Site Security & Traffic Control Privacy Policy

Personal information is information or an opinion about an identified, or reasonably identifiable, individual.

The kinds of personal information SSTC collects and holds varies according to the specific product or service being provided and may include, but is not limited to, your:

1. contact and identification information, such as your name, address, email address, telephone number, gender and date of birth;
2. government identifiers and related information, such as your driver’s licence, passport and visa particulars obtained, for example, to verify your identity at the time you request a product or service;
3. other details relating to your relationship with us, including if we deal with you in a capacity other than a customer (for example, information about agreements or other arrangements or transactions you may have with us, billing information including your credit card details, your purchasing preferences and history, and any information contained in correspondence between us); and
4. any other information lawfully obtainable under relevant Privacy Law.

• registering for one of our websites or services or logging in to use one of our websites;
• submitting applications and other forms through our online services, by email, verbally and/or in hard copy;
• subscribing to receive alerts/e-brochures and filling in surveys or research, or participating in promotions and competitions we offer;
• contacting us for any reason including, but not limited to, reporting a problem with one of our services or websites, requesting further services, updating your personal information or otherwise seeking our assistance;
• posting or contributing material on our websites; and
• using our services and any credit provided by us in connection with those. There may be occasions when we collect your personal information from other sources, such as from:

• a public or commercial information services provider (such as providers of government, business or credit information);
• social media platforms, if you choose to interact with us via your social media account;
• a third party assisting us to process an application or other transaction, confirming information in an application or other request or assisting us to locate or communicate with you;

Generally, SSTC will only collect your personal information from sources other than you if:

• it is unreasonable or impracticable to collect the personal information from you; and
• the collection of that personal information complies with all relevant Privacy Law.

We collect, hold, use and disclose your personal information where it is reasonably necessary for the purposes of providing our products and services, for our other business purposes and for any necessary related purposes. These purposes include, but are not limited to:

1. registering you to use one of our websites;
2. processing a product application or service or purchase request;
3. managing our products and services or other relationships and arrangements;
4. processing receipts, invoices and payments and servicing customer accounts, including determining liability for payment;
5. responding to customer enquiries about applications, accounts, products or services;
6. understanding customer needs and offering products and services to meet those needs;
7. accounting, billing and other internal administrative purposes;
8. identifying and informing customers of products and services that may be of interest;
9. notifying you about changes to our products and services;
10. considering, and contacting you about, any application you make for a job with us;
11. any other legal and regulatory requirements. Various laws may expressly require us to collect your personal information, or we may need to do so in order to be able to comply with other obligations under those laws:
    1. In Australia such laws include the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (for example, to comply with identity verification requirements), the Personal Property Securities Act 2009 and State and Territory real property and security interests laws (for example, to register and search for security interests), the National Consumer Credit Protection Act 2009 (for example, to comply with responsible lending requirements), the Financial Sector (Collection of Data) Act 2001, the Corporations Act 2001 and other regulatory legislation (for example, requiring us to maintain client and transaction records, or to make reports and provide other information to regulators such as ASIC) and the Taxation Administration Act 1953, the Income Tax Assessment Act 1997 and other taxation laws (for example, to comply with information requests issued by the Commissioner of Taxation).
    2. enforcing our rights, including undertaking debt collection activities and legal proceedings; and
12. undertaking business funding and development activities.

Where personal information is used and disclosed, we take steps reasonable in the circumstances to ensure the personal information is relevant to the purposes for which it is to be used and disclosed. You are under no obligation to provide your personal information to us. However, without certain information from you, we may not be able to provide our services to you or any other relevant customer.

We may disclose your personal information for purposes such as those listed above and we will always do so consistently with our privacy obligations.

Third parties to whom we may disclose your personal information include:

1. administrative services providers, such as mailing houses, printers and call centre operators;
2. legal, settlement, valuation and recruitment service providers;
3. data processing and market research service providers;
4. regulatory bodies, law enforcement authorities;
5. any person who is considering whether to acquire or who has acquired any part of our business, or the rights or obligations under our contract with you;
6. financial and other advisors;
7. other participants in financial and payment systems, such as banks, credit providers, clearing entities and credit card associations;
8. insurers, reinsurers, loss adjusters, assessors and underwriters;
9. brokers and other distributors;your guarantors and security providers;debt collectors and investigators

We may use and disclose your personal information (including by sharing it between members of SSTC) in order to inform you of products and services that may be of interest to you.

In the event that you do not wish to receive such communications, you can opt out by following the instructions for doing so in the communications we send to you.

We may hold your personal information (including your credit-related personal information) in physical form or in electronic form on our systems or the systems of our service providers.

We take steps reasonable in the circumstances to ensure that the personal information we hold is protected from misuse, interference and loss and from unauthorised access, modification or disclosure. We hold personal information in both hard copy and electronic forms in secure databases on secure premises, accessible only by authorised staff, and follow procedural safeguards that meet or exceed relevant Privacy Law.

We require third parties handling personal information on our behalf to follow equally compliant standards of security and confidentiality.

We will destroy or de-identify personal information in circumstances where it is no longer required, unless we are otherwise required or authorised by law to retain the information.

We take steps reasonable in the circumstances to ensure that personal information we hold is accurate, up-to-date, complete, relevant and not misleading.

You have a right to access and seek correction of your personal information (including your credit-related personal information) that is collected and held by us. This is subject to some exceptions specified in the Privacy Act 1988 (Cth) (Australia).

If at any time you would like to access or amend the personal information we hold about you, or you would like more information on our approach to privacy, please contact our Privacy Officer in accordance with the contact details set out below.

We will grant access to personal information to the extent required by applicable Privacy Law and will take reasonable steps to amend personal information where necessary and appropriate.

1. you will have to provide proof of identity. This is necessary to ensure that personal information is provided only to the correct individuals and that the privacy of others is protected;
2. we request that you be reasonably specific about the information you require; and
3. we may charge you a reasonable administration fee which reflects the cost to us for providing access in accordance with your request. We will not charge you for making the request.

If we refuse your request to access or correct your personal information, we will provide you with written reasons for the refusal and details of the ways in which you can make a complaint. We will also take steps reasonable in the circumstances to provide you with access to your personal information in a manner that meets yours and our needs.

If you are dissatisfied with a refusal of a request to access or correct your credit information, you may make a complaint to the Australian Information Commissioner Privacy Commissioner or to an applicable external dispute resolution scheme if SSTC entity you are dealing with is a member (we will provide details of any such scheme in our response to such a request for access or correction).

In the event that we correct your personal information previously disclosed to another entity and you request that other entity to be notified of the correction, we will take reasonable steps in the circumstances to do so unless impracticable or unlawful.

If you wish to complain about the way in which we collect or handle your personal information, including your credit-related personal information, or if you believe we have breached any Privacy Law, you can contact our Privacy Officer using the details below.

Following a complaint, our Privacy Officer will commence an investigation into your complaint. You will be informed of the outcome of your complaint following completion of the investigation. At all times, privacy complaints:

1. will be treated seriously;
2. will be dealt with promptly;
3. will be dealt with in a confidential manner; and
4. will not affect your existing obligations or impact on the commercial arrangements between you and us.

In the event you are dissatisfied with the outcome of your complaint, you may refer the complaint to the Australian Information Commissioner Privacy Commissioner or an applicable external dispute resolution scheme if relevant to the complaint and SSTC entity you are dealing with is a member (we will provide details of any such scheme in our response to such a request for

Please direct all privacy queries and complaints to our Privacy Officer at: Mail: Privacy Officer
SSTC
75 Graham rd,
Narwee
New South Wales 2209
Australia
Email: info@sstc.net.au