Elston Group is committed to providing you with the highest levels of client service. We recognise that your privacy is very important to you. Privacy Amendment (Enhancing Privacy Protection) Act 2012 sets out a number of Australian Privacy Principles (APPs). Our aim is to both support and ensure that we comply with these principles. Further information on privacy in Australia may be obtained by visiting the website of the Office of the Australian Information Commissioner at http://www.oaic.gov.au/ .
Your Personal Information
As a financial service provider, entities within the Elston Group are subject to certain legislative and regulatory requirements under s961B of the Corporations Act and the Anti-Money Laundering and Counter-Terrorism Financing Act 2006. These require us to obtain personal information about you including:
- your name, contact details, date of birth, tax file number
- information regarding your dependents and family commitments
- your occupation, and employment history
- your financial needs and objectives;
- your assets, liabilities, income, expenses insurances, and social security entitlements
How We Collect Personal Information
Elston Group collects personal information directly from you or from third parties once authorisation has been provided by you. You have the right to refuse us authorisation to collect such information from a third party.
How We Use Your Personal Information
Primarily, your personal information is used in order to provide financial advice and services to you. We may also use the information that is related to the primary purpose and it is reasonable for you to expect the information to be disclosed.
From time to time, we may provide you with direct marketing material. If, at any time, you do not wish to receive this information any further, you may contact us with this request. We will endeavour to meet your request within 2 weeks. We maintain a Register for those individuals not wanting direct marketing material.
When We May Disclose Your Personal Information*
In line with modern business practices common to many financial institutions and to meet your specific needs we may disclose your personal information to the following organisations:
- superannuation fund trustees, insurance providers, fund managers and other product providers in order to
- manage or administer your product or service;
- compliance consultants;
- paraplanning contractors or temporary staff to handle workloads during peak periods;
- mailing houses;
- insurance reference bureaus and loss adjusters
- your professional advisers, including your solicitor or accountant as authorised by you;
- information technology service providers;
- another authorised representative of Elston Group if necessary;
- a potential purchaser/organisation involved in the proposed sale of our business for the purpose of due diligence, corporate re-organisation and transfer or all or part of the assets of our business. Disclosure will be made in confidence and it will be a condition of that disclosure that no personal information will be used or disclosed by them;
- a new owner of our business that will require the transfer of your personal information;
- government and regulatory authorities, as required or authorised by law;
Our employees and the outsourcing companies/contractors are obliged to respect the confidentiality of any personal information held by Elston Group.
The Corporations Act has provided the Australian Securities and Investments Commission with the authority to inspect certain personal information that is kept on our files about you.
We collect information about you for the purpose of reporting to AUSTRAC under the Anti-Money Laundering and Counter-Terrorism Financing Act 2006.
Elston Group takes its obligations to protect your personal information seriously, this includes when we operate throughout Australia or overseas.
In some instances where we utilise intermediaries, agents or services providers your information may be made available to their group of companies domiciled overseas to enable them to provide services to you.
If we are required to provide specific personal information to an overseas intermediary we will notify you prior to providing that information.
How We Store and Secure Your Personal Information
We keep your personal information in your client files or electronically. These files are accessible to authorised personnel only and are appropriately secured and subject to confidentiality requirements.
Personal information is treated as confidential information and sensitive information is treated as highly confidential.
It is a legislative requirement that we keep all personal information and records for a period of 7 years. Should you cease to be a client of ours, we will maintain your personal information on or off site in a secure manner for 7 years. After this, the information may be destroyed.
We have an obligation to report data breaches to the Office of the Australian Information Commissioner (OAIC) in certain circumstances. In the unlikely event that we have to notify the OAIC we will also notify the individuals affected.
Ensure Your Personal Information Is Correct
Elston Group takes all reasonable precautions to ensure that the personal information we collect, use and disclose is accurate, complete and up-to-date. To ensure we can maintain this level of accuracy and completeness, we recommend that you:
- inform us of any errors in your personal information; and
- update us with any changes to your personal information as soon as possible.
If you provide inaccurate or incomplete information we may not be able to provide you with the products or services you are seeking.
Access to Your Personal Information
You have a right to access your personal information, subject to certain exceptions allowed by law. We ask that you provide your request for access in writing (for security reasons) and we will provide you with access to that personal information. Access to the requested personal information may include:
- providing you with copies;
- providing you with the opportunity for inspection; or
- providing you with a summary.
If charges are applicable in providing access to you, we will disclose these charges to you prior to providing you with the information.
Some exceptions exist where we will not provide you with access to your personal information if:
- providing access would pose a serious threat to the life or health of a person;
- providing access would have an unreasonable impact on the privacy of others;
- the request for access is frivolous or vexatious;
- the information is related to existing or anticipated legal proceedings between us and would not be discoverable in those proceedings;
- providing access would reveal our intentions in relation to negotiations with you in such a way as to prejudice those negotiations;
- providing access would be unlawful;
- denying access is required or authorised by or under law;
- providing access would be likely to prejudice certain operations by or on behalf of an enforcement body or an enforcement body requests that access not be provided on the grounds of national security.
Should we refuse you access to your personal information, we will provide you with a written explanation for that refusal.
Using Government Identifiers
Although in certain circumstances we are required to collect government identifiers such as your tax file number, Medicare number or pension card number, we do not use or disclose this information other than when required or authorised by law or unless you have voluntarily consented to disclose this information to any third party.
Dealing with us anonymously
In most instances we will require personal information before we can provide services to you. Where it is lawful and practicable to do so you can deal with us anonymously; for example, if you telephone requesting our postal address.
Your sensitive information
Without your consent we will not collect information about you that reveals your racial or ethnic origin, political opinions, religious or philosophical beliefs or afflations, membership of professional or trade association, membership of a trade union, details of health, disability, sexual orientation, or criminal record.
This is subject to some exceptions including when:
- collection is required by law; and
- the information is necessary for the establishment, exercise or defence of a legal claim.
Third Party Wesbites
www.elstonpartners.com.au / www.elstonportfolios.com.au / www.elstonassure.com.au
Elston Group’s websites may provide links to third party websites. The use of your information by these third party sites is not within our control and we cannot accept responsibility for the conduct of these organisations. Other websites are not subject to our privacy standards. You will need to contact or review those websites directly to ascertain their privacy policies.
You may register with us to receive newsletters and other information. By doing so, your name and email address will be collected and stored on our database. We take care to ensure that the personal information you give us on our websites is protected. For example, our websites has electronic security systems in place, including the use of firewalls and data encryption.
If you do not wish to receive any further information from us, or you wish to update your registration details, please email your request to us. We will endeavour to meet your request within 5 working days.
Our Websites utilises cookies to provide you with a better user experience. Cookies also allow us to identify your browser while you are using our site – they do not identify you. If you do not wish to receive cookies, you can instruct your web browser to refuse them.
Please contact our Privacy Officer if you wish to complain about any breach or potential breach of your privacy rights. Your complaint will be responded to within 7 days. If you are not satisfied with the outcome of your complaint, you are entitled to contact the Office of the Privacy Commissioner.
Spam is a generic term used to describe electronic ‘junk mail’- unwanted messages sent to a person’s email account or mobile phone. In Australia, spam is defined as ‘unsolicited commercial electronic messages’.
The Australian Communications Authority (ACA) is responsible for enforcing the provisions of the Spam Act. Additional information about the Spam Act and the ACA’s role is available from: www.aca.gov.au.
‘Electronic messaging’ covers emails, instant messaging, SMS and other mobile phone messaging, but not cover normal voice-to-voice communication by telephone.
Elston Group complies with the provisions of the Spam Act when sending commercial electronic messages.
Equally importantly, Elston Group makes sure that our practices are in accordance with the National Privacy Principles in all activities where they deal with personal information.
Internal Procedure for dealing with complaints
The three key steps Elston Group follows:
- Consent – Only commercial electronic messages are sent with the addressee’s consent – either express or inferred consent.
- Identify – Electronic messages will include clear and accurate information about the person and the Elston Group that is responsible for sending the commercial electronic message.
- Unsubscribe – We ensure that a functional unsubscribe facility is included in all our commercial electronic messages and deal with unsubscribe requests promptly.
Comply with the law regarding viral messages
Elston Group ensures that Commercial Communications that include a Forwarding Facility contain a clear recommendation that the Recipient should only forward the Commercial Communication to persons with whom they have a relationship, where that relationship means that person could be said to have Consented to receiving Commercial Communications.
Comply with the age sensitive content of commercial communication
Where the content of a Commercial Communications seeks to promote or inspire interaction with a product, service or event that is age sensitive, Elston Group takes reasonable steps to ensure that such content is sent to Recipients who are legally entitled to use or participate in the product service or event.
The Spam Act specifies that the person’s consent has been withdrawn within five working days from the date that an unsubscribe request was sent (in the case of electronic unsubscribe messages) or delivered (in the case of unsubscribe messages sent by post or other means).
Please contact our Privacy Officer if you wish to complain about any breach or potential breach of your privacy rights. Your complaint will be responded to within 7 days. If you are not satisfied with the outcome of your complaint, you are entitled to contact the Office of the Privacy Commissioner or the Australian Communications Authority.
Address: Box 7536 BUNDALL QLD 9726
Telephone: (07) 5557 3000
Facsimile: (07) 5557 3010