Food Agility CRC Limited and its related bodies corporate (Food Agility) are governed by the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth). The APPs regulate how personal information is handled by Food Agility.
We will review this policy regularly, and we may update it from time to time.
We collect personal information about our customers; funders; collaborators; students; and industry and university partners, as part of our routine activities.
We also collect personal information about our staff, contractors and suppliers, as well as the contact details of individuals who work for current, past and prospective customers, suppliers, and other types of professional associates and personal contacts.
Information that you specifically give us
We may ask you to provide us with certain types of personal information if you wish to obtain a particular service or product from us. This might happen over the telephone, through our website, by filling in a paper form, or meeting with us face-to-face. We will give you a Collection Notice at the time, to explain how we will use the personal information we are asking for. The notice may be written or verbal.
You might also provide your personal information to us, without us directly asking for it, for example if you engage with us on social media.
Information that we collect from others
If you apply for a job or contract with us, we will collect personal information about you from your referees. We may also check some details about our suppliers from publicly available sources, such as the Australian Business Register, ASIC databases, credit reporting services, University databases (to verify academic history), using the Document Verification Service to check whether identity documents are valid, contacting witnesses to an investigation and similar services.
Information that we generate ourselves
We maintain records of the interactions we have with customers; funders; collaborators; students; and industry and university partners, including the products and services we have provided to you and research collaborations that we have undertaken.
The types of personal information we collect about customers; funders; collaborators; students; and industry and university partners includes:
· name, contact, and address details;
· in the case of job applicants, employment history and biographical data; and
· in the case of students, academic and employment history and biographical data.
Links to other sites
We may use your personal information for the following purposes:
· to provide the service or product you have requested;
· to provide technical or other support to you;
· to answer your enquiry about our services, or to respond to a complaint;
· to manage our employment or business relationship with you;
· to promote our other programs, products or services which may be of interest to you (unless you have opted out from such communications);
· to comply with legal and regulatory obligations;
· if otherwise permitted or required by law; or
· for other purposes with your consent, unless you withdraw your consent.
The ‘lawful processing’ grounds on which we will use personal information about you are market research and direct marketing. We will keep personal information about you, to use for the above purposes, while required for fulfilment of a lawful processing ground.
The personal information of customers; funders; collaborators; students; and industry and university partners, staff, suppliers and other contacts may be held on our behalf outside Australia, including ‘in the cloud’, by our third party service providers. Our third party service providers are bound by contract to only use your personal information on our behalf, under our instructions.
Our third party service providers are Google, Microsoft, Xero, Hubspot, Campaign Monitor, Monday, PayPal, Eventbrite, Survey Monkey and EventsAir.
We may also disclose your personal information to third parties for the following purposes:
· if necessary to provide the service or product you have requested
· if otherwise permitted or required by law; or
· for other purposes with your consent.
You have the right to request access to the personal information Food Agility holds about you. Unless an exception applies, we must allow you to see the personal information we hold about you, within a reasonable time period and without unreasonable expense.
You also have the right to request the correction of the personal information we hold about you. We will take reasonable steps to make appropriate corrections to personal information so that it is accurate, complete and up-to-date. Unless an exception applies, we must update, correct, amend or delete the personal information we hold about you within a reasonable time period. We do not charge for making corrections.
To seek access to, or correction of, your personal information, please contact our Privacy Officer. (see contact details below).
You have a number of other rights in relation to the personal data Food Agility holds about you. You have the right to:
· opt-out of direct marketing, and profiling for marketing;
· opt-out of processing for research / statistical purposes, or processing on the grounds of ‘public interest’ or ‘legitimate interest’;
· data portability, and
· temporary restriction of processing.
To seek to exercise any of those rights, please contact our Privacy Officer.
If you have an enquiry or a complaint about the way we handle your personal information, or to seek to exercise your privacy rights in relation to the personal information we hold about you, you may contact our Privacy Officer as follows:
Our Privacy Officer and Data Protection Officer is:
Rob HamperGeneral Counsel
Mail: UTS, Broadway, Ultimo, NSW, 2007, AUSTRALIA
While we endeavour to resolve complaints quickly and informally, if you wish to proceed to a formal privacy complaint, we request that you make your complaint in writing to our Privacy Officer, by mail or email as above. We will acknowledge your formal complaint within 10 working days.
If we do not resolve your privacy complaint to your satisfaction, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) by calling them on 1300 363 992, making a complaint online at www.oaic.gov.au, or writing to them at OAIC, GPO Box 5218, Sydney NSW 2001.
If you are in the European Union, you can choose to instead lodge a complaint with your local Data Protection Authority (DPA). The list of DPAs is at http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm