Loading
Last Updated: September 2024
Thank you for placing your trust in OnetrakPty Ltd (ACN 119 129 761), Onetrak Rental Pty Ltd (ACN 616 230 463), and their subsidiaries (as that expression is defined in the Corporations Act 2001 (Cth)) (individually and collectively “we”, “us”, “Onetrak Group” as the context requires). This Privacy Policy describes how we collect, hold, use, and disclose your information and explains the choices that you have regarding how we use your personal information.
This Privacy Policy applies to all dealings we have with individuals, including customers, guarantors or prospective guarantors, suppliers and service providers, and job applicants.
We are committed to protecting your personal information. By submitting your personal information to us, or by using our services, you acknowledge and consent to us using your personal information in accordance with this Privacy Policy.
This Privacy Policy is intended to enhance the transparency of our operations, to notify you of your rights and our obligations, and to provide you with information regarding:
1. the kinds of personal information which we collect and hold;
2. how we collect, hold, use, and disclose personal information;
3. the purposes for which we collect, hold, use, and disclose personal information;
4. how you may access personal information that is held by us and seek correction of such information;
5. how you may complain about a breach of the Australian Privacy Principles (“APP”) or registered APP code (if any) that binds us and how we will deal with such complaints;
6. whether we are likely to disclose personal information to overseas recipients; and
7. if we are likely to disclose personal information to overseas recipients, the countries in which such recipients are likely to be located.
This Privacy Policy sets out how we comply with our obligations under the Privacy Act 1988 (Cth) (“Act”).
Acknowledgement
We acknowledge that we must take reasonable steps when handling personal information.
Whilst we cannot warrant that this Privacy Policy will be followed in every instance, we will endeavour to follow this Privacy Policy. Similarly, while we cannot warrant that loss, misuse or alteration of information will never occur, we will take all reasonable steps to prevent these things from occurring.
We have taken reasonable steps to endeavour to comply with the APP and the Act, some examples are noted below.
1. Implementation of this Privacy Policy.
2. Staff training and education.
3. Use of checklists to ensure that all APP are complied with.
4. Clear and transparent procedures regarding the handling of complaints and disclosure of information.
If you require a hardcopy of this Privacy Policy, please contact our Privacy Officer on the details below and we will provide you with a copy.
The kinds of personal information which we will collect and hold
Collection of Personal Information(other than Sensitive Information)
It is our usual practice to collect personal information (other than sensitive information) directly from the subject individual or their authorised representative(s).
Personal information means information or an opinion (including information or an opinion forming part of a database),whether true or not, and whether recorded in a material form, about an individual whose identity is apparent, or can reasonably be ascertained, from the information or opinion.
Some examples of the personal information we might collect include (but are not limited to):
1. your name;
2. your contact details (such as telephone numbers, addresses (residential and business), and email addresses etc.);
3. your age or date of birth;
4. your occupation and employment details (current and former);
5. personal identification documentation (including government related identifiers);
6. details relating to your use of our goods and services;
7. payment details;
8. banking details;
9. images from video surveillance and other cameras we use; and
10. customer survey information.
Identification
You may choose to interact with us using a pseudonym and/or not identify yourself.
In circumstances where we are required to do so, or are authorised by law, a court or tribunal to ask for your identification, we will request your personal information.
Further, it is likely that it will be impractical for us to interact with you without some form of identification, and therefore we will request identification details from you at the beginning of each transaction.
For example, we will not be able to open a commercial credit trading account or process a commercial credit application for you without obtaining identification details.
If you do not consent to the collection of your personal information, in accordance with this Privacy Policy, we may not be able to assist you with the provision of certain services.
How we will collect and hold your personal information
We only collect and hold personal information by lawful and fair means.
There are several ways we may collect your personal information, including when you:
1. visit, or submit information through, our website;
2. apply with us for a position of employment or as a contractor;
3. deal with us face-to-face, in writing (by letter, facsimile, or email), or by telephone;
4. participate in any of our events, promotions, or surveys, or subscribe to any of our publications; or
5. submit an application, quotation, purchase order, or service request to us.
In some circumstances, we may collect and hold personal information that has been collected from a third party (such as an associated entity or service provider) or a publicly available source.
This will likely occur in instances where:
1. you have consented for this collection (which would usually be via our privacy statement and/or credit application form); or
2. you would reasonably expect us to collect your personal information in this way and it is necessary for us to collect this information for a specific purpose (such as investigation of a complaint).
We will take steps to hold personal information in a manner which is secure and protected from unauthorised access.
Your personal information may be held in either a physical form or in electronic form on our IT system.
Where stored in electronic form on our IT system, we will take steps to protect the information against modification, disclosure, or misuse by including such things as physical restrictions, password protections, internal and external firewalls, and anti-virus software.
We will also endeavour to ensure that our service providers have protection for electronic IT systems and other necessary restrictions.
We will endeavour to ensure our staff are trained with respect to the security of the personal information we hold, and we will restrict any access where necessary.
While we retain personal information for as long as necessary in relation to the purposes for which it is collected, we will endeavour to destroy and de-identify the personal information once it is no longer required, except as required for business record purposes.
If we collect personal information about you from someone else, we will advise you as soon as practicable that this information has been collected and the circumstances which surround the collection.
If we collect personal information(including sensitive information) that is unsolicited, and we were notpermitted to collect it, the personal information will be destroyed as soon as reasonably practicable.
If we have received sensitive information incidental to our collection of personal information, we will endeavour to notify you of the specific sensitive information that has been collected and destroy that sensitive information, as soon as reasonably practicable.
Cookies and the collection of personal information via our website
When you visit our website, we may collect information about the session between your computer and our website using cookies.
Cookies are text files which are stored on your computer or mobile device (by your web browser) that record specific information, such as which pages you visit, the information you have searched for, or the device you are using to access our website.
We use cookies for the purposes of managing and improving our website, improving our business processes, and gathering demographic information about the persons who visit our website, among other things.
Third parties may store cookies on our website, including, by way of example, the following entities.
1. Google Analytics (provided by Google Inc.) to enable us:
(a) to perform statistical analyses of e.g. number of visitors, information on gender, age, location, interests, and the like to learn about our visitors; and
(b) to improve the website friendliness and usability (e.g. on the basis of website traffic measurements).
2. Youtube (provided by YouTube LLC.) to store session preferences (e.g. language) and suggest other content based on your previous uses (only activated when you are logged in to Youtube when visiting our website and only when clicking the YouTube button).
3. Facebook (provided by Meta Platforms, Inc.) to identify users logged in to Facebook for the purpose of sharing content on Facebook (only when you are logged in to Facebook when visiting our website and only when clicking the Facebook button).
4. LinkedIn (provided by LinkedIn Corp.) to enable the “follow” and “share” features of LinkedIn (only when you are logged in to LinkedIn when visiting our website and only when clicking the LinkedIn button).
5. Instagram (provided by Meta Platforms, Inc.) to enable the “pin” and “share” features of Instagram (only when you are logged in to Instagram when visiting our website and only when clicking the Instagram button).
6. X (formerly trading as ‘Twitter’) (provided by X Holdings Corp.) to enable the “tweet” feature of X (only when you are logged in to X when visiting our website and only when clicking the X button).
You may elect to disable or turn off cookies in your web browser, however, this may impact upon the services we are able to offer you on our website and may impact upon your ability to access certain features of our website.
Our server will also automatically record your Internet Protocol address (IP address).
An IP address is a numerical designation assigned to each device connected to a computer network by your internet service provider. While IP addresses can be used to identify the general physical location of a computer, they are otherwise anonymous, and we will not use your IP address to identify you.
Hiring and recruitment
If you apply for a position with us, we may also collect information about your experience, character, qualifications, and screening checks (including background, health, references, directorship, financial probity, identity, eligibility to work, vocational suitability, and criminal record checks). Sensitive information will only be collected with your consent.
We collect, use, and disclose your personal information to assess your application, conduct screening checks and consider and contact you about positions available. Your personal information may be exchanged with academic institutions, recruiters, screening check providers, health service providers, professional and trade associations, law enforcement agencies, referees, and your current and previous employers.
We may not be able to further consider you for positions with us without your personal information.
The purposes for which we collect and hold personal information
We will endeavour to only collect and hold personal information which is relevant to the operation of our group.
Our purpose for collecting or holding personal information about you is so that it may be used directly for our business activities.
We may use your personal information for the business activities of our group, which include, among other things:
1. assessing credit applications;
2. reviewing existing credit terms;
3. assessing credit worthiness;
4. collecting overdue payments;
5. assessing credit guarantees (current and prospective);
6. internal management purposes;
7. administering accounts;
8. managing relationships with our customers;
9. dealing with complaints;
10. supplying you with goods and services;
11. facilitating product and service reviews;
12. business development and marketing purposes (including direct marketing);
13. sales and billing;
14. insurance purposes;
15. complying with legal requirements;
16. establishing, exercising, or defending a legal or equitable claim; and
17. training and recruitment.
We may also collect personal information for both the primary purposes specified herein and purposes other than the primary purposes, including the purpose of direct marketing.
We may also collect personal information from other credit providers, Credit Reporting Bodies (“CRBs”) and any other third parties for the purposes of our business activities including, but not limited to, credit, sales, marketing, and administration.
The purposes for which we use and disclose personal information
We will endeavour to only use and disclose personal information for the primary purposes noted above in relation to the business activities of our group.
In addition, we may also use and disclose personal information for both the primary purposes specified herein and purposes other than the primary purposes, including the purpose of direct marketing.
Unless one or more of the below scenarios has occurred, we will take necessary steps to prevent personal information from being given to government agencies or other organisations.
1. You have provided your consent.
2. You would reasonably expect that your information would be so disclosed.
3. We have informed you that your personal information will be provided to a third party.
4. We are required by law to provide your personal information to a government agency or other organisation.
5. The disclosure of the information will prevent a serious threat to somebody’s life or health.
6. The disclosure of the information reasonably necessary for the enforcement of criminal law.
Further we will endeavour to only disclose personal information for the purpose in which it was collected, unless disclosure is reasonably necessary to:
1. assist in locating a missing person;
2. lessen or prevent a serious threat to life, health or safety;
3. take appropriate action with suspected unlawful activity or serious misconduct;
4. facilitate or assist with diplomatic or consular functions or activities;
5. assist certain defence force activities outside Australia;
6. establish or exercise a defined legal or equitable claim; or
7. facilitate or assist confidential alternative dispute resolution activities.
Direct Marketing
We will take steps not to disclose personal information for direct marketing purposes unless you have provided your consent to do so.
In any event you will be provided with an opt out option with respect to direct marketing, should you wish to be excludedf rom direct marketing.
If you do not elect to ‘opt out’ to receiving direct marketing material from us, you consent to us using personal information (other than sensitive information) provided to us for direct marketing purposes.
We may however use sensitive information for direct marketing purposes if you provide your consent to do so.
You may at any point in time, request to no longer receive direct marketing material from us by opting out.
We will record this information on our optout register.
Direct Marketing and Third Parties
We may also from time to time, if we have received your consent, provide your personal information to a third party for the purposes of direct marketing.
You may at any time request the source ofthe personal information that has been disclosed.
Government related identifiers
We will endeavour not to use or disclose agovernment related identifier, unless:
1. the use or disclosure of the identifier is reasonably necessary for us to verify your identity for the purposes of our business activities; or
2. the use or disclosure of the identifier is reasonably necessary for us to fulfil our obligations to an agency or a State or Territory authority; or
3. the use or disclosure of the identifier is required or authorised by or under an Australian law or a court or tribunal order; or
4. a permitted general situation (as that term is defined in the Act) exists in relation to the use or disclosure of the identifier; or
5. we reasonably believe that the use or disclosure of the identifier is reasonably necessary for one or more enforcement related activities conducted by, or on behalf of, an enforcement body.
Disclosure to CRBs
As indicated above, we may disclosepersonal information to a CRB in accordance with the permitted disclosures asdefined under the Act.
We may disclose your Credit Information tothe following CRBs listed below.
Equifax Australia
GPO Box 94
North Sydney NSW 2059
Tel: 13 8332
Creditor Watch
GPO Box 276
Sydney NSW 2001
Tel: 1300 501 312
NCI
PO Box 3315, Rundle Mall SA 5000
Tel: 1800 882 820.
Illion
PO Box 7405,
St Kilda Road, Melbourne VIC 3004
Tel: 13 23 33
Experian
GPO Box 1969, North Sydney NSW 2060
Tel: (02) 8907 7200
A copy of the credit reporting policy forthe CRBs listed above will be available on their website or will be provided inhard copy upon request.
How you may access your personal information
You are entitled to access your personal information held in our possession.
We will endeavour to respond to your request for personal information within a reasonable timeperiod or as soon as practicable in a manner as requested by you. We will normally respond within thirty (30) days.
You can make a request for access by sending an email or letter addressed to our Privacy Officer, the details of which are as follows.
Privacy Officer
Name: Eleanor Smith
Address: 80Possum Road, Bridgewater TAS 7030
Telephone: 1300727 520
Email: marketing@onetrak.com.au
With any request that is made we will need to authenticate your identity to ensure the correct person is requesting the information.
We will not charge you for making therequest, however, if reasonable we may charge you with the costs associatedwith your request.
You will only be granted access to yourpersonal information where we are permitted or required by law to grant access.We are unable to provide you with access that is unlawful.
Further we are not required to, and will not, give access to personal information to the extent that:
1. we reasonably believe that giving access would pose a serious threat to the life, health, or safety of any individual, or to public health or public safety; or
2. giving access would have an unreasonable impact on the privacy of other individuals; or
3. the request for access is frivolous or vexatious; or
4. the information relates to existing or anticipated legal proceedings and the information would not be accessible in normal discovery procedures; or
5. giving access would reveal the intentions of us in relation to negotiations and this disclosure would prejudice those negotiations; or
6. denying access is required or authorised by or under an Australian law or a court or tribunal order; or
7. we have reason to suspect that unlawful activity, or misconduct of a serious nature, that relates to our business activities has been, or may be engaged in; or
8. giving access would be likely to prejudice the taking of appropriate action inrelation to the matter; or
9. giving access would be likely to prejudice one or more enforcement related activities conducted by, or on behalf of, an enforcement body; or
10. giving access would reveal evaluative information generated within us in connection with a commercially sensitive decision-making process.
If we refuse access to the information, written notice will be provided to you setting out:
1. the reasons for the refusal (except to the extent that, having regard to the grounds for the refusal, it would be unreasonable to do so);
2. the mechanisms available to complain about the refusal; and
3. any other matter prescribed by the regulations.
Correction
Should we hold personal information, and itis inaccurate, out of date, incomplete, irrelevant, or misleading, or incorrectyou have the right to make us aware of this fact and request that it becorrected.
If you would like to make a request tocorrect your information, please contact our Privacy Officer.
In assessing your request, we need to besatisfied that the information is inaccurate, out of date, incomplete,irrelevant, or misleading. We will then take all reasonable steps to ensurethat it is accurate, up-to-date, complete, and not misleading.
It is our normal policy to resolve anycorrection requests within thirty (30) days. If we require further time, wewill notify you in writing and seek your consent.
Should we refuse to correct your personalinformation written notice will be provided to you setting out:
1. the reasons for the refusal (except to the extent that, having regard to the grounds for the refusal, it would be unreasonable to do so); and
2. the mechanisms available to complain about the refusal; and
3. any other matter prescribed by the regulations.
We will endeavour to notify any relevant third parties of the correct personal information where necessary and required.
Notifiable Data Breaches
A Notifiable Data Breach is an event where access to your personal data has been gained and there is a risk of serious harm, or it is suspected that there is a serious risk to you.
In the event of a Notifiable Data Breach, we will notify you. Examples of Notifiable Data Beaches include:
1. loss or theft of physical devices (such as laptops and storage devices) or paper records that contain personal information;
2. unauthorised access to personal information by an employee; and
3. inadvertent disclosure of personal information due to ‘human error’ (e.g. an email sent to the wrong person).
Complaints
If you wish to make a complaint about a failure of us to comply with our obligations in relation to the Act or the APP please raise this with our Privacy Officer.
We will provide you with a receipt of acknowledgment as soon as practicable.
We will then endeavour to respond to your complaint and attempt to resolve the issues within thirty (30) days.
In dealing with your complaint, we may need to consult another credit provider or third party.
If you are not satisfied with the process of making a complaint to our Privacy Officer, you may make a complaint to the Information Commissioner, the details of which are below.
Office of the Australian Information Commissioner (OAIC)
Address: GPO Box 5288, Sydney NSW 2001
Telephone: 1300363 992
Facsimile: (02)6123 5145
Information Commissioner
The Information Commissioner can decline to investigate a complaint on several grounds including, among other things, where the complaint wasn’t made at first to us.
For more information about privacy ingeneral, you can visit the Australian Information Commissioner’s website:https://www.oaic.gov.au/.
Disclosure to overseas recipients
We may choose to, if permitted by law,share and/or disclose your personal information with recipients outside ofAustralia.
We are required to notify you with a listof any countries which personal information may be transmitted to or disclosedwhere it is practical for us to do so.
We do not ordinarily disclose your personalinformation overseas. However, there may be circumstances where we need todisclose your personal information to a third party and this third party maydisclose your personal information overseas.
If you have any queries regarding thisPrivacy Policy or wish to find out more regarding any of our other policies,please contact our Privacy Officer on the details listed above.
Security
We take all reasonable steps to keep secureany information which we hold about you. Personal information may be storedboth electronically on our computer system, and in hard-copy form. Firewalls,passwords, anti-virus software, and email filters act to protect our electronicinformation.
Changes to this Privacy Policy
We will update this Privacy Policy from time to time. We therefore recommend that you read it each time you visit our website. If you do not agree with this Privacy Policy at any time, please do not continue to use our website. If you do continue to use our website, you are deemed to have accepted the terms of this Privacy Policy as they appear at the time of use.
Last Updated: September 2024
This is the credit reporting and credit related personal information policy (“Credit Reporting Policy”) of Onetrak Pty Ltd (ACN 119 129 761), Onetrak Rental PtyLtd (ACN 616 230 463), and their subsidiaries (as that expression is defined inthe Corporations Act 2001 (Cth)) (individually and collectively “we”, “us”,“Onetrak Group”, as the context requires).
The purpose ofthis Credit Reporting Policy is to be a clearly expressed and up to date policyabout the management of credit related personal information (which means creditinformation, credit reporting information, credit eligibility information and/orregulated information) (“Credit Information”) including the collection,holding, use, and disclosure of such information.
This CreditReporting Policy is intended to enhance the transparency of our operations, tonotify you of your rights and our obligations, and to provide you withinformation regarding:
1. the kinds of Credit Information whichwe will collect and hold;
2. how we collect, hold, use, anddisclose Credit Information;
3. the purposes for which we collect,hold, use, and disclose Credit Information;
4. howyou may access Credit Information held by us and seek correction of suchinformation;
5. howyou may complain about a breach of the Privacy (Credit Reporting) Code 2014(Cth) (“CRC”) and how we will deal with such complaints;
6. whetherwe are likely to disclose Credit Information to overseas recipients; and
7. ifwe are likely to disclose Credit Information to overseas recipients, thecountries in which such recipients are likely to be located.
This Credit Reporting Policy sets out how we comply with our obligations under the Privacy Act 1988 (Cth) (“Act”) and theCRC.
Acknowledgment
We acknowledge that we must take reasonablesteps when handling Credit Information.
Whilst we cannot warrant that this CreditReporting Policy will be followed in every instance, we will endeavour tofollow this Credit Reporting Policy. We have educated and trained our employeeswith the compliance requirements and have appropriate procedures in place tomanage Credit Information.
The kind of Credit Information which wewill collect and hold
We collect and hold the following types ofCredit Information.
1. Currentand prior names and addresses, your age or date of birth, and occupation.
2. Driverslicence number.
3. Creditand/or debit card information (for the purposes of processing payment(s)).
4. Detailsregarding applications for commercial credit including the type and amount ofcredit requested and the fact that we have assessed an application.
5. Detailsregarding the provision of credit, the amount and whether any other credit waspreviously provided.
6. Thedate that any agreement in relation to credit ceased or was terminated and thesurrounding circumstances.
7. Repaymenthistory.
8. Detailsregarding payment owed to us or any other credit provider, in connection withcredit provided to you or in relation to which you are a guarantor, overdue formore than sixty (60) days.
9. Whetherin our opinion, or another credit provider’s opinion, you have committed aserious credit infringement.
10. Whetheryou have entered into arrangements with us or other creditors in connectionwith the credit provided to you.
11. Courtproceedings information, personal insolvency information, and credit relatedpublicly available information.
12. Anyinformation regarding your credit worthiness.
13. Anyadministrative information about credit accounts of yourself and your relatedbodies corporate.
How we will collect, use, and discloseyour Credit Information
Our usual practice will be to collectCredit Information from you (or your authorised representative) directly andwith your written consent.
In some circumstances, we may collectCredit Information from a third party. This may include the collection ofCredit Information from a Credit Reporting Body (CRB).
As indicated above, we will endeavour toobtain your written consent regarding the collection and further disclosure ofCredit Information from and to a CRB.
It may be necessary for us to collect yourCredit Information for a specific purpose such as the investigation of acomplaint.
We may be required to, in somecircumstances, if you fail to meet payment obligations or commit serious creditinfringement to disclose your Credit Information to a CRB.
We will attempt to use the CreditInformation we collect and hold for the primary purpose(s) in respect of whichit is collected.
How we will hold the Credit Informationwe collect, use, and disclose
We will hold the Credit Information in amanner which is secure and protected from unauthorised access.
Your information may be held in either aphysical form or in electronic form on our IT system.
Where stored in electronic form on our ITsystem, we will take steps to protect the information against modification,disclosure, or misuse by including such things as physical restrictions,password protections, internal and external firewalls, and anti-virus software.
We will also take steps to ensure ourservice providers have protection for electronic IT systems and other necessaryrestrictions.
We will endeavour to ensure that our staffare trained with respect the security of the Credit Information we hold, and wewill restrict any access where necessary.
Once information is no longer required, wewill take all reasonable steps to either destroy and de-identify the CreditInformation in a secure manner and where possible destroy and delete records,except as required for business record purposes.
In the event we hold Credit Informationthat is unsolicited, and we were not permitted to collect it, the CreditInformation will be destroyed as soon as practicable.
The purposes for which we collect, hold,use, and disclose your Credit Information
We may collect, hold, use, and discloseyour Credit Information as reasonably necessary so that it may be used directlyfor the functions or activities of our group and as permitted by law.
We may use your Credit Information for thefunctions or activities of our group to:
1. considerwhether to provide you or a related entity with credit, or accept you as aguarantor;
2. consideryour credit worthiness;
3. provideinformation to CRBs and participate with other credit providers in the creditreporting system recognised by the CRC;
4. takedebt recovery action and enforcement where necessary to recovery amountsagainst guarantors or where infringements have occurred; and/or
5. considerand address any complaints and comply with our statutory requirements.
Disclosure to CRBs
As indicated above, we may disclose CreditInformation to a CRB in accordance with the permitted disclosures as definedunder the Act, including instances where you fail to meet your paymentrequirements and/or you commit a serious credit infringement.
We may disclose your Credit Information tothe following CRBs listed below.
Equifax Australia
GPO Box 94
North Sydney NSW 2059
Tel: 13 8332
Creditor Watch
GPO Box 276
Sydney NSW 2001
Tel: 1300 501 312
NCI
PO Box 3315
Rundle Mall SA 5000
Tel: 1800 882 820.
Illion
PO Box 7405,
St Kilda Road Melbourne VIC 3004
Tel: 13 23 33
Experian
GPO Box 1969
North Sydney NSW 2060
Tel: (02) 8907 7200
A copy of the credit reporting policy forthe CRBs listed above will be available on their website or will be provided inhard copy upon request.
You are entitled to also place a twenty-one(21) day ban on the sharing of your Credit Information, if you believe you havebecome a victim of credit fraud.
Disclosure of your Credit Information toother recipients
We may choose to, if permitted by law,share and/or disclose your credit information with third parties including:
1. othercredit providers;
2. ourrelated companies;
3. debtcollection organisations;
4. governmentagencies;
5. personalrepresentatives;
6. guarantorsor security providers in relation to the credit we provide you;
7. debtassignment organisations; and
8. creditinsurers.
In some instances, we will require yourwritten consent prior to making such disclosures. We typically obtain thisconsent via our privacy statement, which is contained in our creditapplication.
How you may access your CreditInformation
You are entitled to access your CreditInformation held in our possession.
We will endeavour to respond to yourrequest for Credit Information within a reasonable time period or as soon aspracticable in a manner as requested by you. We will normally respond withinthirty (30) days.
You can make a request for access bysending an email or letter and addressed to our office, the details of whichare as follows.
Onetrak Group
Address: 80Possum Road, Bridgewater TAS 7030
Telephone 1300727 520
Email: receivables@onetrak.com.au
With any request that is made we will needto authenticate your identity to ensure the correct person is requesting theinformation.
You will only be granted access to yourCredit Information where we are permitted or required by law to grant access.We are unable to provide you with access that is unlawful.
We will not charge you for making therequest, however if reasonable we may charge you with the costs associated withyour request.
In the event your request is refused, wewill provide you with written notice regarding the refusal and reasons for ourdecision.
Correction
Should we hold Credit Information, and itis inaccurate, out of date, incomplete, irrelevant, misleading, or incorrectyou have the right to make us aware of this fact and request that it becorrected.
If you would like to make a request tocorrect your information, please contact our office on the details providedabove.
In assessing your request, we need to besatisfied that the information is inaccurate, out of date, incomplete,irrelevant, misleading, or incorrect. We will then take all reasonable stepsnecessary to ensure that it is accurate, up-to-date, complete, relevant, andnot misleading.
It is our normal policy to resolve anycorrection requests within thirty (30) days. If we require further time, wewill notify you in writing and seek your consent.
Should we refuse to correct your CreditInformation written notice will be provided to you setting out:
1. thereasons for the refusal (except to the extent that, having regard to thegrounds for the refusal, it would be unreasonable to do so); and
2. themechanisms available to complain about the refusal; and
3. anyother matter prescribed by the regulations.
Record keeping
We will endeavour to keep a record of whereall Credit Information is used or disclosed.
The types of matters recorded by us includethe following.
1. WhereCredit Information is destroyed to meet obligations and compliance requirementsin accordance with the CRC and the Act.
2. Wherewe have received Credit Information from another credit provider:
(a) thedate on which it was disclosed;
(b) abrief description of the information disclosed; and
(c) towhom the disclosure was made.
3. Recordsof any consent provided by an individual for purposes of disclosure.
4. Recordsof any correspondence and actions taken in relation to notifications orcorrections, complaints, pre-screening, monitoring, and auditing.
We will maintain our records for a minimumperiod of five (5) years.
Complaints
If you wish to make a complaint about afailure of us to comply with our obligations in relation to the CRC or the Actplease raise this with our office on the contact details above.
We will provide you with a receipt ofacknowledgment as soon as practicable.
We will then endeavour to respond to yourcomplaint and attempt to resolve the issues within thirty (30) days.
In dealing with your complaint, we may needto consult a CRB, another credit provider, or a third party.
If you are not satisfied with the processof making a complaint to our office, you may make a complaint to theInformation Commissioner, the details of which are below.
Office of the Australian Information Commissioner (OAIC)
Address: GPOBox 5288, Sydney NSW 2001
Telephone: 1300363 992
Facsimile: (02)6123 5145
The Information Commissioner can decline to investigate a complaint on several grounds including, among other things, wherethe complaint wasn’t made at first to us.
Disclosure to overseas recipients
We may choose to, if permitted by law, share and/or disclose your Credit Information with recipients outside of Australia.
We are required to notify you with a list of any countries which Credit Information may be transmitted to or disclosed where it is practical for us to do so.
We currently do not share or disclose Credit Information overseas.
If you have any queries regarding our Credit Reporting Policy or wish to find out more regarding any of our other policies, please contact our office on the details listed above.