All organisations that collect personal or sensitive data must do so in compliance with the Australian Privacy Principles which came into effect March 12 2014.
REFFIND LTD ABN 64 600 717 539 (‘REFFIND’) is committed to protecting your privacy and providing the REFFIND Rewards Program to give you an enjoyable and secure online experience.
In all dealings involving the collection, storage and use of personal information, we will comply with its obligations under the Australian Privacy Principles (“APPs”) prescribed by the Privacy Amendment (Enhancing Privacy Protection) Act 2012 (the “Act”). REFFIND has taken and will continue to take reasonable steps to:
- implement practices, procedures and systems that will ensure that we comply with the APPs and any binding registered APP code; and
- be able to deal with privacy related inquiries and complaints in a prompt manner.
Note: ‘Personal information’ is defined in the Act as ‘information or an opinion about an identified individual, or an individual who is reasonably identifiable:
- whether the information or opinion is true or not, and
- whether the information or opinion is recorded in a material form or not.
Security of your Personal Information
Kind of personal information REFFIND collects and holds
This website may contain links to, or frame, websites of third parties (“external sites”). REFFIND is not required to maintain or update the links.
Links to, or framing of, external sites should not be construed as any endorsement, approval, recommendation or preference by REFFIND of the owners or operators of the external sites, or for any information, products or services referred to on the external sites unless expressly indicated on this website.
REFFIND makes no warranties and accepts no liability in relation to material contained on external sites.
How personal information is collected and held
REFFIND collects and stores your personal information whenever you fill in the forms on the website
Your personal information is stored and secured using our third-party data storage provider.
Purposes for which REFFIND collects, holds, uses and discloses personal information
REFFIND collects, holds, uses and discloses your personal information for the primary purpose of providing product information on your request.
Any information sent to you by REFFIND will contain a clear and easy-to-read “opt-out” button which you can use to stop REFFIND from sending you such information in the future.
This website uses “cookies” to help you personalise your online experience. A cookie is a text file or a packet of information that is placed on your hard disk by a web page server to identify and interact more effectively with your computer. There are two types of cookies that may be used on this website: a persistent cookie and a session cookie. A persistent cookie gets entered by your web browser into the “Cookies” folder on your computer and remains in this “Cookies” folder after you close your browser. Persistent cookies may be used by your browser on subsequent visits to the site. A session cookie is held temporarily in your computer’s memory and disappears after you close your browser or shut down your computer. This website may also use web “beacons” (also called “clear GIFs” or “pixel tags”) in conjunction with cookies for the same reasons. Web beacons are small strings of code that are placed in a Web page. Cookies cannot be used to run programs. Cookies are uniquely assigned to you, and can only be read by a web server in the domain that issued the cookie to you. One of the primary purposes of cookies is to provide a convenience feature to save you time.
The purpose of a cookie is to tell the web server that you have returned to a specific page. For example, if you personalise REFFIND pages, the cookie helps REFFIND record your specific information on subsequent visits. This simplifies the process of recording your personal information, such as billing addresses, shipping addresses, and so on. When you return to the same website, information you previously provided can be retrieved, so you can easily use the REFFIND features that you customised. You can configure your internet browser (such as Microsoft Internet Explorer, Chrome, Mozilla Firefox or Safari) to accept all cookies, reject all cookies or notify you when a cookie is sent. Please refer to your internet browsers instructions to learn more about these functions. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies, if you prefer. If you choose to decline cookies, you may not be able to fully experience the interactive features of the REFFIND website.
Accessing and seeking correction of your personal information
Customers can gain access to or seek the correction of the personal information that REFFIND holds. REFFIND customers have a right to make a reasonable request for access to their personal information and to request its correction. Requests to access or seek to correct your personal information can be made by email to the Privacy Officer at email@example.com. When we receive such a request, we have the right to ask for and obtain your position title, telephone number and email address in order for you to access and correct personal information.
A person can deal with REFFIND by not identifying themselves or using a pseudonym. The circumstances under which a customer can use only a pseudonym are when submitting a support request which is not order or account related.
REFFIND access to your information
REFFIND staff that will have access to your personal information after it is collected will include sales staff and senior management.
REFFIND staff authorised to access your personal information are trained in compliance with the Act and have access only to carry out the primary purpose.
Third Party Access to your information
In addition to the third party companies listed above, the following third party recipients may have access to your personal information for the primary purposes noted above are product/system suppliers such as WooBoard and Loyyal.
REFFIND will not be held accountable for any breaches of the APP’s by an overseas recipient nor will any redress options apply under the Privacy Act.
Length of time Personal Information is retained
REFFIND will keep and retain your personal information for a period of 10 years, or such other period of time as is required by Law.
Consequences for you if your personal information is not provided to us
If some or all of the personal information that we request is not provided to us, the main consequence is that we may not be able to provide you with the product information you requested.
REFFIND may use or disclose personal information about you for the purpose of direct marketing if
- REFFIND collected the information from you;
- you would reasonably expect REFFIND to use or disclose the information for that purpose
- REFFIND provides you with an option to ‘opt-out’ of receiving direct marketing communications from us, and
- you have not made such an ‘opt-out’ request to us.
Requests by you to stop direct marketing communications
If REFFIND uses or discloses your personal information for the purpose of direct marketing, you may request not to receive direct marketing communications from us. REFFIND will not charge you for making or giving effect to your data and we will stop sending direct marketing communications within a reasonable period after your request is made (usually within 5 working days from receiving your request).
You may also ask us to identify the source of the personal information. REFFIND will notify you of the source, unless this is impracticable or unreasonable, which will depend on a number of factors, including:
- the consequences for you if you are not notified of the source
- the length of time that has elapsed since the personal information was collected by us
- the time and cost involved.
Destroying or de-identifying personal information
REFFIND will take reasonable steps to destroy or de-identify personal information it holds if it no longer needs the information for any purpose for which it may be used or disclosed under the APPs. The requirement to take reasonable steps to destroy or de-identify does not apply if personal information is contained in a Commonwealth record, or if an Australian law or a court/tribunal order requires it to be retained.
Verifying your identity
REFFIND must be satisfied that a request for personal information made by the individual concerned, or by another person who is authorised to make a request on their behalf, for example, as a legal guardian or authorised agent. It would generally be extremely difficult for REFFIND to deal with an anonymous request for personal information. However, it may be practicable to deal with a pseudonymous request, for example, where you have previously transacted under that pseudonym and can establish your identity as that individual. The steps required for REFFIND to verify your identity will depend on the circumstances. In particular, whether you are already known to or readily identifiable by REFFIND. The minimum amount of personal information needed to establish your identity will be sought. In a telephone call REFFIND may request information that can be checked against records held by us.
Refusal to give Access
Whilst every effort will be made by REFFIND to provide access in a manner that is as prompt, uncomplicated and inexpensive as possible, REFFIND may refuse to give you access to your personal information. There are a number of grounds upon which REFFIND can refuse to give you access to your personal information. These reasons may include (without limitation):
- if REFFIND reasonably believes that giving access would pose a serious threat to the life, health or safety of any individual, or to public health or public safety
- giving access would have an unreasonable impact on the privacy of other individuals
- the request for access is frivolous or vexatious
- the information relates to existing or anticipated legal proceedings between you and REFFIND, and would not be accessible by the process of discovery in those proceeding
- giving access would reveal the intentions of REFFIND in relation to negotiations with you in such a way as to prejudice those negotiation
- giving access would be unlawful
- denying access is required or authorised by or under an Australian law or a court/tribunal order
- REFFIND has reason to suspect that unlawful activity, or misconduct of a serious nature, that relates to REFFIND’s functions or activities has been, is being or may be engaged in and giving access would be likely to prejudice the taking of appropriate action in relation to the matter
- giving access would be likely to prejudice one or more enforcement related activities conducted by, or on behalf of, an enforcement body; or
- giving access would reveal evaluative information generated within REFFIND in connection with a commercially sensitive decision making process.
An individual can complain about an alleged breach by REFFIND of the APPs by sending an email to the Privacy Officer setting out details of the complaint.
All complaints are required by the Act to be made in writing to REFFIND and REFFIND is then allowed a reasonable time (usually 30 days) to respond to complaints. We may ask you to participate in a dispute resolution scheme (such as mediation) in order to resolve your complaint. If you refuse to participate in any form of dispute resolution, you can take your complaint to the Office of the Australian Information Commissioner (OAIC) by calling 1300 363 992 or logging on to the OAIC website at: http://www.oaic.gov.au/