Updated on 29 August 2016
This policy covers Biddly Enterprises Pty Ltd and its related bodies corporate (“Biddly”, “we” or “us”).
We understand how important it is to protect your personal information. This policy is our commitment in respect of personal information we hold about you and what we do with that information. Our commitment is to abide by the Australian Privacy Principles for the protection of personal information, as set out in the Privacy Act 1988 (Cth).
- Collection of personal information
When we refer to personal information, we mean information about you from which your identity is reasonably identifiable. This may include information or an opinion about you whether true or not.
The kinds of personal information we may collect about you include:
Date of birth and age;
Contact details including telephone number and email address;
Bank account details;
Occupation, employment history and employment details, including financial information (including your payroll and employer details) and employee number;
any other information we made need to identify you or to administer our services;
- Use of personal information
We collect your personal information for the following purposes:
to verify your identity;
to enable us to establish and administer our products and services;
for the purpose of managing our relationship with you, including dealing with your enquiries;
to provide you with, monitor, and develop our website services;
to deal with any enquiries or communications with you or any agency or representative, including any application for employment;
to comply with our legal and regulatory obligations including any recommendation, request, rule, order or direction of any regulatory, governmental authority, securities exchange, court or tribunal;
to conduct marketing activities, so for example, on occasion we may offer you other products and services;
and for any other purpose related to or ancillary to any of the above.
- Disclosure of personal information
Depending on the product or service or your relationship with us, we may disclose your personal information:
to your employer;
to third party suppliers and vendors to the extent necessary for the establishment, provision, and administration of the applicable products or services (this may include car dealers, intermediaries, financiers, valuers, insurers, credit reporting agencies or lawyers/debt collectors). For example:
if you are an Biddly client, we will disclose your personal information to your chosen car dealership;
if you are applying for a vehicle loan, we will disclose your personal information to the applicable financier;
if you are applying for or have an insurance policy, we will disclose your personal information to the applicable insurer; or
to our personnel, agents, contractors and service providers that are involved in providing, managing or administering the applicable products or services (eg printing and postal services and call centres);
to those companies who provide information and infrastructure systems to us;
to anyone acting on your behalf;
to our professional advisors and consultants, accountants, lawyers and auditors;
to anyone else in relation to whom you have provided us consent;
to any company within Biddly Enterprises;
if you are applying to work for Smartgroup, your referees, the Australian Federal Police (to undertake criminal history checks), educational and professional obligations (to verify academic qualifications, licences and memberships), to organisations that conduct competence and psychometric tests, and the Department of Immigration and Citizenship (to verify your right to work in Australia);
where we are required to do so by law.
Prior to disclosing any of your personal information to another person or organisation, we will take all reasonable steps to satisfy ourselves that:
(a) the person or organisation has a commitment to protecting your personal information at least equal to our commitment, or
(b) if required, that you have consented to us doing so.
One of the ways we store and manage information (including personal information) is by using cloud computing, where servers are based overseas. We take reasonable steps to maintain the security of your information and to ensure your information is treated in accordance with the standards that apply in Australia.
- Direct marketing
For some customers we may from time to time use your personal information to provide you with current information about loans, insurance products, special offers you may find of interest, changes to our organisation, or new products or services being offered by us or any company we are associated with.
If you do not wish to receive marketing information, you may at any time decline to receive such information by contacting us. Contact details are set out at section 10 of this policy.
If the direct marketing is by email you may also use the unsubscribe function. We will not charge you for giving effect to your request and will take all reasonable steps to meet your request at the earliest possible opportunity.
- Accessing, updating and correcting your personal information
You can request to access your personal information we hold at any time.
An initial response will be provided to you within 7 days from your request, and the outcome of the investigation given in 30 days. There may be situations where we are not required to provide you with access to your personal information, and we will set out the reasons for this. An example of this would be where the information related to existing or anticipated legal proceedings, or if your request was vexatious.
You may also request to correct any of your personal information we hold if it is incorrect, inaccurate or out of date. We will generally rely on you to assist us in informing us if the information we hold about you is inaccurate or incomplete.
Depending on the request we may update your personal information immediately, or we may provide an initial response to you within seven days of receiving your request. Where reasonable, and after our investigation, we will provide you with details about whether we have corrected the personal or credit information within 30 days from your initial request.
We may have to consult with external entities as part of your request to access or correct your personal information.
- Using government related identifiers
If we collect government related identifiers, such as your Drivers Licence Number we do not use or disclose this information other than to the extent required by law. For instance, we will never adopt your Tax File Number as your account number to identify you.
- Doing business without identifying you
In most circumstances it will be necessary for us to identify you in order to successfully do business with you. However, where it is lawful and practicable to do so, we will offer you the opportunity of doing business with us without you providing us with personal information.
When we are requested to obtain quotes from dealers & financiers/brokers for you, we do not release any information that would identify you. Once you select a quote from a dealer, we will then provide your contact details to that dealer, lender or finance broker so they may get in touch with you.
- How safe and secure is your personal information that we hold?
We will take reasonable steps to protect your personal information by storing it in a secure environment, and when the information is no longer needed for any purpose for which the information may be used or disclosed, it will be destroyed or permanently de-identified. We store your personal information in paper and electronic form. We will also take reasonable steps to protect any personal information from misuse, loss and unauthorised access, modification or disclosure. We do this by:
installing security and access requirements for all our IT systems, such as passwords, firewalls and virus scanning software;
having document storage and destruction policies;
only providing you your personal information where we are satisfied as to your identity; and
encrypting data and other personal information during internet transactions (if any).
If you are dissatisfied with how we have dealt with your personal information, or have a complaint about our compliance with the Privacy Act, you may contact us using the details in clause 10.
We will acknowledge your complaint within seven days and provide you with a decision on your complaint within 30 days.
If you feel your complaint is still not resolved adequately after discussion with us, you may then contact the Office of the Australian Information Commissioner on http://www.oaic.gov.au/privacy/privacy-complaints.
- Further information
If you have any questions about how we handle your personal information, contact our Privacy Officer by phone on 1300 688 988, via email at firstname.lastname@example.org, or at:
Biddly Enterprises Pty Ltd
PO BOX 7093
Warringah Mall NSW 2100