Console Australia Pty Limited and its related companies (referred to in this document as we, us or our) recognise that your privacy is very important and we are committed to protecting the personal information we collect from you. The Privacy Act 1988 (Cth) (Privacy Act) and Australian Privacy Principles (APPs) govern the way in which we must manage your personal information. This policy sets out how we collect, use, disclose and otherwise manage personal information about you.
Personal Information means information or an opinion about an identified individual, or an individual who is reasonably identifiable:
(a) whether the information or opinion is true or not; and
(b) whether the information or opinion is recorded in a material.
Types of information collected
We only collect such information as is necessary to conduct business with you. We may collect and hold personal information about you, that is, information that can identify you, and is relevant to providing you with the services you are seeking. The kinds of information we typically collect include name, gender, occupation, position, address, contact details like phone numbers and email addresses, and electronic information from your use of our website (see further below). If you are a real estate agent, we may ask for your licence number.
Method of collection
Personal information will generally be collected directly from you through:
- the use of any of our standard forms, over the internet, via email, through a telephone conversation with you; or
- your use of any of our software, social media platforms, online services (including any software-as-a-service or other online portal or platform that we operate) or mobile apps.
We may collect personal information indirectly about you from real estate agents and agencies, or other third parties because it is unreasonable or impractical to collect such personal information directly from you. We will usually notify you about these instances in advance, or where that is not possible, as soon as reasonably practicable after the information has been collected. We may also rely on those third parties to inform you that the information is being collected and provided to us.
Purpose of collection
The personal information that we collect and hold about you, depends on your interaction with us. We use personal information for the primary purpose for which it was collected, or for secondary purposes which are related to the primary purpose if an exception from the APPs applies. Generally, we will collect, use and hold your personal information and business information if it is reasonably necessary for or directly related to the performance of our functions and for the purposes of:
- recording registration information for each product or service you purchase;
- providing products and services to you or someone else you know;
- provide better customer service to you;
- monitoring, auditing and evaluating our products and services;
- performing authorised financial transactions with you and your associated financial institutions;
- providing you with marketing information about other services that we, our related entities and other organisations that we have affiliations with, offer that may be of interest to you;
- facilitating our internal business operations (including modelling data, maintaining our relationship with you, data testing and security);
- analysing our products and services and customer needs with a view to developing new or improved products and services;
- complying with any legal or regulatory requirements; and
- dealing with any complaints or enquiries.
Aggregated data that contains no information specific to a particular person or business may be shared with our business partners, for example, aggregated statistical trends in a particular industry sector.
Failure to provide information
If the personal information you provide to us is incomplete or inaccurate, we may be unable to provide you, or someone else you know, with the products or services you, or they, are seeking.
Use and Disclosure
Generally, we only use or disclose personal information about you for the purposes for which it was collected (as set out above), but also;
- in connection with order fulfilment, product registration and customer service activities;
- as required to exercise or enforce any legal or contractual right we may have against you or any other person; and
- to ensure secure access to Console’s websites, products and services.
We may also disclose personal information about you to:
(a) our related entities to facilitate our and their internal business processes;
(c) our related entities and other organisations with whom we have affiliations so that those organisations may provide you with information about services and various promotions;
(d) third parties who may then contact you for advertising and direct marketing purposes; and
(e) any advertisers of goods or services on the Console website or within our products and services (if any).
In some circumstances, the law may permit or require us to use or disclose personal information for other purposes (for instance where you would reasonably expect us to and the purpose is related to the purpose of collection).
Console needs to be able to contact you about product upgrades and new product releases and to inform you of new services relevant to your business, including special offers. You may, however, notify us at any time that you do not want to receive any marketing communications from Console using the method of opting out which is shown in the communication.
Is my data secure?
We store your personal information in different ways, including in paper and in electronic form. The security of your personal information is important to us. We take all reasonable measures to ensure that your personal information is stored safely to protect it from misuse, loss, unauthorised access, modification or disclosure, including electronic and physical security measures.
Console has implemented strong security measures. All personal information is stored in a secure database which is protected behind firewalls. The information is hosted in such a way the database itself is not accessible to the outside world. Additionally all of your personal and business information, not just sensitive information, is restricted to only those employees who need it to perform a specific task. For example, a customer service representative may need to identify you to inform you of an upgrade.
Console web pages that request certain information or allow transaction processing use the Hypertext Transport Protocol Security (HTTPS) protocol, which allows data to be transmitted in an encrypted form known as Secure Sockets Layer® (SSL). Console encrypts, with 128-bit SSL, all such information. We generally use such information for the purpose of completing your request, but we may also use it for marketing purposes. Although the site itself does not store this information (via cookie or otherwise), the information is eventually transferred to a customer management database not directly linked to our website systems.
You can confirm that a particular Console page is secure by checking that:
(a) the page address in the web browser’s toolbar or status bar begins with “https://”; or
(b) the padlock icon in the web browser’s toolbar or status bar is locked.
Unfortunately, no data transmission over the internet can be guaranteed as totally secure. Whilst Console strives to protect your personal information, we cannot guarantee and cannot ensure complete security of any information that you transmit or provide to us through the internet (including through any mobile app or online service). Accordingly, any personal information or other information that you transmit or provide to us is provided at your own risk.
Destruction and de-identification
We will take reasonable steps to destroy or de-identify personal information if it is no longer needed for any purpose for which it may be used or disclosed.
Where is it stored?
Client data is stored on servers hosted by Console Australia Pty Ltd (or its related entities) or a third party hosting provider.
We may disclose your personal information overseas to third parties (including third party hosting providers) located in the United States, Singapore and Ireland.
If you access our website, we may collect additional personal information about you in the form of your IP address and domain name.
We also use Internet Protocol (IP) addresses to analyse trends, administer our websites, track your navigation among Console web pages and gather broad information for aggregate use. For each visitor to our site, our web server automatically attempts to collect general, non-personally identifiable information. Examples of this type of information include the visitor’s domain name, which pages are visited, and from which site the visitor came.
Our website may contain links to other websites. We are not responsible for the privacy practices of linked websites and linked websites are not subject to our privacy policies and procedures.
Accountability and legislative compliance
Access and correction
You may access the personal information we hold about you by making a written request. We will respond to your request within a reasonable period. We may charge you a reasonable fee for providing access to your personal information (but not for making a request for access).
We may decline a request for access to personal information in circumstances prescribed by the Privacy Act, and if we do, we will provide you with a written notice that sets out the reasons for the refusal (unless it would be unreasonable to provide those reasons).
If, upon receiving access to your personal information or at any other time, you believe the personal information we hold about you is inaccurate, incomplete or out of date, please notify us immediately. We will take reasonable steps to correct the information so that it is accurate, complete and up to date.
If we refuse to correct your personal information, we will provide you with a written notice that sets out the reasons for our refusal (unless if would be unreasonable to provide those reasons) and provide you with a statement regarding the mechanisms available to you to make a complaint.
Complaints and Feedback
If you wish to make a complaint about a breach of the Privacy Act, APPs or a privacy code that applies to us, please contact us as set out below and we will take reasonable steps to investigate the complaint and respond to you. If you are not happy with our response, you may complain directly to the Australian Information Commissioner.
Street address: Level 2, 200 Adelaide Street, Brisbane 4000
Email address: [email protected]
Telephone: AU 1300 131 311 – NZ 0508 641 199
Our Privacy Officer will respond within 30 days to your enquiry or complaint. If you make a complaint to our Privacy Officer but you are not satisfied with the response that you receive, you can telephone the Information Commissioner’s hotline on 1300 363 992 or make a complaint via their website – http://www.oaic.gov.au/about-us/contact-us.
For more information about privacy in general, you can visit the federal Information Commissioner’s website at www.oaic.gov.au.