In keeping with our Value of Respect, °µÍø¸£Àû recognises the importance of the privacy of individuals who have dealings with °µÍø¸£Àû, such as customers, suppliers and employees. °µÍø¸£Àû is bound by the Australian Privacy Principles, to the extent required by the Privacy Act 1988. This policy outlines how °µÍø¸£Àû Limited and its Australian subsidiaries (°µÍø¸£Àû) collect, use and manage personal information.

1.1 Personal information °µÍø¸£Àû collects

°µÍø¸£Àû collects personal information where reasonably necessary for its functions and activities. Personal information that °µÍø¸£Àû may hold includes the following:

  • name, address and contact details;
  • date of birth;
  • employment and income details;
  • bank account details;
  • details of the products and services provided to an individual by °µÍø¸£Àû;
  • details of an individual’s dealings with °µÍø¸£Àû, including records of telephone, email and online interactions;
  • credit-related personal information (see section 1.5 below).

1.2 How °µÍø¸£Àû collects personal information

°µÍø¸£Àû collects personal information directly from an individual where reasonable and practical. °µÍø¸£Àû may also collect such information from other sources, including:

  • other entities who provide services to °µÍø¸£Àû related to the products and services provided to an individual by °µÍø¸£Àû;
  • publicly available sources of information;
  • an individual’s representatives (e.g. spouse, professional adviser);
  • subsidiaries of °µÍø¸£Àû Limited.

1.3 How °µÍø¸£Àû uses personal information and to whom it is disclosed

°µÍø¸£Àû collects, uses and discloses personal information generally to provide an individual with products and services requested, and to respond to queries. °µÍø¸£Àû may also use personal information to make an individual aware of °µÍø¸£Àû’s other products and services or offerings provided by °µÍø¸£Àû in conjunction with its business partners or associates. °µÍø¸£Àû may not be able to do these things without the individual’s personal information. °µÍø¸£Àû may also collect, use and disclose personal information in connection with potential or actual unlawful activity, misconduct or transfers of °µÍø¸£Àû’s business or assets.

°µÍø¸£Àû understands the importance of keeping personal information private and only discloses such information to third parties in limited circumstances. Third parties with whom °µÍø¸£Àû usually exchanges information include:

  • credit providers and credit reporting agencies;
  • an individual’s representatives;
  • °µÍø¸£Àû’s professional advisers including legal, accounting, auditing and business consulting advisers;
  • government and regulatory authorities;
  • subsidiaries of °µÍø¸£Àû Limited.

°µÍø¸£Àû also exchanges personal information with contractors who manage services provided to an individual on °µÍø¸£Àû’s behalf, or who provide services to °µÍø¸£Àû, including:

  • mailing services
  • billing and debt recovery functions;
  • customer injury services;
  • marketing functions;
  • website, data management and technology services.

Parties to which °µÍø¸£Àû discloses personal information may be located in Australia and other countries. As outlined below, web traffic information is disclosed to Google Analytics when you visit our websites and Google stores information across multiple countries.

1.4 Website usage information and cookies

When you use our website, °µÍø¸£Àû collects certain standard information that is sent by your browser to our website. This includes technical information, such as your IP address, browser type, operating system, language, time zone setting, access times and any referring website addresses. We also use Google Analytics to collect this information about your interaction with our websites. For more about how Google collects and processes data, and your privacy choices with Google, please see Google’s privacy policy and their information at www.google.com/policies/privacy/partners/ 

°µÍø¸£Àû uses this information to administer our website and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes. °µÍø¸£Àû also collects certain information to provide users with a personalised experience when visiting our websites. 

Through the use of a ‘cookie’, °µÍø¸£Àû can record information about your visit to our website including the clickstream to, through and from our site (including date and time), the pages visited, page interaction information and methods used to browse away from the page. This information is used anonymously and in aggregate, and is collected and logged for statistical purposes. Through analysis of these records, °µÍø¸£Àû is able to provide an improved service when users revisit our websites. 

A cookie is a small data file that a website may write to your hard drive when you visit. A cookie file can contain information (such as a user ID) that the website can use to track the pages you have visited and your preferences. The only personal information a cookie can contain is information you personally supply. A cookie cannot read data from your hard disk or read cookie files created by other websites.

°µÍø¸£Àû uses cookies to track user traffic patterns and to provide a better service for users when they visit the website. Users can set their browsers to provide notification when a cookie is received, and the opportunity to accept or reject the cookie. Users can also refuse all cookies by turning the function off in their browsers, although this may affect your browsing experience..

1.5 Credit-related personal information

°µÍø¸£Àû sometimes provides products and services to customers on credit. In connection with this credit, °µÍø¸£Àû does in some cases handle certain consumer credit-related personal information described below (creditrelated personal information), including information from credit reporting bodies (CRBs). For example, °µÍø¸£Àû may handle this information in providing credit to sole traders, or where individuals such as directors provide personal guarantees for credit °µÍø¸£Àû provides to their companies.

°µÍø¸£Àû may collect and hold any types of credit-related personal information about an individual permitted under the Privacy Act, including: 

  • name, sex, date of birth, driver’s licence number, employer and three most recent addresses;
  • confirmation of previous information requests to CRBs made by other credit providers and credit insurers about the individual;
  • details of previous credit applications, including the amount and type of credit and credit limit;
  • details of current and previous credit arrangements, including credit providers, start/end dates and certain terms and conditions; 
  • permitted payment default information, including information about related payment arrangements and subsequent repayment; 
  • information about serious credit infringements (e.g. fraud); 
  • information about adverse court judgments and insolvency; 
  • publicly available information about the individual’s credit worthiness;
  • any credit score or credit risk assessment indicating a CRB's or credit provider's analysis of the individual's eligibility for consumer credit.

This information may include information about an individual’s arrangements with other credit providers as well as with °µÍø¸£Àû.

°µÍø¸£Àû may disclose credit-related personal information to CRBs to assist the CRBs to maintain information about individuals to provide to other credit providers for credit assessments. °µÍø¸£Àû may collect credit-related personal information from CRBs for purposes including, to the extent permitted by law, to assess relevant credit or guarantee applications, manage and review the credit or guarantee, assign debts, collect overdue payments and produce assessments and ratings in respect of the individual’s credit worthiness. °µÍø¸£Àû may also exchange credit-related personal information with guarantors, debt buyers and other credit providers. 

The CRBs °µÍø¸£Àû may use include:

•    Veda, PO Box 964 North Sydney 2059, www.mycreditfile.com.au, 1300 762 207;

•    Credit Works Australia, Suite 1218, 100 Walker Street, North Sydney, NSW, 2060, www.creditworks.com.au, support@creditworks.com.au, (02) 8188 2363.

Under the Privacy Act, individuals may request CRBs not to:

•    use their credit-related personal information to determine their eligibility to receive direct marketing from credit providers; and

•    use or disclose their credit information, if they have been or are likely to be a victim of fraud.

Please see other sections of this Privacy Policy for further information regarding access, correction, complaints, disclosures (including to other countries) of personal information and how we collect and hold personal information. This Privacy Policy is not intended to limit or exclude °µÍø¸£Àû’s obligations under the Privacy Act in relation to credit-related personal information. Additional privacy consents and notifications may also apply to credit customers and guarantors. 

1.6 How °µÍø¸£Àû stores personal information

°µÍø¸£Àû stores personal information at its own premises and with the assistance of its service providers. °µÍø¸£Àû maintains strict procedures and standards and takes a range of steps to prevent unauthorised access to, or disclosure of, personal information and protect an individual’s information from misuse or loss. Once an individual’s information is no longer needed by °µÍø¸£Àû, reasonable steps are taken to destroy or de-identify it. 

1.7 Accessing and updating personal information

In most cases an individual can gain access to or update personal information held by °µÍø¸£Àû. To make a request to access or update personal information held by °µÍø¸£Àû, contact °µÍø¸£Àû in writing. °µÍø¸£Àû may need to verify your identity. °µÍø¸£Àû may charge a fee to cover the cost of retrieving and copying requested information. 

1.8 Complaints and further information

Further information may be obtained about how °µÍø¸£Àû manages personal information from the Privacy Officer (see contact details below). If an individual believes that °µÍø¸£Àû has breached its privacy obligations or that individual’s privacy rights in any way, a complaint can be made to the Privacy Officer (see contact details below). °µÍø¸£Àû will endeavour to act promptly in response to a complaint. 

1.9 °µÍø¸£Àû contact details

Please contact °µÍø¸£Àû about privacy-related issues by post or email:

The Privacy Officer
°µÍø¸£Àû Limited
PO Box 6041
NORTH RYDE NSW 2113
Email: privacy.officer@boral.com.au

2.0 Updates to this Policy

This Privacy Policy may vary from time to time and changes will be published on this page.