Privacy statement – introduction
Digihub Australia Pty Ltd (ABN 81 638 834 634) and its related bodies corporate (“Digihub”, “we”, “our” or “us”) recognise that your privacy is important and are committed to protecting information that we collect from you in accordance with the Privacy Act 1988 (Cth), Australian Privacy Principles and certain applicable privacy codes (the Privacy Laws). For this reason, Digihub has adopted a policy which sets out how we collect, use, disclose and otherwise manage your information.
The following policy applies to the collection, storage, use and disclosure of your personal information by Digihub. We also treat any other information received by Digihub in relation to you and your business, including information we may receive from third parties, such as our vendors, contractors, and customers, in line with this policy (Privacy and Information Policy).
By accessing our websites, products, and services, you accept the terms of this Privacy and Information Policy.
Collection of personal information
“Personal information” means information or an opinion about an identified individual or an individual who is reasonably identifiable, whether the information or opinion is true or not and whether the information or opinion is recorded in a material form or not. The type of information we may collect, use, disclose and hold in the course of conducting business includes personal information about:
In general, the type of personal information we collect and hold includes names, addresses, contact details, titles, e-mail addresses, occupation, details of the products and services you have purchased from us or which you have enquired about, together with any additional information necessary to deliver those products and services and to respond to enquiries, information you provide to us through our customer surveys, information associated with Digihub marketing events and other information which assists us in conducting business, providing and marketing services and meeting legal obligations. We may also collect ‘sensitive information’, such as information about an individual’s criminal record or health information if it is essential for the purpose of the conduct of business, however, we will obtain your written consent prior to us obtaining such sensitive information from you.
If you access our website, we may collect additional personal information about you in the form of your IP address or domain name. Our website may contain links to other websites. We are not responsible for the privacy practices of or content contained in linked websites and any linked websites are not subject to our privacy policies and procedures.
Use of personal information
As a provider of a range of information technology products, services, and resource solutions, Digihub’s primary purpose for collecting, holding, using and disclosing personal information is to facilitate the efficient provision of quality information technology products and services. Whilst much of this information may not be personal information, some of the information we collect, on its own or when matched with other information, may be personal information about you.
Specifically, we collect personal information so that we can:
We will not collect personal information unless the information is reasonably necessary for or directly related to one, or more of our functions or activities. If you do not agree to provide us with your personal information, this may limit our ability to provide our services and solutions to you effectively. If the personal information you provide to us is incomplete or inaccurate, we may be unable to provide you, or someone else you know, with the services and solutions you, or they, are seeking.
How do we collect personal information
We generally collect personal information:
We may also collect personal information from third parties including your representatives, credit reporting agencies, law enforcement agencies, other government entities and other publicly available sources of information.
Disclosure
We may disclose your personal information to our employees and related bodies corporate.
We may also disclose your personal information to:
Some of these organisations and service providers may not be required to comply with this policy. Except as set out above, Digihub will only disclose personal information if this is required by law or a court/tribunal order or otherwise permitted under the applicable Privacy Laws.
In the event of a security incident involving unauthorised access, use or disclosure of personal information where a third party with whom we share personal information is involved, we will seek to work cooperatively with them to protect the personal information we have shared with them.
Direct Marketing Materials
We may send you direct marketing communications and information about our products and services that we consider may be of interest to you. These communications may be sent in various forms, including mail, SMS, fax, and email, in accordance with applicable marketing laws, such as the Spam Act 2003 (Cth). If you indicate a preference for a method of communication, we will endeavour to use that method whenever practical to do so. In addition, at any time you may opt-out of receiving marketing communications from us by contacting us (see the details below) or by using opt-out facilities provided in the marketing communications and we will then ensure that your name is removed from our mailing list.
Cookies
In some cases we may also collect your personal information through the use of cookies. When you access our website, we may send a “cookie” (which is a small summary file containing a unique ID number) to your computer. This enables us to recognise your computer and greet you each time you visit our website without bothering you with a request to register. It also enables us to keep track of products or services you view so that, if you consent, we can send you news about those products or services. We also use cookies to measure traffic patterns, to determine which areas of our website have been visited and to measure transaction patterns in the aggregate. We use this to research our users’ habits so that we can improve our online products and services. Our cookies do not collect personal information. If you do not wish to receive cookies, you can set your browser so that your computer does not accept them.
We may log IP addresses (that is, the electronic addresses of computers connected to the internet) to analyse trends, administer the website, track users’ movements, and gather broad demographic information.
Data quality, access, and correction
You may request access to personal information we hold about you by making a written request. We will respond to your request within a reasonable period. We may charge you a reasonable fee for processing your request (but not for making a request for access).
We may decline a request for access to personal information in circumstances prescribed by the applicable Privacy Laws, and if we do, we will provide you with a written notice that sets out the reasons for the refusal (unless it would be unreasonable to provide those reasons).
If, upon receiving access to your personal information, or at any other time, you believe the personal information we hold about you is inaccurate, incomplete, or out of date, please notify us immediately. We take reasonable steps to correct the information so that it is accurate, complete, and up to date. If we refuse to correct your personal information, we will provide you with a written notice that sets out the reasons for our refusal (unless it would be unreasonable to provide those reasons) and provide you with a statement regarding the mechanisms available to you to make a complaint.
How do you make a privacy related complaint?
If you have any questions about privacy related issues or wish to complain about a potential breach of the applicable Privacy Laws or the handling of your personal information by us, please contact our Privacy Officer. We may ask you to lodge your complaint in writing. Any complaint will be investigated by the Privacy Officer and you will be notified of the making of a decision in relation to your complaint as soon as is practicable after it has been made, usually within 30 days.
Address: Digihub Privacy Officer, Level 1, 28 Ainslie Place, Canberra, ACT, 2601
Telephone: 02 6190 1800
E-mail: privacy@digihub.com
Are we likely to disclose your personal information overseas?
We store and retain your personal information in Australia. However, we may disclose your personal information to the following overseas recipients:
Such access will be provided under secure protocols (see below for further information on how we manage other information about your business).
We will take steps to contractually ensure that overseas recipients of your personal information provide a level of protection for your personal information which is equivalent to the requirements contained in the applicable Privacy Laws.
Information security and storage
As an information technology company, Digihub will use all reasonable endeavours to ensure the integrity and security of your personal information is maintained. Digihub also employs physical and administrative safeguards which we consider are consistent with Australian industry standards. We hold personal information in either paper-based records, in secure access controlled premises or in electronic form in databases and email files which require logins and passwords. Digihub personnel are also contractually bound by confidentiality obligations.
Despite the high level of information security employed within Digihub and its commitment to your privacy, the company is unable to provide an absolute assurance that personal information will remain secure at all times. Digihub therefore does not accept any responsibility for incidences of unauthorised access to personal information, which is provided at your own risk. Likewise Digihub does not guarantee the security or privacy compliance of any websites that are accessible through links provided on any of its websites. In the event of a security incident we have in place procedures to promptly investigate the incident and determine if there has been a data breach, and if so, to assess if it is a breach that would require notification. If it is, we will notify affected parties in accordance with the applicable Privacy Law requirements.
Digihub will take reasonable steps to destroy or de-identify your personal information held by the company on your request or if we no longer need your personal information, except where Digihub is required by law to retain the information.
Your personal information and our marketing practices
We might, from time to time, let you know – including via mail, SMS, email, telephone or online – about news, special offers, products, and services that you might be interested in. We will use your personal information to engage in marketing unless you tell us otherwise. You can contact us to update your marketing preferences at any time.
Changes to our policy
We may change this policy from time to time. Any updated versions of this policy will be posted on our website. Please review it regularly. You will be deemed to have consented to such variations by your continued use of Digihub’s products and services following such changes being made.
Openness
Digihub’s Privacy and Information Policy is available on its website.
Anonymity
Digihub’s personnel will respect a request for anonymity however some of Digihub’s business processes cannot be completed effectively if you remain anonymous.
How we manage other information about your business
This Privacy and Information Policy applies to all information received by Digihub from third parties, including from its vendors, contractors, and customers, whether or not such information falls within the meaning of “personal information”.
While Digihub will endeavour to comply with the obligations contained in this policy with respect to all information it collects, stores, uses, and discloses in the course of its business, Digihub is not required to, and does not warrant or represent that it will in all instances, comply with the Privacy Laws to the extent that the information does not fall within the meaning of “personal information”.
General
This Privacy and Information Policy is effective as at 8 May 2023.