Privacy Policy

The Lighthouse Partnerships values your privacy and recognises that you have a right to control how your personal information is collected and used.

This policy explains how we use information that you may provide while visiting our website and accessing our services in accordance with the Australian Privacy Principles (APPs) which are contained in the Privacy Act 1988 (Cth) (Privacy Act) and other relevant laws. We may update this policy from time to time to reflect changes in our activities and laws.

If you have any questions or would like further information about this policy or the way Lighthouse Partnerships collects or handles personal information, you can contact us at:

Privacy Officer

Lighthouse Partnerships

P.O. Box 1082

Bathurst NSW 2795

info@lighthousepartnerships.org

What type of personal information do we collect and hold

We try to collect information only when we need it for a particular function or activity. The main way we collect personal information is when you give it to us. The types of personal information that we collect and hold about you will depend on the type of dealings you have with us. 

  • Participants in evaluation and research: We may collect your name, email address, and records of information you provide during interviews or focus group discussions, including details of your opinions about an organisation or program or social issue.

  • Clients and contractors: We may collect information about our contractors including names, addresses, email addresses, telephone numbers, bank account details, qualifications, employment history, and contact details of referees.

  • Enquiries on our website: We may collect your name, contact details, and the details of your enquiry when you use the ‘Contact us’ form on our website.

Collecting sensitive information

Sometimes we may collect sensitive information about you, for example, if you are a participant in an evaluation or research project. We only collect sensitive information directly and with your consent, or as otherwise authorised by law. This might include information about your health, racial or ethnic origin, political opinions, association memberships, religious beliefs, sexual orientation, criminal history, genetic or biometric information.

How do we collect personal information

We may collect personal information in a number of ways, including through our website, and directly from clients, contractors, and research participants.

Why do we collect personal information

The main purposes for which we collect, hold, use and disclose personal information are set out below. 

  • Participants in evaluation and research: We collect personal information for the purpose of contacting you to conduct an evaluation or research project, and for what is relevant and necessary for the proper conduct of an evaluation or research project.

  • Clients and contractors: We collect personal information for administering a contract for services, making payment for services rendered, and sending updates about work.

  • Enquiries on our website: We collect personal information for the purpose of responding to your enquiry.

Who do we disclose your personal information to

We will keep personal information confidential and will only use or disclose it for the primary purpose for which it was collected or for a directly related purpose.

It may be necessary for us to disclose your personal information to other parties, including our contractors, service providers, employees and volunteers. Personal information of participants in research and evaluation will only be disclosed with your consent. 

Such disclosure may include disclosure to contractors and services providers located outside of Australia. Common third parties we might need to disclose your personal information to include:

  • contracted service providers, including researchers and interpreters

  • financial institutions for payment processing

  • clients of evaluation and research services (only with your consent).

We will make every effort to preserve user privacy, however, we may need to disclose personal information when we have a good-faith belief that release is appropriate to comply with the law. This could be in response to a warrant, subpoena, or other court order, the purposes of worker’s compensation or in response to legislative requirements or if we believe on reasonable grounds that the disclosure is necessary to prevent or lessen a serious and imminent threat to the life or health of a stakeholder or that of another person.

What if you don’t provide us with your personal information

In some circumstances, we allow individuals the option of not identifying themselves, or of using a pseudonym, when dealing with us (for example, when completing a feedback survey or viewing our website). 

Direct marketing

Direct marketing is the promotion of goods and services directly to you including through emails, SMS, phone calls and the post. We will only send you direct marketing materials if you would reasonably expect to receive them or you have consented. If it is impractical to gain your consent, we will always provide a simple means for you to request not to receive the material (‘opting out’). We will not use your sensitive information for the purposes of direct marketing unless you have given us prior consent.

Opting out

You can opt out of receiving marketing communications from us by using the unsubscribe facility that we include in our commercial electronic messages (such as email and SMS) to opt out of receiving those messages, or contacting us on the details above.

Cross border disclosures

We may disclose personal information collected through our website to our contracted information technology service providers that are hosted overseas.

Web traffic information is disclosed to Google Analytics when you visit our websites. Google stores information across multiple countries.

When you communicate with us through a social network service such as Facebook or Twitter, the social network provider and its partners may collect and hold your personal information overseas.

Security and retention of personal information

We will:

  • take reasonable steps to store personal information securely (whether it is held in paper, electronic or any other form), protecting it from unauthorised access

  • take reasonable steps to safeguard personal information collected from misuse, loss and modification

  • destroy personal information in accordance with our professional obligations.

The security of your personal information is important to us and we use the recommended industry standards when storing and dealing with your personal information. The steps we take to secure the personal information we hold include:

  • website protection measures (such as encryption, firewalls and anti-virus software)

  • access restrictions to our computer systems (such as login and password protection)

  • staff training and implementation of workplace policies and procedures that cover access, storage and security of information.

Confidentiality of personal information

All employees, contractors, and volunteers at Lighthouse Partnerships are bound by:

  • our Privacy Policy

  • by state and federal privacy legislation

  • by any agreement they sign (including any Contract for Services and Code of Conduct).

Our employees, contractors and volunteers are required not to release information that can identify participants in evaluation and research other than with their consent. This information must be kept confidential and not released into the public domain.

Website security

While we try to protect the personal information and privacy of users of our website, we cannot guarantee the security of any information that you disclose online and you disclose that information at your own risk. If you are concerned about sending your information over the internet, you can contact us by post using the details above.

You can also help to protect the privacy of your personal information by letting us know as soon as possible if you become aware of any security breach.

Third party websites

Links to third party websites that are not operated or controlled by Lighthouse Partnerships are provided for your convenience on our website. Lighthouse Partnerships is not responsible for the privacy or security practices of those websites. Third party websites should have their own privacy and security policies, which we encourage you to read before supplying any personal information to them.

Email Disclaimer/Policy

Email communications and any attachments are confidential and may be privileged between Lighthouse Partnerships and the addressee only. If you are not the intended recipient of an email from Lighthouse Partnerships, any use of such a communication is strictly prohibited. Confidentiality and privilege is not waived, and we request that you delete the email and notify us. Lighthouse Partnerships does not warrant and/or guarantee that the integrity of email communications has been maintained or that it is free of any virus, interception or interference. Any opinion expressed in it is not the opinion of Lighthouse Partnerships unless that is stated or apparent from its terms.

Access and Correction to personal information

You have a right to seek access to information held about you and to correct such information if it is inaccurate, incomplete, misleading or not up-to-date, subject to exceptions permitted by law. Some exceptions are:

  • if providing access to the information would pose a serious and imminent threat to the life or health of any individual;

  • if providing access would have an unreasonable impact upon the privacy of other individuals; or

  • if providing access would be unlawful.

As the accuracy of information held depends largely on the information you provide, we recommend that you advise Lighthouse Partnerships if there are any errors in your personal information.

If you request to access your personal information, we will need to verify your identity before processing your request. 

We will attempt to respond to your request within 30 days.

Complaints

You can make a complaint about how Lighthouse Partnerships has collected or handled your personal information by contacting our Privacy Officer using the details provided at the start of this Policy. We may ask you to provide additional details needed from you to assess your complaint. 

We will attempt to respond to your complaint within 30 days.

If you are unhappy with our response, you can make a complaint to the Office of the Australian Information Commissioner or, in some instances, other regulatory bodies. To make a complaint to the OAIC, please visit the OAIC’s website or phone 1300 363 992.

Last updated September 2021