Purpose of the policy

This is the privacy policy of Oricom International Pty Ltd ABN 46 086 116 369, Oricom Holdings Pty Ltd ABN 30 158 094 976 and our related entities (Oricom).

Oricom is committed to complying with the Privacy Act 1988 (Cth) (Privacy Act). This Privacy Policy sets out how we collect, use, store and disclose personal information.

Personal Information

Personal information means information or an opinion (including information or an opinion forming part of a database), whether true or not, and whether or not recorded in a material form, about an individual whose identity is apparent, or can reasonably be ascertained, from the information or opinion.

Some examples of personal information we might collect are:

1. general, personal or business details: such as your name, job title, contact number, address and email address
2. Employment Information: if you are a current or former or prospective employee, contractor, partner or office holder, other information as necessary and relevant to your employment
3. Log information: when you use our services, we may gather some information automatically and store it in service log files.
4. Device information: for example, device model, operating system version, unique device identifier, battery, signal strength
5. Software information: for example, software version and browser type, we may collect the information of the mobile applications and other software you use.
6. Location information:
   1. when you use the location-related services, we may record the location information (including via IP Address, GPS, WiFi or cell tower locations) of your device in order to provide relevant services.
   2. geographic location information that you or other users provide when using the services, for example, the account you provide may share your location information.

Sensitive Information

Where relevant and with your consent, we may collect sensitive information including:

1. information about your health and any disabilities in connection with your employment; and
2. your gender, ethnicity and other sensitive personal information collected either directly from you or from third parties, including as part of our recruitment processes.

Remaining anonymous or using a pseudonym

You may choose to interact with us anonymously or using a pseudonym.

Sometimes it may be impracticable to remain anonymous or use a pseudonym, or we may be legally required to deal with an individual in an identified form. For example, we will not be able to open a commercial credit trading account or process a commercial credit application for you without obtaining identification details. We will notify you at the time of collection if this is the case.

How we will collect and hold your personal information

We generally endeavour to collect your information directly from you. However, in some circumstances we may collect your information from third parties, such as:

1. your employer, your business contacts or other organisations that you deal with, regulatory or credit reporting agencies, a supplier or from a publicly available record;
2. you have consented to the collection (which would usually be via our privacy statement and/or credit application form); or
3. you would reasonably expect us to collect your personal information in this way and it is necessary for us to collect this information for a specific purpose (such as investigation of a complaint).

How we store and keep your information secure

We will take steps to hold personal information in a manner which is secure and protected from unauthorised access.

Your information may be held in either a physical form or in electronic form on our IT system or supply partners storage overseas. We will take steps to protect the information against the modification, disclosure or misuse by including such things as physical restrictions, password protection for accessing electronic IT systems.

We will also endeavour to ensure that our service providers have protection for electronic IT systems and other necessary restrictions. We will endeavour to ensure our staff are trained with respect to the security of the personal information we hold, and we will restrict any access where necessary.

We will endeavour to destroy and de-identify the personal information once it is no longer required.

The purpose for which we collect and hold personal information

We aim only to collect personal information for the purpose for which it was provided, for a related secondary purpose, any other purpose you have consented to, and any purpose permitted under the law.

Oricom will primarily use or disclose your personal information for the purpose for which it was provided to us. For instance, we may use and disclose your personal information:

1. to complete the services we provide or in order to supply you or your organisation with goods ordered;
2. to perform our administration and other operations including accounting, risk management, record keeping and archiving; 
3. to better understand our customers’ interests and requirements;
4. to assess credit applications, credit worthiness and credit guarantees;
5. to assess the suitability of a candidate for an employment position within our business and complete our recruitment and screening processes;
6. for complaints handling purposes; 
7. to improve our products and services; 
8. online customer reviews;
9. for product and recall purposes;
10. to contact customers for market research purposes; and
11. application login credentials

We may also use your personal information (including your business name and address) for related secondary purposes which you would reasonably expect, such as providing you with details about other goods or services offered by us, as well as any promotions or sales relating to our business that may be of interest to you.

We may also collect personal information from other credit providers, Credit Reporting Body (CRB).

Disclosure to CRB’s (Credit Reporting Body)

We may disclose personal information to a CRB in accordance with the permitted disclosures as defined under the Privacy Act.

We may disclose your Credit Information to the following CRB’s listed below.

Veda Advantage

Level 15, 100 Arthur Street

NORTH SYDNEY NSW 2060

Tel: 1300 921 621

NCI

Level 2, 165 Grenfell St

ADELAIDE SA 5000

Tel: 1800 882 820

Dun & Bradstreet

Level 2,

143 Coronation Drive

MILTON QLD 4064

Tel: 07 3360 0600

Creditor Watch

Level 13, 109 Pitt Street

SYDNEY NSW 2000

Tel: 1300 501 312

Experian

Level 6, 549 St Kilda Road

MELBOURNE VIC 3004

Tel: 03 9699 0100

A copy of the credit reporting policy for the CRB’s listed above will be available on their website or will be provided in hard copy upon request.

Using our website and Cookies

We may collect and store information about your use of our website, such as which pages you visit, the time and date of your visit and the IP (internet protocol) or MAC (media access control) address assigned to your device.

We and our ISP also collect information such as the pages you access on our website, the documents you download, the amount of time you spend on a page, which links you use to access our site and the type of device and browser you use. This information is used to improve the services we offer you, for statistical and website development and functionality purposes.

When cookies are used on this site, they store information about your visit, which may include a unique identifier or value to indicate whether you have visited a webpage. We may use this to identify you when you engage with our website more than once.

Most internet browsers are set up to accept cookies. If you do not wish to enable cookies, you may be able to change the settings of your browser to refuse all cookies or to notify you each time a cookie is sent to your computer.

If you click through to our website from any email or message we send to you, we may identify and collect information relating to your subsequent and previous use of our website, such as which pages you visit and for how long.

How you may access your personal information

You are entitled to access your personal information held in our possession.

We will endeavour to respond to your request for personal information within a reasonable time period or as soon as practicable in a manner as requested by you. We will normally respond within 30 days.

You can make a request for access by sending a letter addressed to our Privacy Officer, details specified below.

The Privacy Officer

Oricom International Pty Ltd

Locked Bag 658

SOUTH WINDSOR NSW 2756

Email: privacyofficer@oricom.com.au

Phone: 1300 889 785

Fax: 02 4574 8888

With any request that is made we will need to authenticate your identity to ensure the correct person is requesting the information. We will not charge you for making the request, however if reasonable we may charge you with the costs associated with your request.

You will only be granted access to your personal information where we are permitted or required by law to grant access. We are unable to provide you with access that is unlawful.

If we refuse access to the information, written notice will be provided to you setting out:

1. the reasons for the refusal (except to the extent that, having regard to the grounds for the refusal, it would be unreasonable to do so); and
2. the mechanisms available to complain about the refusal; and
3. any other matter prescribed by the regulations.

Correction

Should we hold personal information and it is inaccurate, out of date, incomplete, irrelevant or misleading, or incorrect you have the right to make us aware of this fact and request that it be corrected.

If you would like to make a request to correct your information please contact our Privacy Officer on the details above. In assessing your request we need to be satisfied that the information is inaccurate, out of date, incomplete, irrelevant or misleading. We will then take all reasonable steps to ensure that it is accurate, up to date, complete and not misleading.

It is our normal policy to resolve any correction requests within 30 days. If we require further time we will notify you in writing and seek your consent. Should we refuse to correct your personal information written notice will be provided to you setting out:

1. the reasons for the refusal (except to the extent that, having regard to the grounds for the refusal, it would be unreasonable to do so); and
2. the mechanisms available to complain about the refusal; and
3. any other matter prescribed by the regulations.

We will endeavour to notify any relevant third parties of the correct personal information where necessary and required.

Complaints

In the event that you wish to make a complaint about a failure of us to comply with our obligations in relation to the Act or the APP’s please raise this with our Privacy Officer on the contact details above. We will provide you with a receipt of acknowledgment as soon as practicable.

We will then endeavour to respond to your complaint and attempt to resolve the issues within 30 days.

If you are not satisfied with the process of making a complaint to our Privacy Officer you may make a complaint to the Information Commissioner. Details of which are below.

Office of the Australian Information Commissioner

GPO Box 5218 Sydney NSW 2001

Email: enquiries@oaic.gov.au
Telephone: 1300 363 992

Facsimile: 02 9284 9666

Disclosure to overseas recipients

We may disclose your personal information to a person or organisation outside of Australia. Oricom takes reasonable steps to ensure that any overseas recipient complies with the Privacy Act. 

We will not send your personal information outside of Australia unless:

1. It is necessary to complete your transaction; or
2. You have provided your consent; or
3. We believe on reasonable grounds that the organisation involved would only deal with your personal information in a similar manner to the requirements under the Privacy Act; or
4. Where otherwise allowed by the Privacy Act 1988 (Cth).

If you have any queries regarding our privacy policy or wish to find out more, please contact our Privacy Officer on the details list above.