This policy represents PowerPay's commitment to compliance with the privacy laws and protecting your privacy. Concerning the collection, holding, use and disclosure of personal information.
We provide this policy in accordance with the Privacy Amendment (Enhancing Privacy Protection) Act 2012, hereafter referred to as the Privacy Act, detailing the lawful approach we take in the collection of information in our role as direct debit facilitators and in regard to the management and use of all information collected from our potential customers and actual customers, provided by our company's service clients on their behalf. This includes all subsequent dealings with those customers and our company's service clients.
The information we collect is only information that is essential for consumer identification and the provision of our direct debit facilitation services. PowerPay does not share the company's customers' personal information or store that information, except as provided in this Policy.
The kinds of general information we collect and hold We provide direct debit facilitation and associated services.
In the course of our business we collect and store information concerning:
Note, this information is generally collected by your credit provider and shared with PowerPay.
Consumer and business credit liability information PowerPay collects and holds consumer and/or business credit liability information, including:
Repayment history information If and when we provide direct debit services to you, the following information about you as a consumer may be collected and held:
Communication of overdue and default information We collect and hold information about any payment that is overdue or reversed after attempting a direct debit transaction. This information is presented to your credit provider How we collect information We collect information from the following possible sources:
How we hold information securely In all circumstances, we take reasonable steps to protect your information from misuse, loss, interference, unauthorised access, modification or unauthorised disclosure. Hard copies, if any, are held in a locked environment, with other security protection after business hours and electronic copies are held in a secure environment, with the application of appropriate passwords and other computer and software security techniques and off-site storage.
In the event of a data breach, we may have notifiable matters we wish to communicate to you. This communication will be undertaken in accordance with the Privacy Amendment (Notifiable Data Breaches) Act 2017. Transfer of information between us and other parties.
This information transfer is permitted under Division 2 of Part 111A of the Privacy Act 2012.
PowerPay may disclose your information to your bank or financial institution, and the credit provider recipient of your direct debit payment.
PowerPay may disclose your information to third parties who are contracted to assist PowerPay to facilitate the delivery of our direct debit facilitation services, but only where the third parties can assure PowerPay of having an appropriate and robustly applied Privacy Management Policy.
PowerPay may disclose your information to professional service providers such as lawyers, accountants and debt collection agencies, for the purposes of risk management, fraud protection, collecting debts and to improve PowerPay's delivery of its services.
PowerPay may disclose your personal information to courts and law enforcement agencies, in accordance with the law, from time to time.
The purposes for which we collect, hold, use and disclose information are:
First contact the company's Privacy Compliance Manager on telephone: 0756 132 378, or post to: Level 10, 50 Cavill Avenue, Surfers Paradise, Qld, 4217, or email firstname.lastname@example.org
In accordance with Section 21T and Code Obligation 19, at your request, we will:
Following your successful request, access will be provided by the Privacy Compliance Manager, who will facilitate the provision of a print out or electronic transmission of your information stored in the company's systems. Any denial of access will be in writing, with the reason/s explained and contact details for the Office of the Australian Information Commission, to which you may lodge a complaint if not satisfied with the company's explanation.
Once you have inspected the personal information we hold on file about you, you may inform our Privacy Compliance Manager if you have discovered any information that is inaccurate, out-of-date, incomplete, irrelevant or misleading.
The Privacy Compliance Manager will be pleased to amend the file within 30 days but, in most cases, will require appropriate evidence from you to support your request. Please note that, in the exercise of this correction duty, the Privacy Compliance Manager is lawfully entitled to consult with your credit provider. You and your credit provider will be informed in writing of any correction.
There are 2 ways you may complain:
Office of the Australian Information Commission
GPO Box 5218
Sydney NSW 2001
Phone: 02 9284 9753
Enquiries: 1300 363 992
There is no charge for lodging a complaint.
We will write to you acknowledging receipt of the complaint. After appropriate investigation, the Privacy Manager will write to you as soon as practicable after a decision has been reached, outlining the decision and the reasons for reaching it.