We have been made aware of an email circulating from Business Box stating that they can assist with providing 1000+ registrants/attendees contacts from our events. We do not sell a list of attendees nor do we provide details of attendees to others without consent. Please do not click on any of those links via email. It is fraudulent and may be harmful to your computer and all information contained in your hard drive.
Personal information is defined in the Privacy Act 1988 (Cth) (“Privacy Act”) as:
“Information or an opinion about an identified individual, or an individual who is reasonably identifiable:
Whether the information or opinion is true or not; and
Whether the information or opinion is recorded in a material form or not.”
Under the Notifiable Data Breach Scheme, SDA Conferences and Events is obliged to report data breaches that satisfy the following criteria:
i) there is unauthorised access to or unauthorised disclosure of personal information, or a loss of personal information, that SDA Conferences and Events holds;
ii) That the unauthorised access to or disclosure of, or loss of personal information is likely to result in serious harm to one or more individuals; and
iii) SDA Conferences and Events has not been able to prevent the likely risk of serious harm with remedial action.
Where an Eligible Breach as occurred, SDA Conferences and Eventswill inform affected users, Subscribers AND the Privacy Commissioner. SDA Conferences and Events will disclose eligible breaches to users and Subscribers via email.
HOW AND WHY WE COLLECT PERSONAL INFORMATION
The Company collects personal information in a number of ways. The most common ways we collect personal information include:
From application forms (online or hard copy or completed via telephone): when individuals apply to become a network member, or subscribe to marketing or communications lists, for the purpose of providing news, information, ticket bookings, exhibit bookings, offers and other services in accordance with terms and conditions of the network
From telephone, email, written and in-person enquires directed to us: for the purposes of responding to enquires.
From online or hard copy surveys: for the purpose of reviewing and analysing the results and following up on results.
From business contacts, including contracts and business cards: when you enter into transactions with us or otherwise interact with us in a business context.
Any messages or comments submitted to us via the Site which may include personal information such as your name, email address and telephone number.
From our primary ticketing agency when individuals have given the ticketing agency permission for the ticketing agency to provide the individuals’ Personal Information to presenters/producers related to the event for the purpose of providing information about future events.
From public registers including social networks such as LinkedIn: if you have made this information available, for the purpose of obtaining your contact details.
From Sites through automatic processes such as cookies. Cookies are used to better understand users and improve the layout and functionality of our Sites by collecting information such as date, time and duration of visits and which pages are most commonly accessed. This tracking is conducted in such a way as to ensure the anonymity of visitors to Sites.
Our Sites may collect other information that may or may not be personal information. For each visitor to the Site, our server automatically recognises and stores the individual’s “IP address” (eg. the domain name or Internet protocol address), the type of Internet browser being used, the address of the site that “referred” the individual to our website and clickstream data. If this information cannot be used or combined with other data to identify you, it will not be personal information.
We also collect personal information for the purpose of providing you with any goods or services that you request, to update our Sites, to improve the services or goods that we provide and to develop our business.
We aim to only collect personal information that is necessary to fulfil the purpose for which you have disclosed it, or as required by law.
If you ask us to provide you with information, sign up to join one of our event subsidiary networks, you will be asked to provide contact information (such as your name, telephone number, postal address and email address).
In some instances, we may need to ask you for additional information necessary to provide you with the goods or services you have requested. When we ask you for further information in addition to that you provide to us initially, we will tell you why we are collecting that information.
We aim to only collect information that is absolutely necessary to provide you with any service you have requested. If you would prefer to remain anonymous, we are happy to still deal with you provided that we don’t need to know who you are. Instances where this may be possible include where you are providing us with anonymous feedback that does not require a response.
We do not collect sensitive personal information.
DIRECT MARKETING AND ELECTRONIC UPDATES
In some instances, where you have provided consent, or consent is deemed to have been provided or conferred, we may use your personal information for the purpose of sending you marketing communications including by electronic marketing for an unlimited period. You may opt-out of receiving such messages at any time provided such messages are sent by us. We will give you the opportunity to opt-out within the email that we send to you. You may also opt-out by contacting us (using the details provided below)
STORAGE OF PERSONAL INFORMATION
Any information we collect about you will be kept securely by us unless an event beyond our control disrupts the measures we have in place. We use up-to-date security, firewall, anti-virus and encryption software to ensure the security of the data we keep and to prevent unauthorised access, destruction, use, modification or disclosure. We have procedures in place with regards to staff access to personal information and ensure that only those staff who need to know have access to your information.
We will only store personal information for so long as it is required either to fulfil the purpose for which it was collected or to fulfil our obligations at law. We will conduct regular reviews of the personal information we hold and destroy or de-identify information no longer required.
DISCLOSURE OF PERSONAL INFORMATION
Generally, personal information will not be disclosed to individuals or organisations outside of the Company without your prior consent. However, in the circumstances described below, personal information may be disclosed to:
Essential service providers: There may be other companies that we rely on to provide goods or services to you. We may be required to provide your personal information to these companies to ensure that we can deliver goods or services to you.
Law enforcement or government bodies: There are exceptions under the Privacy Act with regards to the provision of personal information to law enforcement or government bodies. When a legitimate request is sent to us by a law enforcement or government body we will comply with that request and may provide personal information about you without your consent.
If we disclose personal information to a third party under outsourcing or contracting arrangements (a service provider), we will take steps to ensure that they have:
Signed a binding agreement (reviewed by the our Legal Counsel);
Handle the personal information in a manner consistent with legal requirements
Only use the personal information in order to provide specific services or to perform the specific functions required; and
Store the personal information securely, and only for as long as is necessary to provide the required services to perform the required functions.
ACCESS TO PERSONAL INFORMATION
Under the Privacy Act, you have the right to seek access and to update or correct the personal information that we hold about you. If you wish to exercise your right under the Privacy Act to seek access to the personal information held for you, you should make the request in writing to;
The Privacy Officer
Level 1/53 Burswood Rd
Burswood WA 6100
Ordinarily we will not charge for providing access/copies of personal information we hold about you, and will generally respond to access requests of this type within 60 days. If we anticipate there being a fee (for the time we spend locating and compiling the information you have asked for) we will provide you with an estimate before proceeding. If a fee is payable it will be based on an hourly rate plus the cost of photocopying or other out of pocket expenses. For legal and administrative reasons we may also store records containing personal information in archives. Access to these historical records may result in a charge being incurred (an estimate will be provided to you prior). Due to the nature of archive, requests for access to historical records may take longer to process than with current records.
You may correct the personal information we hold about you at any time, you should make the request in writing (to the address specified below). We do not charge a fee to correct personal information held.
On review of your request, if we agree that the personal information held is not accurate, complete and up to date, it will be corrected by the appropriate person. If we do not agree, you will be provided with the reason(s) for the views and the opportunity to make a statement of your view and have it included with the information held.
You have a right to complain to us if you are concerned about your privacy, how we have dealt with your personal information or in relation to the Privacy Act.
If you are concerned about how we have dealt with your personal information you should first contact us (using the details set out below). We will endeavour to send you a written response within 7 business days.
If you are not satisfied with the way we have managed or attempted to resolve your complaint you may complain to the Office of the Australian Information Commissioner by calling them on 1300 363 992, via their website at www.oaic.gov.au or by mail to the Office of the Australian Information Commissioner, GPO Box 5218 Sydney NSW 2001.
LINKS TO THIRD-PARTY WEBSITES
ACCEPTANCE OF THESE TERMS
We have been made aware of an email circulating from Business Box stating that they can assist with providing 1000+ registrants/attendees contacts from our events. We do not sell a list of attendees nor do we provide details of attendees to others without consent. Please do not click on any of those links via email. It is fraudulent.