Shine Social & Communities is committed to protecting the privacy of an individual’s personal information. The following sets out how we aim to protect the privacy of your personal information, your rights in relation to your personal information managed by us, and the way we collect, use and disclose your personal information.
In handling your personal information, we will comply with the Privacy Act 1988 (Cth) (Privacy Act) and with the thirteen Australian Privacy Principles in the Privacy Act.
We have policies and procedures in place to ensure that:
Consumer personal information is collected to provide care and services. Personal information we collect could include your:
Participant personal information may be collected from:
We will collect personal information directly from you unless:
You can withdraw your consent at any time by contacting us; although you should be advised that this may impact on our capacity to provide services.
Personal information is collected for the purposes of providing care and services. The information may be used to:
We may disclose your personal and health information, for the purpose of your care and services, to:
We may not use or disclose personal information for a purpose other than providing care and services, unless:
We will not disclose your personal information to an overseas recipient.
We take all reasonable steps to ensure that the personal information we hold is protected against misuse, loss, unauthorised access, modification or disclosure. We hold personal information in both hard copy and electronic forms in secure databases on secure premises and on secure, cloud-based technology, accessible only by our authorised staff.
Under the Privacy Act, you have a right to access your personal information that is collected and held by us. If at any time you would like to access or change the personal information that we hold about you, or you would like more information on our approach to privacy, please contact us.
To obtain access to your personal information, you will have to provide us with proof of identity. We will take all reasonable steps to provide access to your personal information within seven (7) days from your request.
Records of current and past employees which are related to the employment relationship are managed in accordance with workplace laws. Privacy laws may apply to employee personal information if the information is used for something that is not related to the employment relationship between our organisation and the employee.
Personal information collected and held by us in relation to our volunteers will be managed in accordance with the Privacy Act.
In the event that your personal information is lost, stolen or subject to unauthorised access or disclosure, we will implement our Management of Data Breach Policy and Procedure.
All complaints regarding privacy can be lodged via our complaint handling process.
At all times, privacy complaints will:
You will be informed of the outcome of your complaint following completion of the investigation.