2. Collection, use and disclosure
CSUA offers a variety of web services that are collectively referred to as the “Services”. CSUA collects personal data from individuals who visit the Group’s Websites (“Visitors”) and individuals who register to use the Services (“Customers”).
We are committed to protecting your personal data and complying with all appropriate legislation. This document details:
- 2.1 What personal data we collect?
- 2.2 Why and how do we use the personal data?
- 2.3 With whom do we share the personal data?
- 2.4 Your rights relating to the personal data
- 2.5 How to contact us
2.1 What personal data we collect?
When you use the Services (such as when you register with A7 IoB® or request for information through our Group’s Websites), CSUA may collect, amongst others, the following information.
- First and Last Names
- Business email address
- Phone number
- Group Name
- Job Level
If you visit the website, we may also collect information about your device used to access the website, your web browser type and language, your Internet Protocol (IP) address and geographic data associated with the IP address etc.
2.2 Why and how do we use the personal data?
The personal data is collected, used, disclosed and/or processed for the following purposes:
- provide and deliver the Services you have requested;
- create Customer profiles and give the Customer access to the Services;
- operate our internal operations, systems, products, and services;
- understand the Customers’ and Visitors’ experiences with a view to enhance the Customers’ and Visitors’ experiences of our services and products
- provide customer service related to our products and services;
- send service-related information associated with our products and services, including confirmation but not limited to actions taken (e.g. change of password), invoices raised, updates and enhancements, security alerts plus support and administrative messages;
- provide updates on promotions, upcoming events, and news about our products and services; and
- facilitating any proposed or confirmed merger, acquisition or business asset transaction involving any part of the Group and/or its related corporations, or corporate restructuring process.
In addition, personal data that is uploaded by the Customer (either directly by the Customer using CSV, Google Sheets or via an authenticated API connection) is used to derive KPIs (Key Performance Indicators). These KPIs are either predefined by CSUA or defined by the Customer.
2.3 With whom do we share the personal data?
- any person to whom you authorise us to disclose your personal data;
- law enforcement agencies, relevant government ministries, regulators, statutory boards or authorities in compliance with any laws, rules, guidelines and regulations or schemes imposed by any governmental authority;
- our professional advisors, which may include lawyers, auditors, accountants or other consultants; and
- service providers we hire to perform services on our behalf, including, but not limited to the generation of invoices and bills, managing credit card payments for the Services, and managing our information technology systems. These service providers do not have the right to use your personal data for their own purposes. If you have consented, CSUA may share your personal data with the Group’s service providers so that these service providers can contact you on our behalf.
From time to time, CSUA may partner with other persons to jointly offer products or services. If you purchase or specifically express interest in a jointly-offered product or service from CSUA, the Group may share your personal data with our joint promotion partner(s). CSUA does not control our business partners’ use of your personal data or whether their use of the personal data will be in accordance with their own privacy policies. If you do not wish for your personal data to be shared in this manner, you may opt not to purchase or specifically express interest in a jointly offered product or service.
2.4 Your rights relating to the personal data
- 2.4.1 Access
You are entitled to request for access to a copy of the personal data which we hold about you or information about the ways in which your personal data has been or may have been used or disclosed by us, using the form available here.
Please note that a reasonable fee may be charged for an access request. If so, we will inform you of the estimated fee before processing your request. We reserve the right not to provide access to the personal data until you have paid the access fee.
We will respond to your request as soon as reasonably possible. Should we not be able to respond to your request within 30 calendar days of receiving your request, we will inform you in writing within 30 calendar days of the time by which we will be able to respond to your request and/or the reasons we are unable to do so.
- 2.4.2 Correction
You are entitled to request to correct an error or omission in the personal data which we hold about you, using the form available here.
We will respond to your request as soon as practicable. Should we not be able to respond to your request within 30 calendar days of receiving your request, we will inform you in writing within 30 calendar days of the time by which we will be able to respond to your request and/or the reasons we are unable to do so.
- 2.4.3 Withdrawal of consent
The consent that you provide for the collection, use and disclosure of your personal data will remain valid until such time it is being withdrawn by you in writing.
You are entitled to withdraw any consent you have provided to us previously and to request us to stop collecting, using and/or disclosing your personal data for any or all of the purposes listed herein, by submitting your request using the form available here. Please note that we are generally not obliged to forward any request for withdrawal of consent to any third party to whom we have disclosed your personal data – such request should be made directly with such third party.
Upon receipt of your written request to withdraw your consent, we may require reasonable time (depending on the complexity of the request and its impact on our relationship with you) for your request to be processed and for us to notify you of the consequences of us acceding to the same. We will respond to your request as soon as reasonably possible. In general, we shall seek to process your request within 10 working days of receiving it. Should we not be able to respond to your request within 10 working days of receiving your request, we will inform you in writing within 10 working days of the time by which we will be able to respond to your request.
Please note that the withdrawal of your consent does not affect our right to continue to collect, use and disclose your personal data where such collection, use and/or disclosure without consent is permitted or required under applicable laws and regulations. Further, we are generally not obliged to delete or destroy personal data after your withdrawal of consent (but such personal data will continue to be protected and retained in accordance with our internal policies and applicable laws and regulations).
- 2.4.4 Automated profiling
We use anonymized data in our profiling activities.
3. Website navigational information
CSUA uses commonly-used information-gathering tools, such as cookies and web beacons, to collect information as you navigate the Group’s Websites (“Website Navigational Information”). This section describes the types of Website Navigational Information that may be collected on the Group’s Websites and how this information may be used.
If you have chosen to identify yourself to CSUA, it uses session cookies containing encrypted information to allow to uniquely identify you. Each time you log into your web account in relation to the Services, a session cookie containing an encrypted, unique identifier that is tied to your web account is placed on your browser. These session cookies allow CSUA to uniquely identify you when you are logged into the services and to process your online transactions and requests. Session cookies are required to use the Services.
CSUA uses persistent cookies that only CSUA can read and use to identify browsers that have previously visited the Websites. When you purchase the Services or provide the us with personal data, a unique identifier is assigned to you. This unique identifier is associated with a persistent cookie that is placed on your web browser. CSUA is especially careful about the security and confidentiality of the information stored in persistent cookies. For example, CSUA does not store account numbers or passwords in persistent cookies. If you disable your web browser’s ability to accept cookies, you will be able to navigate the Websites, but you will not be able to successfully use the Services.
Companysetupaustralia.com.au may use information from session and persistent cookies in combination with anonymized personal data about the Customers to provide you with information about the Services
3.2 Web Beacons
We use web beacons alone or in conjunction with cookies to compile information about Customers’ and Visitors’ usage of the websites and email interactions with the website. Web beacons are clear electronic images that can recognise certain types of information such as cookies on your computer when you view a particular website tied to the web beacon. For example, CSUA may place web beacons in marketing emails that notify us when you click on a link in the email that directs you to one of the Websites. We use web beacons to operate and improve the websites and email communications.
CSUA may use information from web beacons in combination with anonymized personal data about the Group’s Customers to provide you with information about the Group and the Services.
3.3 Flash Cookies
CSUA may use local shared objects, also known as flash cookies, to store your preferences or display content based upon what you view on the Group’s Websites to personalise your visit. Third parties with whom the Group partners to provide certain features on the Group’s Websites or to display advertising based upon your web browsing activity use flash cookies to collect and store information.
3.4 IP Addresses
When you visit the website, we collect your Internet Protocol (“IP”) address(es) to track and aggregate non-personal data. For example, CSUA uses IP addresses to monitor the regions from which Customers and Visitors navigate the website.
3.5 Third Party Cookies
From time-to-time, CSUA engages third parties to track and analyse usage and volume statistical information from individuals who visit the Group’s Websites. CSUA may also use other third-party cookies to track the performance of Group’s advertisements. The information provided to third parties does not include personal data, but this information may be re-associated with personal data after the Group receives it.
3.6 Links to other websites
4. Public forums and customer testimonials
CSUA may provide bulletin boards, blogs, or chat rooms on the Group’s Websites. Any personal data you choose to submit in such a forum may be read, collected, or used by others who visit these forums, and may be used to send you unsolicited messages. CSUA is not responsible for the personal data you choose to submit in these forums.
CSUA may post a list of Customers and relevant testimonials on the Group’s Websites that contain personal data such as Customer names and titles. CSUA will obtain the consent of each Customer prior to posting any such personal data.
5. International transfer of personal data collected
6. Communications preferences
We offer customers and visitors who provide contact information a means to choose how we use the information provided. If you have previously consented to but no longer wish to receive marketing and non-transactional communications, please click on the “unsubscribe” link located at the bottom of the marketing emails. Alternatively, you may send a request specifying your communication preferences to email@example.com. Customers cannot opt-out of receiving transactional emails related to their account with CSUA or the Services.
We use appropriate administrative, technical, and physical security measures to protect personal data of CSUA visitors and customers.
8. Changes to this privacy statement