ASCC Privacy Policy
Purpose and Scope
The Privacy Policy implemented by ASCC extends to and covers all operations and function of the organisation. All management, employees, contractors, sub-contractors, vendors, service providers, customers, agents or any other third parties that have access to and/or utilise personal information collected and/or held by ASCC must abide by this Privacy Policy.
The objective of the Privacy Policy is to ensure that a sound privacy foundation and framework is established and maintained by ASCC and the company complies with the relevant Privacy legislation – Privacy Amendment (Enhancing Privacy Protection) Act 2012, Privacy Regulations 2013, Privacy and Personal Information Protection Act 1998 (NSW) and any other privacy acts/laws within the countries we have a presence.
Ownership of Personal Information
All personal information collected, held or shared by ASCC must be done so in accordance with this Privacy Policy. ASCC retains the right to take reasonable steps to ensure that its Privacy Policy is properly adhered to.
In every department or function of ASCC where personal information is collected, the person to whom the information is given or the application is addressed is responsible for ensuring compliance with this Privacy Policy.
It is the responsibility of all employees and other relevant parties to ensure that they understand and adhere to the Privacy Policy implemented by ASCC and that they maintain up-to-date knowledge of changes or any new privacy policies and procedures.
Ignorance of the existence of any privacy policies and procedures will not be an acceptable excuse for non-compliance.
Contractual Arrangements
ASCC will ensure that all contractual arrangements with third parties adequately addresses privacy issues.
Collection of Information
Collection of personal information by ASCC will be reasonable, lawful and not intrusive. A person from whom personal information is requested must be told:
• the company’s name (if external to the company)
• the purpose of collection
• that they can get access to their personal information in order to check its accuracy; and
• what will be done with the information
Use and Disclosure
ASCC will only use or disclose information for the purpose for which it was collected unless the person has consented, or the secondary purpose is related to the primary purpose and a person would reasonably expect such use or disclosure, or the use is for direct marketing in specified circumstances and with the permission of the person, or in circumstances related to public interest such as law enforcement and public or individual health and safety.
Data Security
ASCC will take all reasonable steps to protect the personal information it holds from misuse and loss and from unauthorised access, modification or disclosure.
Access to Personal Information
Any person who has provided personal information to ASCC for whatever reason may gain access to that information by contacting privacy@ascc.net.au.