Intrinsic Safety Pty Ltd is a Registered Training Organisation with responsibility for delivering vocational education and training.
Intrinsic Safety Pty Ltd collects and stores personal information on our learners and industry clients. Intrinsic Safety Pty Ltd complies with the Privacy Act 1988 (Commonwealth). This policy describes how Intrinsic Safety Pty Ltd collects, manages, uses, discloses, protects, and disposes of personal information in accordance with the thirteen Australian Privacy Principles (APPs) outlined in Schedule 1 of the Privacy Amendment (Enhancing Privacy Protection) Act 2012.
Under the Privacy Act 1988 and Privacy Amendment (Enhancing Privacy Protection) Act 2012 (s6(1)), personal and sensitive information is defined as follows:
Authority to collect and store information
Intrinsic Safety Pty Ltd is an approved Registered Training Organisation by the Australian Skills Quality Authority. This registration is issued under the authority of the National Vocational Education and Training Regulator Act 2011. This legislation requires Intrinsic Safety Pty Ltd to collect personal and sensitive information from its learners. This requirement is specified in the Data Provision Requirements 2012 which is one of five legislative instruments that Intrinsic Safety Training must comply with as a condition of its registration.
The date provision requirements require Intrinsic Safety Pty Ltd to collect data from learners in accordance with the Australian Vocational Education and Intrinsic Safety Pty Ltd Information Statistical Standard (AVETMISS). This is a complex information standard that defines information about who the learner is, where the training is delivered and what they are studying. The Standards for Registered Training Organisations require Intrinsic Safety Pty Ltd to retain and store this information for up to 30 years and to report training activity to government agencies in accordance with mandatory reporting requirements.
Together these requirements form a statutory obligation to collect, store and report information of any learner participating in nationally accredited training. The publications referred to in this section can be accessed from the ASQA website.
Collection and use
Intrinsic Safety Pty Ltd collects personal information, either directly or indirectly, that is reasonably necessary for, or directly related to its delivery of the services it offers. Some of the information collected may be regarded as ‘sensitive’ as defined by the Privacy Act.
Contact information such as name, organisation, position, address, telephone, and email are collected for marketing, support services, mandatory reporting and for communicating with stakeholders as part of our day-to-day operation.
In addition to information collected training activity, Intrinsic Safety Pty Ltd will also collect, store and report information relating to satisfaction surveys, complaint handling and on our client employers.
Names, addresses, phone numbers, emergency contact details, bank account details and other employment related information is collected from employees for the purpose of managing human resources. The management of staff personal information complies with this policy.
Learner personal and sensitive information as well as training activity information is prescribed by the AVETMIS Standard. This information is collected directly from our learners using enrolment forms which may be paper based or electronic and other administrative forms including but not limited to complaint forms, recognition application, request for refund, transfer application, etc. Much of this information is entered into our student management system. Hard copy records are retained within our learner files.
Survey responses are collected using our Employer and Learner Satisfaction Surveys which are issued both in hard copy and electronic format. These survey results are returned to the main office and entered into our survey analysis software “Satisfaction Data”. Survey forms once entered into Satisfaction Data are either destroyed if hard copy or permanently deleted if in electronic form.
Enquiry information from prospective learners including personal contact information is collected directly from individuals who make data requests either by telephone or email in person or via our website.
Personal information collected by Intrinsic Safety Pty Ltd that may be regarded as ‘sensitive’ under the Privacy Act includes:
Intrinsic Safety Pty Ltd respects an individual’s right not to receive marketing material and provides an option within communications and on its website for individuals to unsubscribe from receiving marketing material. Intrinsic Safety Pty Ltd conducts its marketing communications and dissemination of service information in accordance with Australian Privacy Principle 7 (Direct marketing), the Spam Act 2003 (in respect of electronic communications), and the Do Not Call Register Act 2006. It is not, however, Intrinsic Safety Pty Ltd practice to ‘cold call’ for the purpose of marketing its products and services.
Google Analytics and cookies
The Intrinsic Safety Training web servers automatically log information such as server address, date and time of visit and web pages accessed. No personal information is recorded. These logs are used for website management and improvement.
Unsolicited personal information
If Intrinsic Safety Pty Ltd should receive unsolicited personal information, it will be treated and managed according to the Australian Privacy Principles.
Notification of collection
Intrinsic Safety Pty Ltd aims to notify individuals of the collection of their personal information before, or at the time of collection, or as quickly as possible thereafter. Notifications are usually in writing but may be verbal for telephone help-desk services, or research conducted by telephone interview.
Disclosure of personal information
Intrinsic Safety Pty Ltd does not disclose personal information other than for the purpose for which it was collected, or an individual has consented to a secondary purpose, or an individual would reasonably expect this (such as receiving communications about upcoming events), or if required by law.
Intrinsic Safety Pty Ltd may share personal information with the Commonwealth government in accordance with Commonwealth contractual obligations. In these circumstances, Intrinsic Safety Pty Ltd will take reasonable steps to inform and seek consent from the individuals concerned and take all reasonable steps to ensure that the recipient handles the personal information according to the APPs.
Intrinsic Safety Pty Ltd does not sell its mailing lists to third parties for marketing purposes.
Intrinsic Safety Pty Ltd does not disclose personal information to overseas recipients. While people around the world can access material published on our website, no statistical or research publications contain identifiable personal information.
Management of personal information
Intrinsic Safety Pty Ltd endeavours to ensure the personal information it collects and uses or discloses is accurate, up to date, complete and relevant. Intrinsic Safety Pty Ltd routinely updates the information held in its customer relationship management system. This includes confirming with learners who are returning for a new enrolment if their personal contact details have changed.
Access to and correction of personal information
Individuals may, subject to the exceptions prescribed by the Australian Privacy Principles, request access to and correction of their personal information where this is collected directly from individuals by Intrinsic Safety Pty Ltd.
Intrinsic Safety Pty Ltd does not charge for giving access to or for correcting personal information. Requests for access to or correction of personal information should be made in accordance with the learner access to records policy.
Information retention and disposal
Personal information is held in electronic and paper format:
Intrinsic Safety Pty Ltd retains personal information for 30 years. When personal information is no longer necessary for Intrinsic Safety Pty Ltd business functions, and it is lawful to do so, Intrinsic Safety Pty Ltd destroy the information.
Intrinsic Safety Pty Ltd takes active steps to protect personal information from misuse, interference, and loss, and from unauthorised access, modification, or disclosure.
Intrinsic Safety Pty Ltd systems and internal network are protected from unauthorised access using appropriate technologies. Most system data transferred over the internet is protected by Secure Socket Level protocol (SSL). The inherent risks associated with data transmission over the internet are, however, commonly acknowledged. Individuals, who do not wish to provide their personal information via the online website forms have the option of mailing this information to Intrinsic Safety Pty Ltd.
Access to the student management system is protected through user log-on and password, and assignment of user access rights.
Third-party providers used by Intrinsic Safety Pty Ltd for the delivery of services are all located within Australia and are required to be compliant with the Australian Privacy Principles and offer appropriate safeguards to protect personal information.
Intrinsic Safety Pty Ltd premises and data storage systems are fully secured. Intrinsic Safety Pty Ltd practices clean-desk policy and locking workstations when working with personal information. Paper documents containing names and addresses are required to be locked away and shredded when destroyed. All hardware is properly ‘sanitised’ before disposal.
Complaints and concerns
Complaints or concerns about Intrinsic Safety Pty Ltd management of personal information should be directed in writing to Intrinsic Safety Training Chief Executive Officer. Intrinsic Safety Pty Ltd will respond in writing within 10 business days. Complaints received by Intrinsic Safety Pty Ltd will be managed in accordance with the Complaints and Appeals and Appeals Policy.