The last update to this document was 9 April 2020.
Propax Pty Ltd ABN 16 101 942 312 trading as Ozpack (Ozpack, we, us, our) is committed to complying with applicable privacy laws in relation to the personal information that we collect in the course of running our business. Where applicable privacy laws provide for exceptions or exemptions, we may rely on those exceptions or exemptions in our information handling practices.
In this document:
We will collect and hold personal information in a fair and lawful manner, and not in an intrusive way. Where it is reasonably practical to do so, we will collect your personal information directly from you. We may collect the personal information you directly give us through some of the following means:
In certain cases we may collect personal information from publicly available sources and third parties, such as our suppliers, clients, contractors and business partners. If we collect personal information about you from a third party we will, where appropriate, request that the third party inform you that we are holding such information, how we will use and disclose it, and that you may contact us to gain access to and correct and update the information.
The types of personal information we collect about you depend on the circumstances in which the information is collected. The type of personal information we may collect generally includes your name and contact details such as phone numbers, email address or postal address, but may include other information relevant to our interactions with you. For example:
If you download or use any mobile applications we make available, or interact with us online (including via Facebook), we may:
We only collect sensitive information about you with your consent, or otherwise in accordance with the Privacy Act. For example, we may collect information about injuries or illnesses you suffered on our premises or after consuming our food products, or you may give us information about a medical condition or disability you have. If you do provide sensitive information to us for any reason, you consent to us collecting that information and to us using and disclosing that information for the purpose for which you disclosed it to us and as permitted by the Privacy Act and other relevant laws.
In addition to the types of personal information identified above, we may collect personal information as otherwise permitted or required by law.
Where you do not wish to provide us with your personal information, we may not be able to provide you with requested goods or services.
As a general rule, we only process personal information for purposes that would be considered relevant and reasonable in the circumstances. The purposes for which we use and disclose your personal information will depend on the circumstances in which we collect it. Whenever practical, we endeavour to inform you why we are collecting your personal information, how we intend to use that information and to whom we intend to disclose it at the time we collect your personal information.
We may use or disclose your personal information:
In general we collect, use and disclose your personal information so that we can do business together and for purposes connected with our business operations. For example, we may we collect, hold, use and disclose your personal information:
We may also disclose your personal information in accordance with any consent you give or where disclosure is authorised, compelled or permitted by law.
If we disclose information to a third party, we generally require that the third party protect your information to the same extent that we do.
If you post information to on our social media profiles, you acknowledge that such information may be available to be viewed by the public. You should use discretion in deciding what information you post on such platforms.
We store personal information as secure physical records, electronically on our offsite server located in Australia, or in cloud storage systems which may be based overseas.
We use a range of security measures to protect the personal information we hold, including by implementing IT security tools to protect our electronic databases.
We will destroy or de-identify personal information once it is no longer needed for a valid purpose or required to be kept by law.
Like most businesses, marketing is important to our continued success. We therefore like to stay in touch with customers and let them know about new offers and opportunities. We may provide you with information about products, services and promotions either from us, or from third parties which may be of interest to you, where:
You may opt out at any time if you no longer wish to receive direct marketing messages from us. You can make this request by contacting our Privacy Officer.
We may use third party vendors to show our ads on sites on the Internet and serve these ads based on a user’s prior visits to our Website. We may also use analytics data supplied by these vendors to inform and optimise our ad campaigns based on your prior visits to our Website.
Our Website may contain links to other websites operated by third parties. We make no representations or warranties in relation to privacy practices of any third party website and we are not responsible for the privacy policies or the content of any third party website. Third party websites are responsible for informing you about their own privacy practices and procedures.
Normally our customers and partners are companies. However, from time to time we may need to collect some information about their employees, officers and directors in order to provide our goods and services.
If you apply for credit from us (for example, when you apply to become a customer or partner), we may collect, hold, use and disclose certain information about you, your company's directors or shareholders, and any person who is to guarantee the credit, including:
We may collect this information from, or disclose it to, credit reporting bodies (CRBs). When applying for credit, you authorise us to share such information with CRBs for the purposes of:
We may also disclose this information:
You can ask a CRB not to use or disclose credit information it holds about you for a period of 21 days (called a 'ban period') without your consent if you believe on reasonable grounds that you have been or are likely to be a victim of fraud, including identity fraud. You agree to us accessing your personal information (including credit-related information) held with a CRB, even if there is a ban period in place, for the purposes of assessing an application for credit or to collect overdue payments.
By law, CRBs may use the credit-related personal information they hold to respond to requests from us or other credit providers to 'pre-screen' you for direct marketing. You can ask a CRB not to do this.
Our collection, handling, use and disclosure of credit-related information is subject to the Privacy (Credit Reporting) Code 2014 (CR Code) as in force from time to time.
You may contact our Privacy Officer (see section 13) to request access to the personal information that we hold about you and/or to make corrections to that information, at any time. On the rare occasions when we refuse access, we will provide you with a written notice stating our reasons for refusing access. We may seek to recover from you reasonable costs incurred for providing you with access to the personal information we hold about you.
We are not obliged to correct any of your personal information if we do not agree that it requires correction and may refuse to do so. If we refuse a correction request, we will provide you with a written notice stating our reasons for refusing.
We will respond to all requests for access to or correction of personal information within a reasonable time.
Some of the third parties to whom we disclose certain personal information (but not credit-related information) may be located outside Australia. The countries in which such third party recipients are located depend on the circumstances. In the ordinary course of business we commonly disclose personal information to recipients located in the United States.
We may also engage overseas recipients to provide services to us, such as cloud-based storage solutions. The use of overseas service providers to store personal information will not always involve a disclosure of personal information to that overseas provider.
By providing your personal information to us, you consent to us disclosing your personal information to any such overseas recipients for purposes necessary or useful in the course of operating our business and agree that APP 8.1 will not apply to such disclosures. For the avoidance of doubt, in the event that an overseas recipient breaches the Australian Privacy Principles, that entity will not be bound by, and you will not be able to seek redress under, the Privacy Act.
We collect personal information relating to prospective employees from third parties, such as recruitment agencies, previous employers and referees, in addition to information provided by the applicant. This may include contact details, qualifications, education history, employment history and feedback from past supervisors and referees. We may we use this information to assess the application and consider making a job offer.
We collect personal information in relation to new and current employees during the course of their employment. In addition to information collected about prospective employees, we may collect:
Under the Privacy Act, personal information about a current or former employee may be held, used or disclosed in any way that is directly connected to the employment relationship. We handle employee information in accordance with legal requirements and our applicable policies in force from time to time.
We take all complaints seriously and will respond to your complaint within a reasonable period. We request that you cooperate with us during this process and provide us with any relevant information that we may need.
If you are dissatisfied with the handling of your complaint, you may contact the Office of the Australian Information Commissioner:
Office of the Australian Information Commissioner
GPO Box 5218, Sydney NSW 2001
Telephone: 1300 363 992
The contact details for our Privacy Officer are as follows:
Postal address: Level 16, 644 Chapel Street, South Yarra Victoria 3141