Cyber Wyze Privacy Policy
This policy sets out how Cyber Wyze collects, holds, secures, uses and shares personal information, including sensitive information (both defined below).
About Cyber Wyze
We are an approachable and professional team of cyber security and technology experts providing advice and tailored cyber security solutions to businesses, mainly in the Defence, Manufacturing, Engineering and Professional Services industries.
About This Policy
This policy is based on Australian Privacy Principle 1 (APP 1) under the Privacy Act 1988 (Cth) (the Privacy Act), which requires the open and transparent management of personal information.
The policy applies to all personal information we collect, including information collected through our website. It must be followed by any employee, contractor, or other party authorised to access Cyber Wyze systems or data.
Nothing in this policy prevents Cyber Wyze from collecting, using or managing personal information where that information constitutes an employee record and where such collection, use or management complies with the Privacy Act.
This policy and associated practices are reviewed and updated regularly.
Personal Information
Personal information is information, including opinions (whether true or not), about an individual whose identity is apparent or can reasonably be ascertained. This includes information such as names, addresses, dates of birth and financial details.
Sensitive Information
Sensitive information is personal information that requires a higher level of protection under the Privacy Act. It includes information such as religious beliefs, ethnicity, political opinions, union or professional membership, and health or biometric information.
We only collect sensitive information where consent is provided, or where otherwise permitted by law, including where it is necessary to protect a person’s life, safety or health.
The Personal Information We Collect
Information collected through our systems
In delivering our services, Cyber Wyze systems may collect and store personal information. These systems may include remote monitoring and management systems, customer relationship management systems, communication platforms, website infrastructure, enterprise resource systems and credential management systems.
These systems may process personal information relating to our customers and, where applicable, their personnel or clients.
Other personal information
Where contact details are provided, this may include name, phone number, email address and business or residential address, along with any other information required to deliver services or meet legal obligations.
Employees and potential employees
We collect, store and use personal information relating to prospective and current employees. This may include:
- education and employment history
- training, performance and disciplinary records
- date of birth, banking and identification details
- employment terms and conditions
- emergency contact details
- payroll, tax, superannuation and leave information
- union or professional association membership
Information held as part of an employee record may be exempt from certain provisions of the Privacy Act where applicable.
Network activity
Cyber Wyze systems maintain logs of network activity, including internet usage and system access. These logs may be capable of identifying systems and users and are used for security, monitoring and operational purposes.
How We Collect and Hold Personal Information
We collect personal information directly from individuals through interactions such as web forms, email and service delivery activities. We may also obtain information from publicly available sources and customer-provided data.
We store personal information electronically on local systems and networks, as well as in cloud services hosted in Australia. Some information may also be held in physical form.
We use a range of security measures to protect personal information, including monitoring, access controls, encryption, backups and physical security controls. We also take steps to minimise the collection of personal information and restrict access to authorised personnel on a need-to-know basis.
We retain personal information for as long as it is required for the purposes for which it was collected or as required by law. Where information is no longer required, it is securely deleted or de-identified where practicable.
Why We Collect, Hold, Use and Disclose Personal Information
We collect, hold, use and disclose personal information to support the delivery and improvement of our services.
Use of personal information
We use personal information for purposes including:
- communicating with customers and potential customers
- delivering and improving services and technologies
- maintaining the effectiveness of systems and services
- understanding customer needs
- protecting our people, systems and operations
- complying with legal obligations
Disclosure of personal information
We may disclose personal information where required to support our operations, including to service providers and other parties where authorised or required by law.
Handling of Incidents
Cyber Wyze may use and disclose personal information where reasonably necessary to investigate, respond to or manage incidents impacting systems, services or data, including where required by law.
Anonymity or Pseudonymity
As required by APP 2, individuals are entitled to deal with us anonymously or using a pseudonym, except where identification is required by law or where it is impractical for us to do so.
Given the nature of our services, it will generally not be practical to engage anonymously. Requests can be directed to our Privacy Officer at [email protected].
How to Access and Request Corrections to Your Personal Information
Requests to access or correct personal information can be made by contacting:
Privacy Officer
Email: [email protected]
Phone: 1300 744 915
Address: 11/88 Tribune St, South Brisbane QLD 4101
Requests must be made in writing and identity verification may be required. In some circumstances, we may decline requests as permitted by law. A reasonable fee may apply to access requests, but not to the request itself.
Making a Complaint
Complaints regarding the handling of personal information should be directed to the Privacy Officer using the contact details above.
Overseas Disclosure
Cyber Wyze takes reasonable steps to ensure that personal information is stored in Australia.