OUR COMMITMENT TO YOU
Children's Medical Research Institute (CMRI) is committed to protecting your privacy and handling your personal information in accordance with the Australian Privacy Principles as set out in the Privacy Act 1988 (Cth), as amended. Personal information is information or data which identifies you as an individual or from which your identity can be reasonably ascertained.
WHAT DATA WE COLLECT
CMRI only collects personal information on individuals that is necessary to conduct our business activities. The personal information CMRI collects varies depending on the purposes for which CMRI is collecting the information. We set out our purposes in the section below entitled “The Purposes of Collection”.
CMRI may collect personal information such as name, gender, addresses, telephone numbers, email addresses, date of birth, education and employment histories, personal interests, family stories and bank/credit card details. CMRI may also collect personal information from publicly available sources such as online information directories, online social media sources, telephone directories or company websites.
CMRI may also collect anonymous traffic data on our own websites to improve our services and to use remarketing or similar audience features to reach people who have previously visited our websites.
Where lawful and practicable, you will be given the option to deal with us without identifying yourself, such as making an inquiry about activities we might undertake.
If you do not provide some or all of the personal information requested, we may not be able to offer you our services or respond to you correctly. For example, if you do not provide us with all of the personal information we request when you are making a donation or purchasing merchandise or other products and services, we may not be able to process that donation or purchase correctly or to correctly issue you with a tax-deductible receipt or tax invoice. If you apply for a volunteer or paid position with CMRI and do not supply all the personal information we request, we may not be able to process your application correctly or respond to you on a timely basis.
When it is important and when we are able, we will let you know the effects of a failure to provide personal information, if and when the situation arises.
HOW WE COLLECT AND HOLD DATA
We collect personal information in a number of ways, both directly and indirectly.
We may contact you directly or you may contact us directly; such as by telephone, or through manual or online donation forms, registrations or transactions, or by ordering merchandise or purchasing products, or taking part in an event or a contest, such as a raffle. At an event, we may take your picture and ask for personal details. We also request personal information in application forms when seeking volunteers, or filling student or paid staff roles.
We hold personal information electronically and in hard copy form, both at our own premises and with the assistance of our service providers. We take security steps to protect the personal information we hold from misuse, loss, unauthorised access, modification or disclosure. These steps include a network firewall, encrypted transmission of electronic data, up-to-date anti-virus software, regular monitoring of all network traffic and strict access control policies on electronic data including authorisation of user log-ins and password levels. We also confirm that any third party service providers we use also have satisfactory processes in place. We secure any paper files in locked locations with restricted physical access and use of security alarms. We also take measures in respect of destroying or de-identifying personal information that is no longer needed for any lawful purpose. In relation to receiving donor, participant or customer payments, CMRI uses Secure Socket Layer (SSL) certificates, which is a generally accepted standard for secure commerce transactions.
THE PURPOSES OF COLLECTION
We collect personal information for purposes which are directly related to one or more of our functions or activities.
These purposes include:
- Seeking financial support for our medical research activities through donations or in-kind contributions;
- Processing of donations or merchandise and product orders, including issuing tax receipts and tax invoices;
- Registration for some event, contest or activity and acknowledgement of your participation;
- Using images and personal or family stories in our newsletters or on our websites; - Recruitment of volunteer roles, student positions, paid staff or contractor roles; conducting surveys on particular topics; or informing you about our work and activities.
We may also use personal information collected in any way to contact you for any of our purposes and to seek your participation in future in any one of these activities. We sometimes conduct activities under different brand names, including Children’s Medical Research Institute, Jeans for Genes, Jog for Genes, Journey for Genes, Jump for Genes, The Great Cycle Challenge, Ks for Kids or CellBank Australia. We may contact you regarding any of these branded activities.
DISCLOSURE OF INFORMATION
The third parties to whom we disclose personal information are located in Australia. If we do disclose information to a party in another country in future, we will take steps to ensure that the overseas party is obliged to protect the privacy and security of your personal information under privacy standards substantively the same as those that apply in Australia.
If you are a donor, we may occasionally share contact details with other like-minded charitable organizations, who will contact you with information about them that may be of interest to you. However, before disclosing any of your information to such a third party we will give you the opportunity to opt out of receiving such offers. Sharing of details may be arranged through an external service provider, which is also under an obligation to comply with the Australian Privacy Principles (or an overseas equivalent). In return, the other charitable organizations generally allow us to make similar contacts with their donors and, in this way, we can reach more people with vital information about our work and activities.
If you make a recurring direct debit or credit card donation to CMRI, your financial information will be securely stored by Westpac Banking Corporation and not CMRI. This information will only be disclosed at the request of you, or your financial institution, in connection with a claim made for an alleged incorrect or wrongful debit.
At any time, we may be required by law or legal demand to provide personal information to another party, such as a regulatory authority.
ACCESS TO AND CHANGES TO PERSONAL INFORMATION
Where the personal information is used in connection with communicating our fundraising activities and needs, you may contact us to amend the ways in which we communicate with you, what we contact you about and the frequency of such contacts.
If you wish to allow another person to access your details (including family members) you need to notify us in writing and this request will be noted on your record.
For security purposes, CMRI will require you to identify yourself, such as provide us with your date of birth or answer another security question, before providing information that we hold about you.
USE OF DIGITAL SERVICES AND COOKIES
Our contact details are:
Children's Medical Research Institute 214 Hawkesbury Rd Westmead NSW 2145 Australia Phone: 1800 436 437 Email: firstname.lastname@example.org
For information about privacy generally, or if your concerns are not resolved to your satisfaction, you may contact the Office of the Australian Information Commissioner at www.oaic.gov.au and on 1300 363 992.
Policy updated – 13th July 2015.