1 Introduction

FIRPA Limited  (Centre, us, we or our) is committed to protecting your personal information in accordance with the Privacy Act 1988 (Cth), including the Australian Privacy Principles (APPs).

During our interactions with you, we may collect personal information about you.

This policy is intended to provide a general overview of our policies for the handling of your personal information.  Other policies may apply instead of or in addition to this Privacy Policy in certain circumstances. 

2 Collection of your personal information

We may collect personal information about you in your dealings with us (for example, if you submit an online enquiry or apply for a position). 

The type of personal information we collect will depend on your dealings with us. Generally we will collect your name, contact details (including telephone number, address and email address), business details (including business name and your position within the company), payment details and information about your use of the products and services that we supply. 

We may also collect other personal and sensitive information from you (e.g. if you apply for a job with us then the personal information we collect may include your resume, qualifications, skills, education history, work history and residency status).

We will only collect information that is necessary for our business functions. We collect your personal information directly from you, unless it is impracticable or unreasonable to do so.  From time to time we may collect personal information about you from third parties (e.g. our contractors).

If you provide us with personal information about a third party, you represent, and we collect it on the basis that, you have that person’s consent for us to collect and handle their personal information in accordance with this privacy policy.

If we are unable to collect the personal information we require, or the information provided is incorrect or incomplete, this may affect our ability to provide products or services to you.

3 Purposes for which personal information is collected, held, used and disclosed

We will use and disclose your personal information for the purposes for which we collected it, and for other related purposes that you would reasonably expect. 

Generally, these purposes include responding to your enquiries, providing you with products and services (e.g. cybersecurity training, or testing technologies via our Cyber Test Range), providing you with marketing information or special offers for our products and services, obtaining your feedback on your experience with us, conducting marketing and other promotional activities and for our general business operations (e.g. maintaining business records, complying with our legal and insurance obligations and statistical purposes).

By providing us with your personal information, you consent to us using your personal information for these purposes. You agree that we may send you such information by post or by electronic means (including e-mail and SMS). You can opt-out of marketing and promotional communications at any time using an opt-out mechanism in one of our communications, or by contacting us via the details shown below.

We may disclose your personal information to our agents and contractors for the purposes set out above. 

Apart from the above instances, we may also use and disclose your personal information with your consent and as otherwise required or permitted by law.

4 Sensitive Information

We will only collect ‘sensitive information’ with your consent.  We will assume that you have consented to us collecting all information which is provided to us by you for use in accordance with this policy, including any ‘sensitive information’, unless you tell us otherwise at the time you provide it to us.

5 Storage and security of your personal information

We may hold your personal information in electronic formats or in hard copy.  We will take reasonable steps to securely store your personal information to ensure it is protected from unauthorised access, modification and disclosure, and from other types of misuse, interference and loss. 

We will take reasonable steps to destroy or permanently de-identify your personal information when we no longer require it for any purpose for which it was collected.  We may retain your personal information for as long as necessary to comply with any applicable law, for insurance and corporate governance purposes, for the prevention of fraud and to resolve disputes.  Your personal information may also be retained in our IT system back-up records. 

The transfer of data over the Internet is inherently insecure. We cannot guarantee the security, during transmission, of any personal information provided to us via our website at cybercollaboration.org.au. Please bear this in mind when transmitting information by this means to us.

6 Access and correction of your personal information

You may lodge a request to correct personal information that we hold about you if you believe it is inaccurate, incomplete, out-of-date, irrelevant or misleading, in which case please contact our Privacy Officer via the contact details shown below.

You may request that we provide you with access to the personal information we hold about you. Generally, we will provide you with access, except in limited circumstances where the law permits us to deny access. Any such requests must be made in writing to us via the details shown below. No fee will be incurred for requesting access, but if your request for access is accepted, we will inform you of the fee (if any) that will be payable for providing access if you proceed with your request.

7 FIRPA website

Our website uses cookies. We do not use the information stored in those cookies to collect information about you or your computer. The cookies are used for statistical purposes and to assist with your use of the website. We may also collect click-stream data when you use the website, such as the date and time of your visit, the pages you accessed, your IP address, the type of browser and operating system you are using and the websites you come from and move to. This information is collected for statistical purposes to assist us to find out how our website is used and navigated and to improve our website.

The Centre’s website may contain links to third party websites. We are not responsible for the privacy, security or handling of your personal information via those websites. You should review the privacy policy and terms of use for those websites each time you visit them.

8 Overseas disclosure of your personal information

We may store or use your personal information on ICT systems that are hosted overseas. However, we will not disclose your personal information to overseas recipients, except with your consent or where we are required or authorised to do so by law.

9 Reporting of data breaches

Should a breach of personal information occur we will voluntarily report the breach in accordance with the Notifiable Data Breaches (NDB) scheme.

10 Changes to our Privacy Policy

We may amend, modify or replace this Privacy Policy at any time. You should review our Privacy Policy each time you visit our website or provide us with personal information.

11 Complaints

If you have a complaint about the way in which we handle your personal information, please contact us on the details below. We will confirm receipt of your complaint and set out the time frame we require to investigate your complaint and provide you with a response, which generally, will be within 14 days of receiving your complaint.

12 Contact us

If you would like further information about the way we manage your personal information or if you have a complaint, please contact our Privacy Officer by:

(a)            Telephone:

+61 8 8155 5320

(b)            Mail:

Privacy Officer

Australian Cyber Collaboration Centre

Eleanor Harrald Building

Frome Road, Adelaide

South Australia 5000