Privacy is important, especially when you consider the number of ways we communicate and interact these days. That’s why we’ve put together this statement. It explains how we collect, hold, use and disclose your personal information and who we share it with.
When we say ‘we’ or ‘us’ we mean Vendimia Pty Ltd ACN 604 462 231 ABN 92 604 462 231.
- What is “personal information”?
- When do we collect personal information?
- Do we collect personal information via websites?
- How do we use the personal information we collect about you?
- How do we check the quality of personal information?
- Who sees your personal information?
- Do we use your personal information for marketing?
- How do we keep your personal information safe?
- How can you see the personal information that we hold about you?
- How can you correct your personal information?
- What can you do if you have a question, problem or complaint about our use of your personal information?
What is “Personal Information”?
Personal information is information or an opinion about an identified individual or an individual who is reasonably identifiable.
When do we collect Personal Information?
- We collect Personal Information about individuals directly from those individuals or their authorised representative.
- When you interact with us, we may collect Personal Information, such as names, contact details and other relevant information. Some instances of this are when you:
- apply for access to our website
- use products or services
Contact us by telephone
- register for or attend seminars, presentations, meetings, webinars or our premises
- complete electronic, verbal or paper based registrations, feedback, surveys, promotions, emails, instructions or enquiry forms
- subscribe to a publication, newsletter or mailing list
Apply for a job or volunteer your services provide information voluntarily
- We do not collect Sensitive Information without your consent and then only if it is reasonably necessary for one or more of our activities, for example for establishing access to the vendimia.global website, for arranging catering and access to facilities, for tax advice or for investigating a complaint.
- We may also collect Personal Information about you from a third party or from a publicly available source, but only if:
- You have consented to such collection or would reasonably expect us to collect information in this way.
Example: When personal information is updated with another party trading under the Vendimia brand, this may be updated in our databases as well.
It was not reasonable or practical to collect this information directly from you.
Example: We may obtain reports from preferred suppliers about services provided to members for understanding use by members, negotiating better terms, auditing supplier reports and improving customer service.
Do we collect Personal Information via websites?
- We do not collect any Personal Information about visitors to websites except when they knowingly provide it or as otherwise described below.
- Click Stream Data – when you visit and browse a website, our website will collect Personal Information for statistical reporting and maintenance purposes via Google Analytics and Wistia (for video)
- Google Analytics uses first-party cookies to track visitor interactions. These cookies are used to store information, such as:
- the date, time and duration of a visit;
- whether the visitor has been to the site before;
- what site referred the visitor to the web page;
- and the number of users visiting the websites and the number of pages viewed
- Cookies are small text files that are transferred to a user’s computer hard drive by a website for the purpose of storing information about a user’s identity browser type or website visiting patterns; if you access our website a cookie is downloaded onto your computer’s hard drive when you first log onto the website and it is automatically deleted from your hard drive after a period of thirty days.
- Web beacons are images that originate from a third party site to track visitor activities; we currently uses web beacons to track the visiting patterns of individuals accessing the website
- Login audit logs are used to record a user’s usage history and selections.
How do we use the Personal Information we collect about you?
- We use the information it collects about you to:
- Establish your access to the vendimia.global website
- Identify you and conduct appropriate checks
- Communicate with you
- Provide you with goods or services you have requested
- Provide you with information about goods and services we reasonably believe you may be interested in
- Provide you with general information we reasonably believe you may be interested in
- Personalise and customise your experiences with websites
- Help us research the needs and expectations of users and improve the provision of goods and services by us and preferred suppliers
- Manage complaints and disputes, and report to dispute resolution bodies
- Comply with Occupational Health and Safety regulations
- Comply with industry codes or a lawful request
How do we check the quality of Personal Information?
- We take reasonable steps to ensure the personal information we collect is accurate, up to date and complete. We may do this by providing you access to edit some of your personal information, periodic update requests, when interacting with you and where practical electronic synchronisation of our databases.
- We provide you the right to access and correct Personal Information.
Who sees your Personal Information?
- We disclose the information about you if or when:
- We have your consent to share the information; or
- Someone acting on our behalf provides the product or service you have requested; or
- We reasonably believe that your actions on the website violate our Terms
- We may disclose Personal Information to third parties but only to the extent necessary to fulfil the purposes for which the Personal Information was collected.
Example: We may disclose Personal Information to our officers and employees and our professional advisers and consultants to help improve the services offered by us but only on a confidential and need-to-know basis.
- We may also disclose your Personal Information to the website host in certain limited circumstances for example ensuring that if the website experiences a technical problem it is able to operate in an effective and secure manner.
- We may collect government related identifiers from you, which will be used or disclosed only where such use or disclosure is reasonably necessary to verify your identity for the purpose of an activity we are undertaking on your behalf.
Do we use your Personal Information for marketing?
- We may use your Personal Information to provide you with promotional material about us or the services and products offered by us and preferred suppliers. If you do not wish to receive promotional information you can contact our Privacy Officer by emailing email@example.com at any time requesting that your name be removed from our marketing lists
- Otherwise we will not disclose any of your Personal Information to any other organisation unless the disclosure is required by law or is otherwise permitted by the Australian Privacy Principles
How do we keep your Personal Information safe?
- We take reasonable steps to protect and keep your Personal Information from misuse, interference, loss, unauthorised access, modification or disclosure. The ways we do this include:
- Using Secure Sockets Layer (SSL) encryption when collecting or transferring sensitive information
- Limiting physical access to our premises and files
- Limiting electronic access to our networks, applications and files
- Using security related hardware and software
- Implementing personnel safe practice policies and training
- Monitoring and reviewing our practices periodically
- Using third parties who meet obligations under the Australian Privacy Principles.
- We periodically consider whether we need to retain your Personal Information in order to continue providing our goods and services to you, and may destroy or de-identify your Personal Information, except where we are required by law to retain it.
How can you see the Personal Information that we hold about you?
- You are entitled to access Personal Information that we hold about you.
- Access to your Personal Information is subject to our being satisfied you are the individual we hold Personal Information on or the person requesting is authorised to make a request on your behalf.
- If we delay or refuse your request to access some or all of your Personal Information it will provide you written notice of the reasons for the refusal, such as access would unreasonably impact upon the privacy of others or would not otherwise be permitted under the Australian Privacy Principles.
- A request for access can be done in any of the following ways.
- Email: firstname.lastname@example.org
- Post to: 12 Selgar Avenue, Clovelly Park, South Australia 5042
How can you correct your Personal Information?
- You can update your Personal Information at any time by contacting our relevant department or you may edit your account information and preferences on our website.
- Otherwise our Privacy Officer will correct your Personal Information. If we find that we have no further need for your Personal Information we will permanently de-identify it or remove it from our system and destroy all record of it. We welcome any changes to your details so as to keep our records up to date.
What can you do if you have a question, problem or complaint about our use of your Personal Information?
- Email: email@example.com
- Post to: 12 Selgar Avenue, Clovelly Park, South Australia 5042
- Alternatively you may lodge a complaint as per our Complaints Process below.
PRIVACY COMPLAINTS PROCESS
This policy sets out our approach to resolving complaints from individuals about the way we have dealt with their personal information, and outlines what people can expect when they make a complaint.
Management of Privacy Complaints
Privacy complaints are managed by the Privacy Officer.
The Privacy Officer will:
Receive and acknowledge the complaint
Seek further information from the complainant if necessary
Thoroughly investigate the complaint
Respond to the complainant with the outcome of the investigation
Provide feedback to the relevant internal stakeholders
Privacy Complaint Process
We ask that complaints be made in writing. The Privacy Officer may receive an oral complaint if he considers that making a written complaint would be impracticable or unreasonably onerous for the complainant. In written complaints, complainants should:
Include sufficient contact details to enable us to identify them
Clearly and succinctly state the nature of their complaints
Include sufficient information for the Privacy Officer to understand the complaints
Provide details such as what happened, when they became aware of it, and who was involved
State which Australian Privacy Principle they believe has been breached (if known)
Outline the impact the event has had on them
Include details of what they would like to see happen to resolve the complaint.
Complaints can be emailed to firstname.lastname@example.org or posted to:
12 Selgar Avenue, Clovelly Park, South Australia 5042
If a complaint is received from someone other than the individual involved, we will only proceed if we have evidence that the person submitting the complaint has authority to do so.
The Privacy Officer will acknowledge the complaint within five working days of receiving it.
The Privacy Officer will investigate the concerns raised by the complainant. This may involve obtaining further information from the complainant, speaking with the relevant staff members, reviewing relevant documents or client files, and obtaining technical or legal advice.
It is anticipated that in most cases, the duration of the investigation will not exceed 20 working days. If the investigation is likely to take longer than 20 days, the Privacy Officer will notify the complainant.
The Privacy Officer will inform the complainant in writing as to the outcome of the investigation.
If the complainant remains dissatisfied with the response provided, they may wish to contact the Office of the Australian Information Commissioner (The Privacy Commissioner). For more details, see http://www.oaic.gov.au/
Where appropriate, the Privacy Officer will provide feedback, including recommendations of process improvements, to the relevant internal stakeholders to ensure continued compliance with the Australian Privacy Principles.