Environmental Systems Solutions is in the business of creating systems for the collection of environmental and cultural information. In our business administration we collect very limited categories of personal information in order to provide our clients with the information or services they ask for. ‘Personal information’ is information or an opinion about an identified individual. Personal information can be: true or false; verbal, written, or photographic, and, recorded or unrecorded.
Further information about how we respect privacy considerations in the ordinary course of our business administration is described in this policy.
More broadly, ESS recognises that respecting and protecting the rights and interests of Indigenous peoples and local communities in their cultural information and traditional knowledge is of paramount concern. Such cultural information and traditional knowledge might be shared in the systems we create. The rights and interests of Indigenous peoples and local communities in this information derive from a number of sources in international, Australian and customary law and practice. For example, we might recommend to clients that the tools we develop for them embed robust consent, confidentiality, privacy and security protocols within their system features in order to respect these rights and interests in a way that is consistent with the governance structure and customary law of our client group.
For further information about privacy considerations and their application to specific projects please contact the ESS Privacy Officer at ([email protected]).
What is your personal information?
What personal information do we collect and hold?
We may collect the following types of personal information:
We may also collect some information that is not personal information because it does not identify you or anyone else. For example, we may collect anonymous answers to surveys or aggregated information about how users use our .
How do we collect your personal information?
We collect your personal information directly from you unless it is unreasonable or impracticable to do so. When collecting personal information from you, we may collect in ways including:
We may also collect personal information from third parties including:
Website and Information Management System Use
We ESS may log IP addresses (that is, the electronic addresses of computers connected to the internet) to analyse trends, administer the website, track users movements, and gather broad demographic . More specifically, when users to our website and/or systems are logged in, we track requests for web pages, the time of access, and the client browser details. In addition, we keep a history of changes made by logged in users, in order to enhance user experience by enabling users to return to previous versions when needed.
ESS uses Google Analytics to monitor website use and may from time to time also use other website analytics tools.
What happens if we can’t collect your personal information?
If you do not provide us with the personal information described above, some or all of the following may happen:
For what purposes do we collect, hold, use and disclose your personal information?
We collect personal information about you so that we can perform our business activities and functions and to provide best possible quality of customer service.
We collect, hold, use and disclose your personal information for the following purposes:
To whom may we disclose your information?
We may disclose your personal information to:
Direct marketing materials
We may send you direct marketing communications and information about our products and services that we consider may be of interest to you. These communications may be sent in various forms, including through social media, mail, SMS, fax and email, in accordance with applicable marketing laws, such as the Spam Act 2003 (Cth). If you indicate a preference for a method of communication, we will endeavour to use that method whenever practical to do so. We will only include you in direct marketing with your prior consent. In addition, at any time you may opt-out of receiving marketing communications from us by contacting us (see the details below) or by using opt-out facilities provided in the marketing communications and we will then ensure that your name is removed from our mailing list.
We do not provide your personal information to other organisations for the purposes of direct .
How can you access and correct your personal information?
You may request access to any personal information we hold about you at any time by contacting us (see the details below).
Where we hold information that you are entitled to access, we will try to provide you with suitable means of accessing it (for example, by mailing or emailing it to you) within a reasonable time.
There may be instances where we cannot grant you access to the personal information we hold. For example, we may need to refuse access if granting access would interfere with the privacy of others or if it would result in a breach of confidentiality. If that happens, we will give you written reasons for any refusal.
If you believe that personal information we hold about you is incorrect, incomplete or inaccurate, then you may request us to amend it. We will consider if the information requires amendment. If we do not agree that there are grounds for amendment then we will add a note to the personal information stating that you disagree with it.
What is the process for complaining about a breach of privacy?
If you believe that your privacy has been breached, please contact us using the contact information below and provide details of the incident so that we can investigate it.
We will ensure our procedure for investigating and dealing with privacy breaches is carried out according to our data breach response plan and complies with the notifiable breach requirements of the Act. Further information on our data breach response plan can be requested from our Privacy .
Do we disclose your personal information to anyone outside Australia?
We may disclose personal information to any related bodies corporate, project partners and third party suppliers and service providers located overseas for some of the purposes listed above.
We take reasonable steps to ensure that the overseas recipients of your personal information do not breach the privacy obligations relating to your personal information.
Note that as of July 2018 ESS does not undertake any activities that would require compliance with the European General Data Protection Regulations (GDPR). The need for compliance with the GDPR will be kept under review should ESS offer goods or services to, or monitor the behaviour of, European Union data subjects.
We take reasonable steps to ensure your personal information is protected from misuse and loss and from unauthorised access, modification or disclosure. We may hold your information in either electronic or hard copy form. Personal information is destroyed or de-identified when no longer needed.
As our website is linked to the internet, and the internet is inherently insecure, we cannot provide any assurance regarding the security of transmission of information you communicate to us online. We also cannot guarantee that the information you supply will not be intercepted while being transmitted over the internet. Accordingly, any personal information or other information which you transmit to us online is transmitted at your own risk.
Our website may contain links to other websites operated by third parties. We make no representations or warranties in relation to the privacy practices of any third party website and we are not responsible for the privacy policies or the content of any third party website. Third party websites are responsible for informing you about their own privacy practices.
We will treat your requests or complaints confidentially. Our representative will contact you within a reasonable time after receipt of your complaint to discuss your concerns and outline options regarding how they may be resolved. We will aim to ensure that your complaint is resolved in timely and appropriate manner.
Please contact our Privacy Officer at:
PO Box 324, Essendon, Victoria 3040, Australia
Telephone: +61 3 9014 7114
Email: ([email protected])
To learn more
For further information about the Privacy Act 1988 (Cth) and the privacy laws of other Australian States and Territories consult the Office of the Australian Information Commissioner: www.oaic.gov.au
The full text of the Privacy Act 1988 (Cth) is available at www.legislation.gov.au
The Australian Privacy Principles on which this policy is based are set out in Schedule 1 to that Act. Make sure to always consult the most recent version of the Act as legislation is amended from time to time.