Please be assured that we will take reasonable steps to protect Your personal and sensitive information in accordance with the Australian Privacy Principles (APP) and the Privacy Act 1988 (Privacy Act).
Before we get into the detail, we would like to define a few terms that will hopefully make it easier for You to understand this policy:
Collection of personal information
Why we collect personal information
We collect personal information when it is reasonably necessary for one or more of our functions or activities.
When You visit our Website or Platform
When You access our Website or Platform we may collect non-personal information in aggregate form, such as Your browser type, which pages of our site You access and Your IP address. We use this aggregate information to understand how our users use our Website or Platform.
We also use ‘cookies’ which are records of Your interaction with our site that are stored by Your browser. Cookies help make Your browsing experience easier, by for example, remembering the information You previously entered. You can disable cookies through Your browser settings.
Information we may collect
The personal information we will collect about You may include:
How we collect personal information
Wherever possible, we will only collect personal information directly from You (rather than someone else) unless it is unreasonable or impracticable to do.
Incomplete or inaccurate information
We may not be able to provide You with the products or services You are seeking if You provide incomplete or inaccurate information.
In addition to the above conditions of collecting personal information, we will only collect sensitive information about You if we obtain prior consent to the collection of the information or if the collection is required or authorised by law.
Dealing with unsolicited personal information
If we receive personal information that is not solicited by us, we will only retain it, if we determine that it is reasonably necessary for one or more of our functions or activities and that You have consented to the information being collected or given the absence of Your consent that it was impracticable or unreasonable for us to obtain it under the circumstances.
If these conditions are not met, we will destroy or de-identify the information.
If such unsolicited information is sensitive information, we will obtain Your consent to retain it regardless of what the circumstances are.
Integrity of Your personal information
Quality of personal information
We ensure that the personal information we collect and use or disclose is accurate, up to date, complete and relevant.
Please contact us if any of the details You have provided to us change or if You believe that the information we have about You is not accurate or up to date.
Security of personal information
We are committed to ensuring that we protect any personal information we hold from misuse, interference, loss, unauthorised access, modification and disclosure.
For this purpose, we have a range of practices and policies in place to provide a robust security environment. We ensure the on-going adequacy of these measures by regularly reviewing them.
We may hold Your personal information in physical form or in electronic form on computer systems located in Australia or overseas, including with contracted third party technology and ‘cloud’ storage providers.
We take reasonable steps to protect Your information using physical, technical, and administrative security measures to reduce the risks of loss, misuse, unauthorised access, disclosure, and alteration of Your personal information. Safeguards include the use of firewalls and data encryption, physical access controls to the data centres, and information access authorisation controls.
Use or disclosure of personal information
Use or Disclosure
If we hold personal information about You that was collected for a particular purpose (“the primary purpose”), we will not use or disclose the information for another purpose (“the secondary purpose”) unless:
Who we may communicate with
Depending on the product or service You have, the entities we exchange Your information with include but are not limited to:
Our use or disclosure of Your personal information may not be limited to the examples above and may also include us collecting Your personal information from these organisations and individuals.
We will take reasonable steps to ensure that the organisations and individuals that we disclose Your personal information to are bound by sufficient confidentiality and privacy obligations with respect to the protection of Your personal information in compliance with the law.
We may disclose Your personal information when we outsource certain functions, including information technology support. We may also seek expert help from time to time to help us improve our systems, products and services.
In all circumstances where Your personal information may become known to our contractors, agents and outsourced service providers, there are confidentiality arrangements in place. Contractors, agents and outsourced service providers are not able to use or disclose Your personal information for any purposes other than our own.
We take our obligations to protect Your personal information very seriously and make every effort to deal only with parties who share and demonstrate the same commitment to the protection and handling of Your personal information.
Disclosure required by law
We may be required to disclose Your personal information by law e.g. under Court Orders or Statutory Notices.
We will only use or disclose the personal information we hold about You for the purpose of direct marketing if we have received the information from You and You have not requested not to receive such information.
Direct marketing means that we should use Your personal information to provide You with information on our products and services that may interest You.
We may disclose Your personal information to third parties who assist us in providing marketing offers to You.
We will never sell Your personal information to any organisation outside of Stilmark.
You can opt-out of receiving marketing information altogether by contacting us.
Cross border disclosure of personal information
Disclosing personal information to cross border recipients
We will only disclose Your personal information to a recipient who is not in Australia and who is not our entity after we ensure that:
Access to personal information
You have a right to request access to the personal information we hold about You. We will generally be able to meet Your request, subject to certain exceptions under the Privacy Act. We may charge for giving access to personal information and will inform You in advance of any likely charge. If You would like to access Your information, please contact us on the details set out below. Your request will usually receive a response within 5 business days.
In the event that we refuse You access to Your personal information, we will provide You with an explanation for that refusal. These reasons may include:
Stilmark takes reasonable steps to ensure that the personal information we collect, use or disclose is accurate, complete, up-to-date and relevant to the products or services provided to You or the nature of our relationship with You.
If You believe that this is not the case in relation to any personal information we hold about You, You have the right to request that we correct Your personal information. To request correction of Your personal information, please contact us on the details set out below.
Questions or concerns
Resolving privacy concerns
Created / Amended by
Document Review Date
1st July 2020