Personal information is information that may identify you or by which your identity may be reasonably determined. Such personal information may include your name, address, other contact details, your date of birth, and mobile number.
Why do we need your Personal Information?
We will only ask for personal information relevant to our business relationship with you. We will tell you the main reasons for asking for your personal information when we seek it from you. If you do not provide some personal information, we may not be able to provide you with the products or services you want.
The main reasons why we will seek personal information from you are:
- to check your eligibility for or to provide you with financial products or services;
- to provide you with information relevant to the services and offers you want
- to assist you with your inquiries or concerns;
- to verify your identity and undertake customer due diligence;
- for any other purpose required or authorised by law.
We may also ask for your personal information because we are obliged to collect it for legal purposes under the Financial Transaction Reports Act 1988 and the new Anti-Money Laundering and Counter-Terrorism Financing Act 2006. These Acts require us to ask you for information to check your identity (for instance, by referring to your passport, birth certificate or driver’s licence). We will not use any information collected under these Acts for any other purpose.
How do we collect information?
We collect most personal information directly from you. We may do this when you apply for a new prepaid card, complete a replacement card application, deal with us over the telephone, send us a letter, visit our web siteor if we call you. When you ring our Cardholder Assistance Line, we may also monitor and/or record telephone calls for the purpose of staff training and to verify statements made during the phone call.
How do we store your personal information?
We store your personal information in a number of ways including:
- in computer systems or databases;
- in hard copy or paper files
Do we ever disclose your information to 3rd parties?
We may disclose your personal information to third parties where they help us with our business, or you request us or consent to do so. Where your personal information is disclosed to third parties, we will seek to ensure that the information is held, used or disclosed consistently with the Australian Privacy Principles in the Privacy Act 1988.
Types of third parties include:
- parties involved in providing, managing or administering your products or services such as third party suppliers, printers, postal services, email and SMS deleivery prociders, authorised representatives and our legal, tax, audit and accountancy advisers;
- parties maintaining, reviewing and developing our business systems, procedures and infrastructure including testing or upgrading our computer systems;
- alliance partners, for example, where you have a cobranded product such as the Heritage Bank issued prepaid card;
- parties involved in the payments system including financial institutions, merchants and payment organisations.
We may also disclose your personal information to third parties in circumstances where:
- we must fulfil our legal obligations (for example, disclosure to Australian (and international) enforcement bodies such as the Australian Securities and Investments Commission (ASIC), the Australian Taxation Office (ATO), the Australian Transaction Reports and Analysis Centre (AUSTRAC), Centrelink or the Courts);
- it can be reasonably inferred from the circumstances that you consent to your personal information being disclosed to a third party.
We may also send your personal information outside Australia where, for example:
- you have requested or consented that we send your personal information;
- we outsource a function or service to an overseas contractor with whom we have a contractual arrangement; and
- it is necessary to investigate or facilitate a transaction on your behalf.
We will not send your personal information outside Australia unless it is authorised by law and we are satisfied that the recipient of the personal information has adequate data protection arrangements in place.
We use personal information to provide services and products that may be of interest to you. We may contact you by email, text message, phone or by post to advise you of program benefits and promotions. If you receive a marketing message from us, you can opt-out by following the instructions in that message.
In general, we use personal information for marketing for the following purposes:
- to communicate offers relating to services and products that we think may be of interest to you (unless otherwise requested)
- to advise of ways to best use our service
- to develop processes, products and services to better meet your needs
- for our internal research and data analytics.
It is our policy not to sell or pass any personal information to any other organisations (outside our group companies) unless we are required to do so for fraud prevention and detection. We will never sell or rent your personal information to anyone else for their marketing purposes without your consent.
What are cookies and why does GoShopNow use them?
A cookie is a piece of data stored on a user's computer hard drive, containing information about that user. A cookie can only be accessed across the Internet by the web site that placed it there. Cookies are used by GoShopNow to help us improve the content and functioning of our website.
Why does GoShopNow record IP Addresses?
When a user joins GoShopNow, our computers may record their IP address. In the event that we detect fraud or abuse of our program or our Web site and computers, we may use the IP address of the offender to take action against them. Ultimately this ensures greater protection for you and your personal information.
What is "spam" and does GoShopNow send it?
The widely accepted definition of "spam" is unsolicited commercial email, or in other words, email of a commercial nature that the recipient does not want. GoShopNow does not send "spam". This is because when you join GoShopNow, you agree to allow us to send to you commercial advertising that is relevant to the product and services we offer.
How do we protect personal information?
We take all reasonable precautions to protect your personal information, whether it is stored in hard copy or electronic form from loss, unauthorised access, modification and unauthorised disclosure. Your personal information is only accessible by you and by those who are authorised to access it. Our employees and third parties who we deal with are bound by confidentiality obligations.
Hard copy documents are secured on our premises and at archive sites by locks and security systems. Whenever possible, hard copy documents are returned to you and not kept on our premises. Electronic data is protected by up-to-date computer and network security systems with appropriate firewalls, encryption technology, virus software and access passwords. We also seek to ensure that confidential face-to-face discussions between you and us occur in a secure environment.
Depending on any legal obligations to retain your personal information for a certain period of time, if we do not require your personal information, we will take reasonable steps to destroy it in a secure manner or by removing identifying features from it.
Is our website secure?
We appreciate that you may have concerns in relation to the confidentiality and security of your personal information on the internet. Therefore, we have implemented systems to ensure that your personal information is secure and confidential when you access our website or my account.
When we collect your personal information over the internet, it proceeds via our secure server utilising encryption technology. This helps to protect against unauthorised access to your personal information over the Internet. Your stored personal information is also protected from unauthorised access through the use of multiple firewalls, secure passwords and sign-in processes.
While our website and my account rely on the highest levels of technology to ensure maximum security, no data transmission over the internet can be guaranteed to be totally secure. To assist us in protecting your personal information, we expect you to keep confidential your access passwords at all times, to destroy any documentation we send to you containing your access passwords and to ensure you log out properly when you leave your computer and take appropriate steps to ensure security of your information
How can you access your personal information?
We maintain the quality of your personal information by taking reasonable steps to ensure that the information collected, used and disclosed is accurate, complete and up-to-date. You may access your personal information at any time via email firstname.lastname@example.org
In the event that you make a request to access personal information that has been archived, we may charge you a fee. The fee will be discussed with you prior to us actioning your request. We are unable to give you access to your personal information if we are prevented by law or if access would reveal personal information of another person.
You may also obtain further information about privacy (including general privacy information, answers to frequently asked questions and links to the 10 National Privacy Principles) on the Office of the Privacy Commissioner’s website at www.privacy.gov.au. Alternatively, you may write to The Office of the Privacy Commissioner, GPO Box 5218, Sydney, New South Wales, 2001.