The non legal bit.
The Australian Privacy Act 1988 and Australian Privacy Principles regulate how personal information is handled. The current definition of Personal Information is:
…information or an opinion, whether true or not, and whether recorded in a material form or not, about an identified individual, or an individual who is reasonably identifiable.
This creates a bit of a headache for companies like us who need business-related personal information. In fact, one of the Frequently Asked Questions (FAQ) on the government privacy website is “Can I use my customer database to send a customer a Christmas Card” and is answered “Yes, so long as it is within the customer’s reasonable expectations.”
If your employer has signed up to any of our Services, we may have had to collect a bit more information about you, but we are only interested in your business-related personal information. Business-related personal information includes things like your job title, your business email address, your business postal address, your business phone number etc. Actually, most people want this type of personal information distributed far and wide. This is why we print business cards and add signatures to the bottom of emails.
As we deal in compliance, we also collect things like licences which may contain some Personal Information. For compliance and regulatory purposes, your Personal Information may not be removed because someone may need to verify who the licence holder is. An example of this a photograph of yourself.
We stress that we don’t want to collect information just for the sake of it. We only hold Personal Information that is needed. Things like your signature, personal phone number, dates of birth, bank account details, blood group, tax file number etc. are not collected unless specifically needed for compliance purposes. However, Governments do keep changing the rules so we cannot guarantee that this will not change!
- we will do everything we can to keep your Personal Information private; except where your employer has to share your personal information with their trading partners for regulatory/compliance purposes.
- we promise not to profit from your personal information by selling it to unrelated third parties; we will however use anonymised information so we can sell advertising space. We have to pay for all the products and services and information we provide for “free”
- you agree to let us communicate with you electronically; for instance, we may send you a newsletter, tell you about a change to our Website or our Services or tell you about changes to the system and new features.
Now for the legal stuff…………
Rights to privacy
Strytex Pty Ltd ACN 138 521 132 and all related corporations (“Strytex, we, us or our“) understand the importance of protecting an individual’s rights to privacy. We have prepared this policy to help you understand how we aim to protect the privacy of your Personal Information and the Personal Information of others, obtained through the use of our Website, our Portal and our Products and Services.
Definitions for capitalised terms not found in this policy are located in the Strytex Definition of Terms and should be read in conjunction with this policy.
- Website Services that we provide from our website – strytex.com (“Website”)
- Products and Services that we provide via the Strytex portal (“Portal“).
This policy describes the way Strytex collects information from all users of our cloud-based Website Services, our Products and Services, and our Managed Services (collectively referred to as the “Services“).
Users of our Services include (i) Member organisations and Source organisations through their Employees, (ii) individuals who use our Website Services (“Subscribers“), and (iii) other individuals who access our Website but who are not Employees or Subscribers (“Visitors“). Below we explain what we do with the information we collect and the choices Employees, Subscribers and Visitors have concerning the collection and use of this information.
For further information, please contact email@example.com
Personal Information Strytex Collects and How It Is Used
By necessity, authorised Strytex Staff have full access to all information on the platform.
Personal information provided by Visitors and Subscribers to the Website
Responses to Email Enquiries
If you are a Visitor, or Subscriber or Member Staff and you send an email enquiry to Strytex or a Member via their Company Profile page, your return email address will be used to answer the email enquiry.
Where the enquiry is addressed to Strytex, Strytex does not use this return email address for any purposes other than responding to the request and setting up your details on our CRM system. We do not share this information with any third party unless this is agreed otherwise in writing. Please note that we do log your information on a third party CRM application to which we subscribe. This information is not shared with this organisation but in the interests of full disclosure, we have listed it below.
If you need to fill in a form to access information on our website, we may request information such as your name, job title, organisation, email address and other information. If you make repeated requests, we may contact you to ascertain if you wish to subscribe to one of our Website Services or Professional Services.
Registration to Website Services
- Our e-newsletter: We regularly send out our newsletter to subscribers (but not more than monthly). You may subscribe to this service by providing a name, organisation and email address. You may choose to provide a pseudonym or first name rather than your own full name. Email addresses will be used to deliver our newsletter to you, and from time to time other information related to our Services that we think you may find interesting.
- Our Blog: You may subscribe to our Blog by providing your email address. If you choose to participate in the Blog you are also required to provide a name. You may choose to provide a pseudonym or first name rather than your own full name. Using the email address you provide we may deliver to you from time to time other information related to our Services that we think you may find interesting.
- Voluntary Customer Surveys: We may periodically conduct online surveys. As these are voluntary, we are grateful when you participate because these surveys provide us with important information that helps us to improve the types of services we offer and how we provide them to you. Your Personal Information and responses to these surveys will remain strictly confidential, even if the survey is conducted by a third party.
We may take the information you give us and combine (or aggregate) it with the responses of other respondents we may have, to create broader, generic responses to the survey questions (such as gender, age, residential postcode, employment, industry sector, or other demographic information). We may then use the aggregated information to improve the quality of our services to you and to develop new services and products. This aggregated, non-personally-identifying information may be shared with third parties.
We also may undertake industry-wide surveys and again, we may take the information you give us and combine (or aggregate) it with the responses of other respondents to create broader, generic responses to the survey questions. As a result, we may produce an industry report or article that updates everyone with the responses to the questions posed. Please be aware that whenever we conduct a survey like this, you will be notified on the first page of the survey and, if you provide us with your contact details at the end of the survey, you will be provided with a copy of the report.
Third Party applications which we useAdd Your Heading Text Here
By providing us with your Personal Information to receive Website Services, you consent to our disclosure of this information to the Third Party applications listed above to help us provide the Subscriber Services, which means that Australian Privacy Principle 8.1 will not apply and you agree that we do not have to take reasonable steps to ensure that this information is treated in accordance with the Australian Privacy Principles.
Personal Information provided by Member organisations as part of Professional Service
Member organisations join Strytex Professional Services so they can manage their internal business information and share this information with their trading partners. To do this, each Member gets a secure Member Site on which to store Member Information. This Member Information is business information about a Member, which may include amongst other things some business-related Personal Information about Member Staff – names, roles, business contact details, professional licences etc. So this may include your Personal Information.
Here are some key points
- In general, Personal Information collected and stored within a Members Site is not publicly available and is only viewable by the Member’s authorised staff and authorised staff of Linked Members.
- If you are the Member Administrator for your secure site, you have the ability to set both internal and external access permissions for each document, which may or may not contain the Personal Information of your co-workers.
- Authorised Strytex support personnel can view all Personal Information.
Sharing Personal Information within a Member organisation
If you are a Member Nonuser and you want to obtain the details of your personal information stored on your employer’s Member site, please contact your member Administrator. If you cannot find out who this is, feel free to contact us and we will do our best to help. Our contact details are at the bottom of this document.
Sharing Personal Information on the Company Profile page
If you are a Member Nonuser, your Personal Information should never be displayed on the Company Profile Page.
If you are a Member Administrator, Member User or Member Exec, you can choose to display some of your Personal Information, e.g name, job title, contact details, etc. on your Member’s Company Profile page. Under the personal settings, you have complete control over what is and what is not displayed, however, in the interests of privacy and anti-spamming, the Company Profile page does not display email addresses. Strytex hides these behind a “Contact Me” button.
Please note that the Company Profile Page may be accessed by (i) other Members and their authorised staff via the Portal and (ii) by the public via any search engine.
Sharing Personal Information with Linked Members
Members link with their customers, suppliers, contractors and other business partners in order to share compliance and other documents. Only Authorised Member Staff from Linked Member organisations may use and view the information on your Member’s Site. As some of this business information may include your staff compliance-related documents, your employer may already be sharing Personal Information with their trading partners, it’s just done manually right now.
Here are some key points
- Only your Member Administrator (or Strytex staff if authorised by a nominated Executive or Member Administrator) can create a link with another Member.
- By default, all documents are loaded with external permissions set so that no linked Members can access the document. Access permissions have to be individually activated for each document. Your Member Administrator (or Strytex staff if instructed by a nominated Executive or Member Administrator) has control over these access permissions.
Third Party Websites
In addition to our Website, which we control directly, we also use and provide links to websites that are controlled by third parties, including Facebook, Twitter, Linked In, Google, so users can share information they find on our Website, and YouTube, so users can access Strytex newsfeeds and other streaming information.
If you use or follow a link to any of these third-party websites, please be aware that these websites have their own privacy policies and that we cannot accept any responsibility for how they use information obtained about you from your use of their website. It is your responsibility to read and understand the privacy policies of these entities.
It is Strytex’s policy not to use or share Personal Information about you except as described above without also providing you with an opportunity to opt-out from the unrelated use.
However, we may disclose Personal Information about you, or information regarding your use of the Services or Websites accessible through our Services, for any reason if, in our sole discretion, we believe that it is reasonable to do so. Such a reason may include:
- where we have a regulatory or legal obligation to do so; or
- to operate the Services effectively; or
- to protect Strytex, Strytex Members, Strytex Users, Subscribers, and Visitors.
Unless expressed otherwise in this policy, where we use third-party service providers to provide services to Strytex that involve data processing (eg archival, auditing, professional advisory – including legal, accounting, financial and business consulting, technology, website, research, banking/payment, data processing and security services), we require the service providers to handle your Personal Information in accordance with the Privacy Act 1988 (Cth) and Australian Privacy Principles.
Please remember that any information you may disclose in any public areas of our Website, Third Party applications we use or the Internet becomes public information. You should exercise caution when deciding to disclose Personal Information in these public areas. We accept no responsibility for your participation in a public forum.
Strytex Commitment to Data Security
Our Portal and Website have reasonable security measures in place to protect the loss, misuse, and alteration of Personal Information under our control. While we make every effort to ensure the integrity and security of our network and systems, we cannot guarantee that our security measures will prevent third-party “hackers” from illegally obtaining this information.
You can help us to keep your information secure. Please remember that any user name or password in relation to our Website is personal to you and should not be made available to any other person. You should stop using your username and password and notify us immediately if you suspect that someone else may be using them.
Status of this policy
Verifying Your Personal Information
If at any time you would like to verify your personal details, or would like more information on our approach to privacy, please contact us at the address below.
Please direct all privacy complaints to our privacy compliance officer. A privacy complaint relates to any concern or dispute that you have with our privacy practices as it relates to your Personal Information. At all times, privacy complaints will be treated seriously, dealt with promptly, and in a confidential manner. If you are unsatisfied with the outcome of your complaint, you may refer your complaint to the Australian Privacy Commissioner on 1300 363 992 or email firstname.lastname@example.org.
Strytex Privacy Officer Contact Details
By email: email@example.com
Confidential – Privacy Officer
Strytex Pty Ltd
PO Box 383