Effective Date: 15th October 2018
OUR PRIVACY COMMITMENT TO YOU
WHAT IS YOUR PERSONAL INFORMATION?
WHAT PERSONAL INFORMATION DO WE COLLECT?
We will need to collect certain personal information from you in order to establish and maintain your user account and your Navag8 Goals Account. The personal information we collect from you may include:
- identification information such as your name, date of birth, phone number, residential, postal and email addresses, gender, occupation and tax file number;
- information about your financial circumstances and objectives, including your assets, liabilities, income, expenditure, taxation information, insurance, superannuation and investment preferences, spending activity and financial history;
- financial account information, including your bank account details and credit or debit card numbers that link to your user account;
- information about transactions that you make from bank accounts or credit/debit cards linked to your user account;
- statistical information regarding you use of the App including your IP address and the date, time and duration of your use of the App; and
- any other information that you choose to provide to us through your use of the App.
HOW DO WE COLLECT YOUR PERSONAL INFORMATION?
Where possible we will collect personal information directly from you, however in certain circumstances it may be necessary to collect information about you from third parties. If we receive information about you from someone else we will take reasonable steps to make you aware of the facts and circumstances of that collection.
We may collect your personal information in a number of ways including:
- when you voluntarily provide it to us, such as when you register to use the App, or when you retrieve your login information or request a new password;
- when you contact us directly by email, phone, post or via the App or where you request that we contact you in one of these ways;
- when you enter, import or upload data into the App via your user account;
- when you use the App;
- when you sign up for or request that we send you newsletters, alerts or other materials or when you participate in promotions or competitions run by or with the support of Navag8;
- from banks and other financial institutions with whom you have accounts. In these circumstances we may use trusted third parties such as Basiq Pty Ltd (https://basiq.io/) to collect this information on our behalf; and
- from our trusted commercial partners and other third parties that we have relationships with.
You may choose to deal with us on an anonymous basis or using a pseudonym. However, you acknowledge that if you do not provide us with the information we request, or if the information you provide to us is not accurate, our ability to provide the App, or to otherwise fulfil the purpose for which you have provided your information may be severely limited.
WHAT HAPPENS IF WE RECEIVE UNSOLICITED PERSONAL INFORMATION?
WHY DO WE COLLECT YOUR PERSONAL INFORMATION?
We may use your Personal Information:
- to provide you with the App and other products and services you request;
- to assist with your questions about our services, billing (where relevant), payment methods (where relevant), or use of the App;
- to process or collect payments made in connection with the App;
- to carry out our obligations to you under our Terms of Service;
- to maintain and develop our relationship with you;
- to evaluate our services and products and to conduct surveys;
- to improve our services via internal research and development;
- to maintain and update our records including our database of contacts;
- for our business purposes, including data analysis, detecting, preventing, and responding to actual or potential fraud, illegal activities, or intellectual property infringement;
- to comply with our legal obligations, respond to legal process or requests for information issued by government authorities or other third parties, or to protect your, our, or other parties’ rights.
We may use your personal information to send you marketing material via email including information about updates to our App or other services we offer if we have your permission or a legitimate interest in doing so.
If you don’t want to receive emails from us, you can follow the ‘unsubscribe’ instructions that appear at the bottom of all emails we send. Otherwise, you can always contact us at firstname.lastname@example.org to update your contact preferences.
WHEN WILL WE DISCLOSE YOUR INFORMATION TO THIRD PARTIES?
The information we collect from you will be kept strictly confidential and secure at all times. Where it is necessary to disclose your personal information to third parties this will be done in a manner that is consistent with the APPs and only for a purpose consistent with the purpose for which the information was originally collected from you.
Importantly, we will not give, sell, rent, loan or otherwise disclose any personal information to any third party, unless:
- you would reasonably expect us to disclose the information in order to provide the service in respect of which the information was originally collected;
- you have authorised us to do so;
- such sharing is provided for under contract, including under our Terms of Service;
- we are legally required to do so, for example, in response to a subpoena, court order or other legal process;
- we need to enforce or apply our Terms of Service to which you have agreed (or other terms that have been agreed to apply to our relationship with you);
- it is necessary to protect the rights and interests, property, or safety of Navag8, our clients or others;
- our agents or contractors who assist us in providing our services require such information, for example in fulfilling requests for information, receiving and sending communications, updating marketing lists, analysing data, providing support services or in other tasks from time to time. Our agents and contractors will only use your information to the extent necessary to perform their functions;
- all, or most, of the assets of Navag8 or any single business unit within the Navag8 are merged with or acquired by a third party, or we expand or re-organise our business, in which case your personal information may form part of the transferred or merged assets; or
- for any other purpose authorised by law.
However, we may in certain circumstances use, sell, licence, reproduce, distribute and disclose aggregated, non-personally identifiable information derived through your use of the App to third parties for research, marketing and other purposes.
DO WE DISCLOSE YOUR PERSONAL INFORMATION OUTSIDE AUSTRALIA?
Where you are submitting personal information from within Australia, such information may be transferred outside Australia. If we transfer your information to third parties outside Australia, we will take steps to ensure that your privacy rights continue to be protected and ensure that these third parties are either covered by data privacy laws substantially similar to those in Australia or the relevant third party adheres to data privacy standards substantially similar to the APPs.
HOW IS YOUR PERSONAL INFORMATION PROTECTED AND HOW LONG IS IT KEPT?
We employ a variety of security technologies and measures designed to protect your information from unauthorised access, use, or disclosure. For example, we use data encryption, firewalls and other security devices for our computer systems and cloud-based services. All of your personal information is stored on secure servers in controlled facilities.
In addition, we have procedures that limit the access our employees and contractors have to your personal information. Only those people with a genuine need to know will have access to such information. We educate our employees about the importance of confidentiality and privacy through standard operating procedures and internal policies on data privacy and corporate integrity.
Your information is kept while we need it to provide the services that you have requested from us and where applicable, for as long as we are required to keep it to comply with relevant statutory requirements. Where we determine that it is no longer necessary to hold you personal information we will securely destroy, delete or permanently de-identify that information to the extent it is possible to do so.
If we become aware of unauthorised access to or disclosure of your personal information we will take appropriate steps to rectify the data breach and notify you as soon as practicable and provide you with a description of the breach, the type of information involved and any recommended actions you can take to protect yourself.
HOW CAN YOU ACCESS YOUR PERSONAL INFORMATION?
If at any time you want to know exactly what personal information we hold about you, you can request access to your record by contacting us at email@example.com. We will need to confirm your identity before allowing you to access to your personal information.
We may refuse to allow you to access your personal information where:
- access would pose a serious threat to life or health of an individual;
- access would have an unreasonable impact on the privacy of others;
- the request is frivolous or vexatious;
- the information relates to a commercially sensitive decision making process;
- access would be unlawful;
- access would prejudice enforcement activities relating to criminal activities and other breaches of law;
- access relates to existing or anticipated legal proceedings; or
- denying access is required or authorised by or under law.
If we cannot provide you with access to your information, we will advise you of the reasons in writing.
WHAT IF YOUR INFORMATION IS INCORRECT?
We take reasonable steps to ensure that the information we collect, use or disclose is accurate, complete and up to date. You can correct your personal information by logging into your user account and updating your own information. If you are unable to login into your user account, or cannot correct your information once logged in, then please contact us at firstname.lastname@example.org and we will amend the record for you.
If we become aware that the personal information we hold about you is out of date or inaccurate, we may correct the information ourselves or ask you to review and correct your information. It is important that you help us by keeping your contact details up to date.
REQUESTING FURTHER INFORMATION AND MAKING A COMPLAINT
If you think we have breached any of our privacy obligations, or you wish to make a complaint about the way your personal information has been handled, you can contact us by email at email@example.com. So that we can respond to you, please clearly describe your complaint and include your name, email address and/or telephone number for our reply. Your complaint will be considered by our management team, and an acknowledgement and response to your complaint will be provided to you within a reasonable period of time.
If you think that we have failed to resolve the complaint satisfactorily, you may refer the matter to the Office of the Australian Information Commissioner:
Mail: GPO Box 5218, Sydney, NSW 2001
Phone: 1300 363 992
For more information on your privacy you can visit www.oaic.gov.au