We are committed to protecting your personal information, and ensuring its privacy, accuracy and security. We handle your personal information in a responsible manner in accordance with the Privacy Act 1988 (Act) and the Australian Privacy Principles (APPs).
‘Sensitive information’ (a type of personal information), has the same meaning as in the Act. In summary, it means information or an opinion about an individual’s race or ethnic origins, political opinions and associations, religious beliefs or affiliations, philosophical beliefs, sexual preferences or practices, trade or professional associations and memberships, union membership, criminal record, health or genetic information or biometric information.
Whose personal information do we collect?
We may collect your personal information from a range of sources, including from you, recruitment agencies, contractors, business partners and government agencies. For example, we may collect your personal information when you visit Canberra Southern Cross Club or the Southern Cross Health Club either as a member or guest; apply for, join or renew your membership of Canberra Southern Cross Club or the Southern Cross Health Club; place your membership card in gaming or other machines; enter a competition or promotion; collect a gaming machine payout; request to be self-excluded from gaming; request or acquire a product or service from us; provide a service or product to us; apply for employment with us; or communicate with us via our website, by e-mail, telephone or in writing.
What types of personal information do we collect and hold?
The personal information we collect includes:
We will only collect your sensitive information: if you have consented to us doing so – for example, where Southern Cross Health Club collects personal information from Health Club members and their health service providers; as part of information collected about directors and employees for company and human resource management purposes; or where required or permitted by law.
How do we collect personal information?
We only collect personal information by lawful and fair means. We usually collect personal information from:
Why do we collect personal information?
We collect the personal information: necessary for us to administer your membership of Canberra Southern Cross Club or Southern Cross Health Club; provide you with the products and services you have requested from us; for marketing purposes and to provide you with information about products and services that may be of interest to you; to improve the products and services we provide; and to enable us to conduct our business, including managing any credit we have provided to you and meeting our legal and regulatory obligations. If you do not provide your personal information, we may not be able to supply the requested product or service, employ you or otherwise deal with you.
For the operation of our licensed club, we collect personal information that is required by, or necessary for us to comply with our obligations under, laws including the Gaming Machine Act 2004 (ACT); Gaming Machine Regulation 2004 (ACT); Gambling and Racing Control (Code of Practice) Regulation 2002 and Liquor Act 2010 (ACT).
How we deal with unsolicited personal information?
If we receive personal information about you that we have not requested, and we determine that we could not have lawfully collected that information under the APPs had we asked for it, we will destroy or de-identify the information if it is lawful and reasonable to do so.
Do you have to disclose your identity when dealing with us?
Where lawful and practicable, we will give you the option of interacting with us anonymously or using a pseudonym.
We only use your personal information for the purpose for which it was provided to us, for related purposes (for personal information excluding credit eligibility information), or as required or permitted by law. Such purposes include:
We may disclose, and you consent to us disclosing, your personal information to third parties:
We may use and disclose, and you consent to us using and disclosing, your personal information to provide you with information about our products, services and promotions that we consider may be of interest to you. You may opt out at any time if you do not, or no longer, wish to receive marketing and promotional material. You may do this by: contacting us via e-mail or in writing at the address below and requesting that we no longer send you marketing or promotional material; or where applicable, clicking the “Unsubscribe” button.
We will only use or disclose your sensitive information for the purpose for which it was initially collected or for a directly related purpose, as required or permitted by law, or where you consent to the use or disclosure.
We do not disclose personal information to third parties outside Australia, unless required or permitted by law, except in relation to Southern Cross Health Club members who pay membership fees by direct debit (Direct Debit Payers).
Any overseas disclosure does not affect our commitment to safeguarding your personal information. Where reasonable in the circumstances, our contracts with overseas recipients oblige them to comply with the APPs and the Act. Direct Debit Payers:
How is my personal information kept secure?
We take reasonable steps to protect your personal information from misuse, interference, loss and unauthorised access, modification and disclosure. Such steps include: physical security over paper-based and electronic data storage and premises; computer and network security measures, including use of firewalls, password access and secure servers; restricting access to your personal information to employees and those acting on our behalf who are authorised and on a ‘need to know’ basis; retaining your personal information for no longer than it is reasonably required, unless we are required by law to retain it for longer; and entering into confidentiality agreements with staff and third parties.
Where we no longer require your personal information, including where we are no longer required by law to keep records relating to you, we will ensure that it is de-identified or destroyed
We take reasonable steps to ensure that your personal information is accurate, complete and up-to-date. However, we rely on you to advise us of any changes or corrections to the information we hold about you. If you consider that the information we hold about you is not accurate, complete or up-to-date, or if your information has changed, please let us know as soon as possible.
You may request access to the personal information we hold about you by contacting us. We will respond to your request within a reasonable time. We will provide you with access to the information we hold about you unless otherwise permitted or required by law. If we deny you access to the information, we will notify you of the basis for the denial unless an exception applies. Where reasonable and practicable, we will provide access to the information we hold about you in the manner you request. No fee applies for requesting access to information we hold about you. However, we reserve the right to charge a reasonable fee where we do provide access.
If you believe that personal information we hold about you is incorrect, incomplete or not current, you may request that we update or correct your information by contacting us. We will deal with your request within a reasonable time. If we do not agree with the corrections you have requested (for example, because we consider that the information is already accurate, up‑to‑date, complete, relevant and not misleading), we are not required to make the corrections. However, where we refuse to do so, we will give you a written notice setting out the reasons.
We do not adopt, use or disclose government related identifiers except as required or permitted by law.
If you have a complaint in relation to the collection, storage, use or disclosure of your personal information, please contact our Privacy Officer using the details below. You will need to provide us with details of your complaint, as well as any supporting evidence and information. We will review all complaints received and our Privacy Officer will respond to you. If you are not satisfied with our response, you may discuss your concerns with or complain to the Australian Privacy Commissioner via www.oaic.gov.au.
(a) by email to firstname.lastname@example.org
(b) by writing to: Privacy Officer, Canberra Southern Cross Club,
92-96 Corinna Street, Phillip ACT 2602
(c) by telephone: (02) 6283 7200
(d) by fax: (02) 6282 1553
Effective date: 12 March 2014