You will need to consider the way your business collects, uses, discloses and stores personal information before drafting a policy. This will affect what needs to be included in the policy in order to be compliant. You should also consider the Australian Privacy Principles and ensure that your business practises are compliant.
LawPath can connect you with a business lawyer through our lawyer directory who can guide you through this process.
- You are an Australian or Norfolk Island Government agency; or
- Your business or not-for-profit generates an annual turnover of at least $3 million; or
- You are a private health service provider; or
- Your business or not-for-profit generates an annual turnover less than $3 million but falls within one of the small business exceptions.
Unsure if you fit the bill? Check whether you are required to comply with the Privacy Act with the Office of the Australian Information Commissioner.
- The type of personal information you are collecting and holding;
- The method of collection and storage of the personal information;
- The purposes for which you collect, use, disclose and hold the personal information;
- How an individual may request access to the personal information;
- How an individual may request correction of the personal information;
- What the complaint process is for an individual about your breach of the Australian Privacy Principles and how you will deal with the complaint; and
- Whether you are likely to disclose personal information to overseas entities and if so, what countries the overseas entities are in.
- Have an establishment in the European Union; or
- Do not have an establishment in the European Union but offer goods or services or monitor the behaviour of individuals in the EU.
Need more help? Contact a LawPath consultant on 1800 529 728 to learn more about customising legal documents, obtaining a fixed-fee quote from Australia’s largest legal marketplace or to get answers to your legal questions.