Who we are
Our website address is: https://kitlegal.com.au.
What is personal information?
Personal information is information or an opinion about an individual that is reasonably identifiable. For example, this may include your name, email address and contact details.
Credit information is personal information that is collected in connection with a credit application. For example, this may include identification information, default information or repayment history information.
What personal information do we collect?
The information we may collect from you and hold includes:
- name, residential or postal address, email address, date of birth, telephone numbers (including mobile and fax);
- details of your interactions with us;
- internet protocol address;
- location information;
- information about the type of device and operating system used by you;
- bank account details or credit or debit card details;
- accounting and financial information;
- occupation, employment history and details;
- any other relevant information that you give to us for the purpose of providing you with our products or services;
We may collect these types of information either directly from you or from third parties. We may collect information when you:
- visit our website;
- use our Digital Compliance Platform or other products or services;
- submit electronic or hard copy forms with us;
- participate in a phone or video conference call with us; and
- email or otherwise correspond with us.
We may collect information about you from others such as:
- related entities;
- third party suppliers and service providers in connection with providing our products and services;
- public sources;
- your employer;
- your advisers.
Why do we collect, use and disclose personal information?
We may collect, hold, use and disclose your personal and credit information for the following purposes:
- to provide and enhance our products and services;
- to send service, support and administrative messages, reminders, technical notices, updates, security alerts, and information requested;
- to send marketing and promotional messages and other information that may be of interest to our clients;
- to enable our clients to access and use our website and services;
- to identify and control or minimise risks to our services;
- to enable us to monitor suspicious or fraudulent activity in relation to our services;
- to enforce compliance with our terms;
- to provide information to representatives and advisors, including lawyers and accountants, to help us comply with legal, accounting, or security requirements;
- where we believe it is necessary to protect our legal rights, interests and the interests of others, including in connection with legal claims, compliance, regulatory and audit functions, prevention of fraud, ensuring data security;
- to comply with our legal obligations, resolve any disputes that we may have with any of our customers, and enforce our agreements with third parties; and
- for any purpose related to the above.
If you do not provide us with the personal or credit information we request, we may not be able to provide you with the services or products you have requested.
Do we use your personal information for direct marketing?
We may send you direct marketing communications and information about our services. This may take the form of emails, SMS, mail or other forms of communication or notifications, in accordance with the Spam Act and the Privacy Act. You can opt-out of receiving marketing materials from us by contacting us using the details set out below or by using the opt-out facilities provided (eg an unsubscribe link).
Who do we disclose your personal information to?
- related entities;
- third party suppliers and service providers in connection with developing and providing our products and services;
- payment systems operators;
- banks or other financial institutions;
- anyone to whom our assets or businesses (or any part of them) are transferred;
- specific third parties authorised by you to receive information held by us;
- government agencies, regulatory bodies and law enforcement agencies, or as required by law.
Do we disclose personal information outside Australia?
Some of our software service providers are located outside of Australia. These include Microsoft Office 365, Atlassian, Acuity Scheduling, Qwilr, MailChimp, Google, and TypeForm. These service providers store data in the following jurisdictions; USA, Germany and Australia.
We only deal with reputable software service providers and will take reasonable steps to ensure that any overseas recipient will deal with such personal information in a way that is consistent with the Australian Privacy Principles.
Using our website and cookies
We may collect personal information about you when you use and access our website.
While we do not use browsing information to identify you personally, we may record certain information about your use of our website, such as which pages you visit, the time and date of your visit and the internet protocol address assigned to your computer.
We may also use ‘cookies’ or other similar tracking technologies on our website that help us track your website usage and remember your preferences. Cookies are small files that store information on your computer, TV, mobile phone or other device. They enable the entity that put the cookie on your device to recognise you across different websites, services, devices and/or browsing sessions. You can disable cookies through your internet browser, but our websites may not work as intended for you if you do so.
How do we keep your information safe?
We may hold your personal and credit information in either electronic or hard copy form. We take reasonable steps to protect your information from misuse, interference and loss, as well as unauthorised access, modification or disclosure and we use a number of physical, administrative, personnel and technical measures to protect your personal information. For example, we:
- train our staff about how to keep your information safe and secure;
- have firewalls, intrusion detection and virus scanning tools to stop viruses and unauthorised access to our system;
- have building security measures in place;
- destroy and de-identify data when it is no longer required.
However, we cannot guarantee the security of your information.
Accessing or correcting your information
You can access the personal and credit information we hold about you by contacting us using the information below. Sometimes, we may not be able to provide you with access to all of your information and, where this is the case, we will tell you why. We may also need to verify your identity when you request your information.
If you think that any information we hold about you is inaccurate, please contact us and we will take reasonable steps to ensure that it is corrected.
Do we disclose information to credit reporting bodies?
We do not disclose any of your credit information to credit reporting bodies.
Making a complaint
If you think we have breached the Privacy Act, or you wish to make a complaint about the way we have handled your personal or credit information, you can contact us using the details set out below. Please include your name, email address and/or telephone number and clearly describe your complaint. We will acknowledge your complaint and respond to you regarding your complaint within a reasonable period of time. If you think that we have failed to resolve the complaint satisfactorily, we will provide you with information about the further steps you can take.
If you are not satisfied with how we have dealt with your complaint you can contact the Office of the Australian Information Commissioner using any of the following details:
GPO Box 5218
Sydney NSW 2001
Phone: 1300 363 992
A: Level 1, 276 Flinders Street, Adelaide SA 5000
Effective: May, 2020