your identity;
- (b) offer relevant products and services to you;
- (c) provide products and services to you;
- (d) obtain products and services from our suppliers;
- (e) respond to enquiries regarding our products and services;
- (f) process and assess employment applications;
- (g) conduct credit checks;
- (h) undertake research and surveys and analyse information;
- (i) inform you of ways in which our products and services may be improved;
- (j) conduct promotions and competitions; and
- (k) comply with our legislative and regulatory obligations.
- 5.1 In carrying out our business, it may be necessary to share your personal information with third parties, including third party suppliers and contractors. These third parties may be based in Australia or overseas. We will take reasonable steps to ensure that those third parties are bound to protect the confidentiality and privacy of your personal information.
- 5.2 We will not disclose your personal information to third parties unless:
- (a) it is necessary to provide you with a product or service requested by you;
- (b) having regard to the nature of the information or the circumstances of collection, you would reasonably expect us to make the disclosure;
- (c) we are required or authorized by government, regulatory authorities, law, or a court or tribunal;
- (d) it is necessary to protect the rights, property, health, or personal safety of any of our customers, any member of the public or our interests, and it is unreasonable or impractical to obtain your consent;
- (e) the disclosure is necessary to assist any entity, body or person to locate a person who has been reported missing;
- (f) we reasonably believe it is necessary to deal with actual or suspected unlawful activity or misconduct of a serious nature;
- (g) the assets and operations of our business are transferred to another person; or
- (h) you have provided your explicit, informed consent.
6. Direct Marketing
- 6.1 Your personal information may be used from time to time for the purposes of communicating marketing material to you.
- 6.2 If you no longer wish to receive marketing material from us, please contact us via the contact details below, requesting to be removed from our mailing lists. You may also use the unsubscribe facilities that may be included in electronic communications.
7. Online Privacy Practices
- 8.1 If you apply for a position with us, your personal information will be used to assess your application.
- 8.2 We may collect personal information about you during the recruitment process:
- (a) directly from you;
- (b) by conducting criminal history, visa, academic and similar formal checks; and
- (c) with your consent, from third parties such as your nominated referees.
- 8.3 Your personal information may be disclosed to third party service providers for purposes such as:
- (a) aptitude, psychometric and medical testing;
- (b) conducting formal and reference checks; and
- (c) other human resources activities.
- 8.4 We may also disclose your personal information to our related bodies corporate for other positions relevant to your qualifications and experience.
- 8.5 If we engage you as a contractor for operational, maintenance or security related work, we may require proof of your qualifications and approvals to carry out that work, including trade tickets, security clearances and work visas (as relevant). If you do not or are unable to provide evidence of those qualifications and approvals requested by us, then we may refuse to engage you to provide work that may require these qualifications or approvals.
9. Data quality
- 9.1 We will take reasonable steps to ensure that personal information held by us is accurate, complete and up to date. However, our ability to do so depends on the information and feedback that you provide to us. Please contact us at the contact details below if you become aware of any error in your personal information held by us, and to inform us of any changes to your personal information.
- 9.2 We will also take reasonable steps to protect any personal information on our networks and information processing facilities from misuse, loss, unauthorized access, modification or disclosure.
- 9.3 Any personal information that is no longer required will be destroyed using appropriate document or data destruction methods.
- 9.4 Where destruction is not appropriate, this information will be changed or aggregated for statistical purposes and handled in such a way that you can no longer be identified.
10. Requesting access to personal information
- 10.1 If you want to know what personal information we held about you, you may contact us via our contact details below. We will endeavor to provide you with details of your personal information held by us within 30 days of receiving your request. We may charge a fee to provide access to your personal information. We will notify you in advance if a fee applies.
- 10.2 In some circumstances, we may deny you access to your personal information held by us, including if:
- (a) we reasonably believe that giving access would pose a serious threat to the life, health or safety of any person, or to public health or public safety;
- (b) providing access would have an unreasonable impact on the privacy of another person;
- (c) the request is frivulous or vexatious;
- (d) the information relates to existing or anticipated legal proceedings between you and us, and the information would not be accessible via discovery in those proceedings;
- (e) providing access would prejudice our negotiations with you or a third party;
- (f) we reasonably believe that granting access would prejudice our ability to deal with actual or suspected unlawful activity or misconduct of a serious nature;
- (g) providing access would be unlawful or contrary to Australian law or an order of a court or tribunal;
- (h) giving access would be likely to prejudice law enforcement activities; or
- (i) giving access would reveal information in connection with a commercially sensitive decision-making process.
- 10.3 If at any time you wish to amend personal information that we held about you because it is inaccurate or out of date, please contact us at the contact details below and we will amend that information in a timely manner.
- 10.4 If you wish to have your personal information deleted, please contact us at the contact details below and we will take reasonable steps to delete it unless we need to keep it for legal reasons.
11. Identifying Individuals
- 11.1 We will not identify individuals using any government-issued identifiers and will not disclose those identifiers unless you consent or if disclosure is required for law enforcement purposes.
- 11.2 Where bio metric information is used to identify or authenticate individuals, those systems will only save the checksum or hash value created from images or information gathered.
12. Storage and Security of Personal Information
- 12.1 We require our employees and any data processors to respect the confidentiality and privacy of your personal information.
- 12.2 We require unattended user equipment within our business to have appropriate protection to prevent unauthorized access, compromise, or theft of information and information processing facilities.
- 12.3 When we no longer need to use your personal information for the purposes for which it was collected, we will take steps to de-identify or destroy it.
- 12.4 We will use appropriate disposal methods when destroying your personal information to prevent, where reasonably possible, unauthorized persons from having access to that information. Disposal methods include but are not limited to secure shredding, multiple passes of digital media upon deletion, and other appropriate disposal techniques appropriate to the classification level of your information.
13. Complaints Handling
- 13.2 We will investigate your complaint and will endeavor to respond in writing within 30 days of receiving that complaint.
- 13.3 If we fail to respond to your written complaint within 30 days of receiving it or if you are dissatisfied with our response, you may have the right to make a complaint to the Office of the Australian Information Commissioner or an applicable regulatory authority.
- 14.1 If you have questions relating to this policy, wish to access the personal information we hold about you, or have a comment or compliant regarding our personal information management policies or activities or compliance with the Act, please contact us at:
Level 17, 60 Margaret Street
Sydney, NSW 2000
T: 1300 569 783
E: firstname.lastname@example.org Version 1.3 – 3 November 2017