(a) using our services (Services);
(b) accessing, requesting information on, enquiring about, using, receiving or providing feedback in relation to, C+F Lawyers’ operations or services (online, in writing, by telephone or in person); or
(c) otherwise providing to or consenting to the collection of Personal Information by C+F Lawyers, its officers, agents or employees,
after this Policy has been brought to your attention, you acknowledge and consent to the use, collection, storage or disclosure of your Personal Information by us in accordance with this Policy and the Privacy Act.
If you do not agree to us handling your Personal Information in the manner set out in this Policy you must immediately cease to access our Services, and you should not provide us with any of your Personal Information.
- What is Personal Information?
We follow the definition of Personal Information given in the Privacy Act:
Personal Information means information or an opinion about an identified individual, or an individual who is reasonably identifiable:
(a) whether the information or opinion is true or not; and
(b) whether the information or opinion is recorded in a material form or not.
1. What kinds of Personal Information might we collect and hold?
We may collect (and hold) different Personal Information about you depending upon how you interact with us. This information may vary depending on the specific needs of Mykra, however, it may include your:
(b) location and activities;
(c) name, address and phone number;
(d) email address;
(e) demographic information;
(f) comments and feedback;
(g) messages, emails, voicemail and other correspondence;
(h) responses to surveys;
(i) your interaction with websites, including our website;
(j) what computer configurations and software you use;
(k) your employment or education;
(l) your business history with us;
(m) your business or associated companies or entities;
(n) your preferences;
(o) your relationship with us;
(p) the frequency of your enquiries;
(q) your location; and
(r) how and when you use our Services.
2. How do we collect Personal Information?
We collect Personal Information:
(a) directly from you (when we contact you, when you contact us, when you engage with us or when we engage with you);
(b) when conducting our Services; and
(c) from third parties who you have authorised to provide us with information.
3. How do we hold and secure your Personal Information?
We store your Personal Information both in hard copy format and digitally, on site. All hard copy material is secured onsite. Hard copy material may be scanned and saved with digital material. If so, the hard copy material will be destroyed. All digital material is secured using password protected computers. Any digital transfer of Personal Information is secured using SLL encryption. Material submitted through the contact page on the website is not encrypted in the transit email to the nominated email address in section 14.
C+F Lawyers may store, process or back-up your personal information on servers that are located in Australia or overseas (including through third party service providers). Where appropriate, C+F Lawyers has agreements with its storage providers to keep all Personal Information they store secure, using reasonable and appropriate security methods.
4. Why do we collect, hold, use and disclose Personal Information?
C+F Lawyers may collect Personal Information for a number of reasons, including:
(a) providing you or a third party with Services;
(b) providing you with information about our Services;
(c) providing third parties with information about you and your use of our Services;
(d) developing or refining our Services;
(e) internal business purposes;
(f) providing you with marketing material;
(g) contacting you in relation to our business activities;
(h) better understanding our clients, customers and stakeholders;
(i) tailoring our Services;
(j) publishing testimonials you provide us; and
(k) corporate governance, auditing and record keeping.
Our use of Personal Information may extend beyond these uses, but will be restricted to purposes that we consider to be related to our functions and activities.
5. What do we do with your Personal Information?
If we collect Personal Information from you, we may:
(a) use that information for any of the purposes in clause 5 of this Policy;
(b) store that information in accordance with this Policy;
(c) pass that information amongst entities we work with;
(d) pass that information to third parties who provide products or services to us (including our accountants, auditors, lawyers, IT contractors, and other service providers);
(e) provide that information to third parties as notified by us from time to time; or
(f) provide that information to third parties as required by law.
6. Do you use my information for Direct Marketing?
We may use your Personal Information to communicate directly with you to promote a product or service. We use direct marketing to provide you with information about products or services that we believe you may be interested in. If you receive direct marketing material from us, and do not wish to continue receiving it, please contact us by any of the methods set out in paragraph 14 below, asking to be removed from all future direct marketing programs. If you do not want to receive marketing emails from us, you can click on the unsubscribe function in the communication. Once we have received your opt-out request, we will remove you from our direct marketing programs as soon as reasonably practicable.
7. What about Cookies, pixels and analytics?
When you access our website, we may receive information about you via a ‘cookie’, a ‘pixel’ or from analytics software.
These tools are pieces of information that our web server may send to your computer, or embed on a website, when you visit the website. These tools help us to recognise when you re-visit the website, and to optimise your experience. We generally don’t collect Personal Information through the use of these tools, though we may be able to access your IP address and information about what your computer technology is when using analytical software.
8. Do we ever send your information overseas?
C+F Lawyers may upload images and/or footage to its social media accounts from time to time. The social media accounts may be hosted on an overseas server. Where applicable, in the event that your information is sent overseas, C+F Lawyers will use its best endeavours to ensure that any overseas supplier will keep all Personal Information secure.
9. Can you access your Personal Information or request it be corrected?
(a) You may request access to the Personal Information that we hold about you by contacting us by any of the methods as set out in clause 14.
(b) Upon receiving an access request we may request further details from you to verify your identity. We reserve the right not to provide you with access to Personal Information if we cannot verify your identity to our reasonable satisfaction.
(c) An administrative fee may be charged to cover our costs in providing you with access to your Personal Information. This fee will be explained to you before it has been incurred.
(d) We will respond to your access request within a reasonable period of time by:
(i) providing you with access to your Personal Information;
(ii) rejecting your access request, and providing you reasons for this rejection.
(e) Access requests may be denied where:
(i) we believe your request is frivolous or vexatious;
(ii) we are entitled to reject a request by law;
(iii) we are unable to verify your identity; or
(iv) you have not paid the administrative fee referred to in paragraph 10(c), above.
(f) If you believe that the Personal Information that we hold is inaccurate or otherwise requires correction, you may send us a correction request by contacting us by any of the methods as set out in clause 14, below. We will review your Personal Information and respond to the request within a reasonable period of time.
10.What happens if you want to deal with us anonymously or using a pseudonym?
When contacting us, you can do so either anonymously or by using a pseudonym. If, however, you do so we may not be able to provide you with accurate or useful information, and you may not be able to access a full range of our operations and services. Further, we may not be able to investigate incidents or complaints you have made.
11. Does this policy ever change?
12.What about the GDPR?
We are an Australian organisation providing products and services within Australia. From time to time, we may inadvertently capture or collect Personal Information that passes through the European Union. This might occur, for example, if a person in the European Union accesses our website and we collect analytical data about them, if a person in the European Union signs up for a newsletter, or if you give us information about your activities the European Union. If this occurs, we will treat the Personal Information received in accordance with this policy. By providing us with such information, you consent to its collection and treatment in accordance with this Policy.
13. What happens if you have a question or complaint about how we have handled your Personal Information?
If you have a question or complaint, you can raise it with us by:
We take all complaints seriously and will respond to you within a reasonable period of time unless we consider your complaint to be frivolous or vexatious or if we are unable to verify your identity.
If you aren’t satisfied with the way we have handled your complaint, you can make a complaint to the Office of the Australian Information Commissioner at http://oaic.gov.au.