DCA supports privacy protection as a fundamental part of its business and is committed to maintaining the highest standards of data integrity and security.
DCA is bound by the Privacy Act 1988 (Cth) (the Privacy Act), the Australian Privacy Principles (APPs) as well as other applicable laws protecting privacy. This policy describes how DCA collects, uses, holds and discloses personal information.
DCA means Sarb Management Group Pty Ltd trading as Database Consultants Australia, IncNet or PayStay, and includes ResearchMaster Pty Ltd, DCA Technologies Pty Ltd and DCA Cities Pty Ltd.
DCA Businesses means the divisions of DCA that cater to specific market sectors and includes Cities, PayStay, Data Services, IncNet and ResearchMaster.
personal information means information or an opinion about an identified individual, or about an individual who is reasonably identifiable.
You consent to us collecting, holding, using and disclosing your personal information in accordance with this policy.
WHAT PERSONAL INFORMATION DO WE COLLECT
DCA collects information about you and your interactions with us when you purchase or use any of DCA’s products or services, call us or visit DCA’s website(s). That personal information may include, but is not limited to, your name, email address, phone number, physical address, date of birth, occupation and company details, and, as required in the course of business, financial information.
DCA Businesses have separate privacy policies which detail the way each division collects and handles personal information in the delivery of their services. The separate privacy policies are either available on DCA’s website (https://data.com.au/privacy-policy/) or on request.
WHY WE COLLECT, HOLD AND USE PERSONAL INFORMATION
DCA collects, holds and uses personal information only for the purposes for which it was collected which are directly related to the functions and activities of DCA Businesses (or a directly related secondary purpose which you could have reasonably expected), including:
- processing personal information on behalf of DCA’s clients;
- maintenance of the quality of the databases of DCA Businesses;
- provision of business information in the IncNet database to IncNet clients for marketing purposes;
- to provide you with products and services, or manage our relationship with you;
- contacting or responding to you, or if we need to tell you something important; or
- complying with our legal obligations.
If you do not provide us with your personal information we may not be able to provide our services to you, or communicate with you, or respond to your enquiries.
HOW WE COLLECT YOUR PERSONAL INFORMATION
We will collect your personal information directly from you when you interact with us and when we interact with you on behalf of our clients. DCA also processes personal information collected by its clients on behalf of those clients.
DCA collects personal information which is used by DCA to maintain the databases of DCA Businesses. An individual may opt out of receiving further contact or request access to their information (see below).
HOW WE STORE AND HOLD PERSONAL INFORMATION
DCA employs security procedures to protect information from misuse, interference or loss, unauthorised access, modification or disclosure. DCA supplies data only to authorised users who have contracted to provide an appropriate level of data security.
DCA maintains stringent updating procedures to ensure that data is accurate, complete and up-to-date.
DCA has PCI DSS Level 1 certification and adheres to a comprehensive set of requirements to enhance cardholder data security which ensures the safe handling and storage of sensitive customer credit card information.
DCA will also take reasonable steps to destroy or de-identify personal information once we no longer require it for the purposes for which it was collected or for any secondary purpose permitted under the APPs.
WHO WE DISCLOSE YOUR PERSONAL INFORMATION TO AND WHY
Where relevant and in accordance with DCA’s legal and compliance obligations, DCA may transfer or disclose your personal information for the purposes for which it was collected and any directly related purpose, to its related companies or to external service providers so that they may perform services for us or on our behalf.
DISCLOSURE TO OVERSEAS RECIPIENTS
We may engage overseas service providers, such as email providers and “cloud” data services, in the course of providing the websites, and our services to you. The location of these service providers may vary.
In the event that personal information must be disclosed overseas other than as described above, we will endeavour to obtain consent from you. Where required by the privacy principles, we will take reasonable steps to ensure that an overseas recipient does not breach the relevant privacy principles under the Australian Privacy Act 1988 (Cth).
USE OF YOUR PERSONAL INFORMATION FOR MARKETING
Where relevant to the particular DCA Business, DCA or related companies, business partners, clients or service providers (offeror) may use your business contact information which may contain personal information to offer you products and/or services we or they (as applicable) believe may interest you, but not where you tell the offeror not to contact you.
Where you receive electronic marketing communications from us, related companies, business partners, clients or service providers, you may opt out of receiving further marketing communications by following the opt out instructions below.
COOKIES AND IP ADDRESS TRACKING
ACCESS TO AND CORRECTION OF YOUR PERSONAL INFORMATION
You may access or request correction of the personal information that we hold about you by contacting us by email at email@example.com. We may require you to meet our reasonable costs in providing you with access in the event that we incur such costs (e.g. photocopying costs or costs for time spent on collating large amounts of material). There are some circumstances in which it may not be possible for us to provide you access to your personal information or an exemption under the Privacy Act may apply. For instance, we may not provide access to information if disclosing that information would impact on the privacy of another individual. Where we will not provide access to personal information held about an individual, we will tell the individual why.
You can opt out of receiving further marketing communications at any time by contacting us by email at firstname.lastname@example.org. You agree that even if you opt out of receiving marketing communications we may still be required to send you essential information that we are legally required to provide relating to the services we provide. You acknowledge and agree that removal from our distribution lists may take several business days after the date we receive your request for removal.
If you have a complaint about the way in which we have handled any privacy issue, we will consider your complaint and determine whether it requires further investigation. We will endeavour to notify you of the outcome of this investigation within a reasonable period of time. If you are unsatisfied with the way we have handled a privacy issue, you may contact the Office of the Australian Information Commissioner (www.oaic.gov.au).
Attention: Privacy Officer
Level 6, 30 Convention Centre Place,
South Wharf VIC 3006
CHANGES TO THIS POLICY
DCA may change its policy on how it handles personal data from time to time. Any changes to our policy will be published on our website.