CertTrack
Start free trial
← Back to home
Legal Australian Privacy Act 1988

Privacy Policy

Effective date:

This Privacy Policy explains how CertTrack Pty Ltd ("we", "us", "our") collects, holds, uses and discloses your personal information. It is prepared in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

APP 1 — Open and transparent management

About this policy

We are committed to managing personal information in an open and transparent way. This policy describes our practices for collecting, holding, using and disclosing personal information, and how you can access and correct your information or make a complaint.

By providing us with your personal information, you consent to our handling of it in accordance with this policy.

APP 2 — Anonymity and pseudonymity

Anonymous contact

Where practicable, you may interact with us anonymously or using a pseudonym. However, if you wish to receive information from us, we do need your name and email address to fulfil that request. We cannot deliver requested information without these details.

APP 3 & 5 — Collection of personal information

What we collect and why

We only collect personal information that is reasonably necessary for our functions. When you submit a request through our website, we collect:

  • Your name — to address communications to you personally.
  • Your email address — to send you the information you have requested.

We collect this information directly from you at the time you make a request. We do not collect sensitive information, payment details, or any other personal information beyond what is listed above.

Notice of collection (APP 5): At the time we collect your personal information, or as soon as practicable after, we will take reasonable steps to ensure you are aware of: our identity and contact details; the fact that you can access and correct your information; and that this Privacy Policy governs how we handle your information.

APP 6 — Use and disclosure

How we use your information

We use your personal information only for the primary purpose for which it was collected — to send you the information you requested. We will not use or disclose your personal information for any secondary purpose without your consent, unless an exception under the Privacy Act applies (for example, where required by law).

We do not sell, rent, trade or share your personal information with third parties for marketing purposes.

APP 7 — Direct marketing

Direct marketing

We will only contact you with further information if you have provided consent or if it is directly related to the information you requested. If at any time you no longer wish to receive information from us, you may opt out by contacting us using the details below. We will action your request promptly.

APP 8 — Cross-border disclosure

Overseas disclosure

We may use third-party service providers (such as cloud hosting or email delivery platforms) whose servers may be located outside Australia. Where we disclose personal information to overseas recipients, we take reasonable steps to ensure those recipients handle your information in a way consistent with the Australian Privacy Principles.

By submitting your personal information to us, you consent to it being handled in this way where necessary to deliver the service you have requested.

APP 11 — Security

How we protect and retain your information

We take reasonable steps to protect personal information we hold from misuse, interference, loss, and unauthorised access, modification or disclosure. This includes appropriate technical and organisational security measures.

We retain your personal information only for as long as necessary to fulfil the purpose for which it was collected, or as required by law. When your information is no longer needed, we will take reasonable steps to destroy or de-identify it.

APP 12 & 13 — Access and correction

Your rights

Under the Privacy Act, you have the right to:

  • Request access to the personal information we hold about you (APP 12).
  • Request that we correct personal information that is inaccurate, out of date, incomplete, irrelevant or misleading (APP 13).
  • Withdraw your consent for us to hold or use your information.
  • Request that we delete your personal information, subject to any legal retention obligations.

To make a request, contact us using the details below. We will respond within a reasonable timeframe and at no charge for straightforward requests.

APP 1 — Complaints

Privacy complaints

If you believe we have breached the Australian Privacy Principles, or your privacy rights in any other way, we encourage you to contact us in the first instance so we can attempt to resolve your concern.

We will acknowledge your complaint within a reasonable period and investigate and respond within 30 days where practicable.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

Office of the Australian Information Commissioner (OAIC)

Website: www.oaic.gov.au

Phone: 1300 363 992

GPO Box 5218, Sydney NSW 2001

Contact us

Get in touch

For any questions about this policy, to access or correct your information, or to make a complaint:

Organisation

CertTrack Pty Ltd

Privacy enquiries

privacy@certtrack.com.au

Updates

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices or in applicable law. The effective date at the top of this page will be updated accordingly. We encourage you to review this policy periodically.

This policy is prepared in accordance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and the Privacy and Other Legislation Amendment Act 2024. This is a general-purpose template — you should seek legal advice to confirm it meets your specific obligations, particularly if your annual turnover exceeds $3 million, you handle health information, or you disclose information to specific overseas countries.