Privacy Policy

1 We are committed to protecting Your personal information

Blue Flag Pty Ltd (ACN 128 781 395) and its related bodies corporate (collectively, "Blue Flag", "Us", "Our" or "We") are committed to protecting your ("You", "Your") privacy. This Privacy Policy applies to registered users of the Blue Flag platform ("Platform") and unregistered visitors to Our website at blueflag.com.au ("Website"), sets out Our commitment in respect of any personal information We collect or hold about You, and what We do with that information.

Any personal information that We collect or hold about You will only be used for the purposes for which We have collected it, or as allowed by law. We will abide by the Australian Privacy Principles for the protection of personal information, as set out in the Privacy Act and any other relevant law, in respect of Your personal information.

2 What is personal information and why do We collect it?

When We refer to personal information We mean information from which Your identity is reasonably apparent. This information may include information or an opinion about You. We will only collect personal information which is reasonably necessary for, or directly related to, Our functions and activities. We may use Your personal information for direct marketing where We have Your express or inferred consent to do so.

The kinds of personal information We may collect about You include Your name, Your address, cookies, Your IP address, and any other information We made need to contact You. We may also hold sensitive information or credit information.

We collect personal information for the purposes of conducting business with You, providing any services You have requested and managing Our relationship with You. This can occur when You visit Our Website, when You post a query through the portal accessible through Our Website, or otherwise when You contact Us or sign up to receive services from Us. Our server may also log details about any computer used to access the Platform, including the IP address, operating system and browser type, the date and time of access and details of any information downloaded.

2.1 Credit information

In the course of Our business with You, We may collect and hold credit information. Credit information is information which is usually exchanged between credit and finance providers, credit reporting bodies and other entities that are involved in managing credit. The type of credit information that We hold may include details of Your liabilities in respect of consumer credit, default information, and information about court proceedings. If We collect or hold credit information We do so to assist in the management of any credit We extend.

You may access any credit information that We hold about You, seek correction of this information, or enquire about how We have used Your credit information by using Our contact details below. We will acknowledge Your enquiry within 7 days, and will provide You with an outcome to your query within 30 days.

2.2 Sensitive information

Sensitive information refers to any information about a person’s racial or ethnic origin, political opinion, membership of a political association, religious beliefs or affiliations, philosophical beliefs, membership of a professional, or trade association, membership of a trade union, sexual preferences or practices, criminal record or health information. We will not ask You to disclose sensitive information unless it is necessary for Us to conduct Our business with You. However, if You elect to provide Us with unsolicited sensitive information, it may be stored.

2.3 Cookies

We use cookies when You visit Our Website for the purpose of providing You with a better and more customised service.

A cookie is a small piece of data placed on Your web browser by Our Website. A cookie can be retrieved when You next visit Our Website to remember Your previous activity. Cookies are frequently used on websites. You can choose if and how a cookie will be accepted by configuring Your preferences and options in Your web browser.

We use cookies for different purposes such as:

(a) allocating a unique number to Your internet browser;

(b) to customise Our Website for You;

(c) for statistical purposes;

(d) for security purposes; and/or

(e) to authenticate or identify whether You are registered on Our Website, without requiring You to re-enter details each time You log on to Our Website.

If at any time You do not wish to accept cookies or wish to delete existing cookies, You may manually configure Your browser to refuse cookies or may manually delete existing cookies from Your hard drive. However, by deleting or refusing to accept cookies You may obstruct or hinder Your ability to experience the full functionality of Our Website.

2.4 IP addresses

Your IP address is the identifier for Your web browsing device when You are using the internet. It may be necessary for Us to collect Your IP address for Your interaction with parts of Our Website.

3 Do We disclose Your personal information?

We may disclose Your personal information the following parties:

(a) external service providers, so they can provide the service We have contracted out to them;

(b) companies that provide information and infrastructure systems to Us;

(c) anybody who represents You;

(d) anyone, where You have provided Us consent;

(e) investors, agents, advisers, or any entity that has an interest in Our business;

(f) third parties who have instructed Us to provide services; or

(g) organisations that provide products or services used or marketed by Us. Prior to disclosing any of Your personal information to another person or organisation, We will take reasonable steps to ensure that the person or organisation has a commitment to protecting Your personal information at least equal to Our commitment, or otherwise that You have consented to Us making the disclosure. We may use cloud storage to store the personal information We hold about You. The cloud storage and the IT servers may be located outside Australia.

4 Access to and correction of Your personal information

We will provide You with access to the personal information We hold about You. You may request access to any of the personal information that We hold about You at any time. Depending on the type of request that You make, We may respond to Your request immediately. Otherwise, We usually respond to You within 7 days of receiving Your request. We may need to contact other entities to properly investigate Your request.

We will generally rely on You to ensure the information We hold about You is accurate or complete. If any of the personal information We hold about You is incorrect, inaccurate or out of date, You may request that We correct the information. If appropriate, We will correct the personal information at the time of the request. Otherwise, We will provide an initial response to You within 7 days of receiving Your request. Where reasonable, and after any investigation we deem necessary to undertake, We will provide You with details about whether We have corrected the personal information within 30 days. We may need to consult with other entities as part of Our investigation.

If We refuse to correct Your personal information, We will provide You with Our reasons for not correcting the information.

5 How safe is Your personal information with Us?

We will take reasonable steps to protect Your personal information by storing it in a secure environment. We may store Your personal information in paper and/or electronic form. We will also take reasonable steps to protect any personal information from misuse, loss and unauthorised access, modification or disclosure.

6 What if you do not like how We handle Your personal information?

If You are not satisfied with how We have handled Your personal information, or You have a complaint about Our compliance with the Privacy Act, please contact Us using the details below. We will acknowledge Your complaint within 7 days, and provide You with a decision regarding Your complaint within 30 days. If You are dissatisfied with the response of Our Privacy Officer, You may make a complaint to the Privacy Commissioner which can be contacted via the Office of the Australian Information Commissioner website www.oaic.gov.au or on 1300 363 992.

7 Changes to Our privacy policy

We constantly review Our policies to keep up to date with the law and market expectations. Consequently, We may change this Privacy Policy from time to time. We are not required to notify You of any such change, but We encourage You to revisit and review Our Privacy Policy from time to time.

8 Our Contact Details:

Should you wish to contact Us in relation to any aspect of Our Privacy Policy, please contact Us via the Contact Us page on Our Website, or write to Us at Blue Flag Pty Ltd, 1/254 Dorcas Street, South Melbourne, Victoria, Australia, 3205.