To the extent legally permissible in your jurisdiction, we may collect the following types of personal information to extend our services:
o mail, email, and street addresses;
o telephone numbers;
o details of the products and services you have purchased from us, or which you have enquired about, together with any additional information necessary to deliver those products and services, respond to your enquiries and generally to complete any commercial transaction between you and us;
o any additional information relating to you that you provide to us directly through our websites or indirectly through use of our websites or online presence, through our representatives or otherwise; and
o information you provide to us through our service centre, customer surveys and/or visits by, or telephone calls from, our representatives from time to time.
We do not ordinarily collect sensitive information as defined in the Privacy Act or the GDPR. We may also collect some information that is not personal information because it does not identify you or anyone else. For example, we may collect anonymous answers to surveys or aggregated information about how users use our website.
To the extent legally permissible in your jurisdiction, NowYouCan collects personal information in a number of ways, including:
o directly from you, such as when you provide information by phone or in documents such as an application form;
o from third parties such as our related companies, industry bodies, marketing databases or your representatives;
o from publicly available sources of information; and
o from our own records of how you use NowYouCan services.
To the extent legally permissible in your jurisdiction, we collect, hold, use, and disclose your personal information for purposes including to:
o identify you;
o provide the products and services you require;
o administer and manage those products and services, including charging, billing, and invoicing;
o inform you of ways the products and services provided to you could be improved;
o research and develop our products and services;
o perform our business activities and functions;
o provide you with customer service;
o maintain and develop our business systems and infrastructure, including testing and upgrading of these systems;
o send communications requested by you;
o answer your enquiries and provide information or advice about existing and new products or services;
o provide you with access to our software;
o assess the performance of our website and improve the operation of our website;
o comply with, or act in accordance with, any law, rule, regulation, lawful and binding determination, decision or direction of a regulator, or in cooperation with any governmental authority of any country.
To the extent legally permissible in your jurisdiction, we also collect, hold, use and disclose your personal information to promote and market to you other services that we consider may be of interest to you, including through direct marketing and targeted online advertising. To the extent this is legally permissible in your jurisdiction, you consent to receive such marketing communications by using our products, services, or website, or by providing us with your personal information. We will provide you with an opportunity to unsubscribe from any future promotional or marketing material and educational material via an opt-out mechanism. You may also notify us at any time that you do not wish to receive marketing or promotional material by advising the NowYouCan Privacy Officer at the contact details set out below.
Cookies are small files which are stored on a user’s computer. They are designed to hold a modest amount of data specific to a particular client and website, and can be accessed either by the web server or the client computer.
For the purposes set out above (under “How do we use your personal information”) we may disclose your personal information to organizations or persons outside NowYouCan, to the extent this is legally permissible in your jurisdiction. If we need to disclose your personal information for any other purpose, we will only do so with your consent or—if this is legally permissible in your jurisdiction—where you may otherwise reasonably expect us to do so. Where appropriate, these disclosures are subject to privacy and confidentiality protections and other requirements under the GDPR. The organizations and persons to which we usually disclose information include:
o outsourced service providers who manage the services we provide to you, including billing and invoicing functions;
o information technology service and infrastructure providers;
o your representatives (e.g. your authorized representatives or legal advisers);
o our professional advisers, including our accountants, auditors, and lawyers;
o government and regulatory authorities and other organizations, as required or authorized by law; and
o our related entities.
Some of these organizations or persons may be located in different countries. The countries in which these organizations or persons are located will vary.
We keep your personal information secure by implementing physical and electronic security systems, limiting who can access your personal information, and training our staff to keep your information safe and secure. We also have online and network security systems in place so that the information you provide us with is protected and secure.
Under the Privacy Act and subject to its terms, you are entitled to:
o access your personal information; and
o seek the correction of your personal information.
Under the GDPR, you are (among other things) entitled to:
o receive transparent information regarding the processing of your personal data;
o access your personal data, including the right to obtain free of charge a copy of the personal data undergoing processing in a commonly available electronic format;
o rectification of incorrect personal data and completion of incomplete personal data;
o erasure of your personal data, including the “right to be forgotten”;
o restrict the processing of your personal data;
o your data being portable and accessible upon request; and
o object to the processing of your personal data.
Post: Level 2, 11 York Street Sydney NSW 2000
If you do make a complaint or allege a breach, NowYouCan will investigate your complaint and use reasonable endeavours to respond to you in writing within 28 days of receiving the written complaint. If we fail to respond to your complaint within 28 days of receiving it in writing, or if you are dissatisfied with the response that you receive from us, you have the right, depending on the jurisdiction, to make a complaint to the applicable regulator. In the case of the Privacy Act, the applicable regulator is the Office of the Australian Information Commissioner. In the case of the GDPR, the applicable regulator will be the local regulator in your jurisdiction in Europe.
Copyright 2019 NowYouCan Pty Ltd. All rights reserved.