- Overview
Resource Services Group (RSGx) is committed to protecting the privacy of individuals.
RSGx is bound to comply with the following legal requirements, including the regulations made under these Acts:
- the Australian Privacy Principles (APPs) as set out in the Privacy Act 1988 (Cth) (the Act); and
- the equivalent legislation applying in most Australian states and territories.
People dealing with RSGx have the right to know what sort of personal information RSGx holds and collects, for what purposes, and how it is collected, held, used, and disclosed. Third parties or RSGx directors, employees and other individuals are also entitled to access to their own information and to correct that information if necessary.
- Objective
This policy explains how RSGx collects, stores, uses, and discloses your personal information (including sensitive information) in accordance with the APPs.
A copy of the APPs may be obtained from the website of The Office of the Australian Information Commissioner at Read the Australian Privacy Principles | OAIC
- Policy
What kinds of personal information does RSGx collect and store?
Personal information is information or an opinion that identifies an individual or from which an identity can be reasonably ascertained whether recorded in a material form.
Generally, the types of personal information RSGx collects include name, or business name, contact details, identification information such as gender, date of birth, telephone numbers, email address, postcode, title, information in forms submitted to RSGx, including details of medical conditions and health information and payment details, including banking and credit card details.
The other types of personal information that RSGx collects depend on the nature of the interactions with RSGx. For example, RSGx may also collect and hold information about:
- Employee candidates – information about qualifications, experience, screening checks, including health, reference etc.; and
- Employees/personnel – in addition to the information about employee candidates, records of phone, internet and email usage and where undertaken, records of visual surveillance and closed circuit television monitoring for security purposes, information relating to former employment or engagement including information about emergency contact details, performance, conduct, payroll matters, disciplining, resignation, termination, drug/alcohol tests, leave and taxation, banking or superannuation affairs.
Sensitive information is any personal information that includes information or an opinion about an individual’s:
- Racial or ethnic region.
- Political opinions or associations.
- Religious or philosophical beliefs.
- Trade union membership or associations.
- Sexual orientation or practices.
- Criminal record.
- Health or genetic information.
- Some aspects of biometric information.
RSGx does not normally collect, use, or disclose sensitive information about an individual but if RSGx does, it will be done so in accordance with law.
- How is personal information collected and stored?
Personal information may be collected verbally, in writing, by telephone, by email and through RSGx’s website and/or databases.
RSGx normally collects personal information directly from the individual to whom it relates, except where it is not reasonably practical to do so. In some cases, RSGx collects personal information from third parties.
RSGx only collects sensitive information directly from individuals with their consent, or where required, it is authorised or otherwise permitted to collect the information from a third party by law.
Personal information may also be collected from, and disclosed to, third parties during business activities. For example, during a recruitment process, steps may be taken to verify the accuracy and completeness of the information and, in appropriate circumstances, health checks, credit checks or criminal records checks may be carried out.
An individual has the option, where lawful and practicable, not to be identified when communicating or entering transactions with RSGx (including using a pseudonym). RSGx may be unable to do business with an individual or provide the services required by an individual unless personal information is provided.
- How is personal information used?
Personal information may be used for various purposes connected with RSGx’s business, depending on the circumstances for which it is collected. This includes but is not limited to the following:
- to verify an individual’s identity;
- to maintain and update RSGx’s records;
- in connection with job applicants, to assess applications and consider or make contact about other positions;
- in connection with employees, for purposes relating to employment or engagement including terms of engagement, training, disciplining, payroll, superannuation, health and safety, administration, insurance (including WorkCover) and staff management; and
- to enable RSGx to deliver services or information to individuals or to an organisation;
- to maintain or establish a business relationship, including with a customer, supplier, contractor, or employee;
- as required by law; and
- any other purpose that would reasonably be expected.
- How do we protect personal information?
RSGx is committed to safeguarding all personal information that is provided to it. RSGx maintains physical, electronic, and procedural safeguards to protect your personal information from misuse, interference, unauthorised access, modification or disclosure, and loss or corruption by computer viruses. Importantly, RSGx restricts access to a limited number of employees who require access to perform their duties or fulfil RSGx’s functions.
RSGx take reasonable steps to protect the security of the personal information we hold, such as:
- training our staff in how to keep personal information safe and secure;
- regularly assessing risks relating to misuse, interference, loss and unauthorised access, modification or disclosure of information;
- maintaining audit trails of access, modification, and deletion of electronic records of information; and
- undertaking regular privacy and data security audits.
- Sharing information with other organisations?
RSGx may share personal information with people and organisations that help RSGx with its business, such as IT support, professional advisors, and corporate and administrative services. Personal information may be processed by employees or third parties operating outside of Australia. When RSGx does this, it takes steps to ensure that its service providers are required to protect your personal information, including complying with the Act.
- Review of Privacy Policy
This policy will be reviewed from time to time to take account of new laws and changes to the operations and practices of RSGx. Updated versions of this policy will be published on the RSGx website.
- Complaints
If an individual has a query, concern, or complaint regarding the way in which personal information is handled or believes that RSGx has breached its obligations under the Act or has failed to comply with this policy, they should make a complaint to the Privacy Officer via email or in writing by post. A written response will be provided by RSGx at the end of the investigation.
- Privacy Officer Contact Details
RSGx has appointed the Head of Legal and Contracts as the ‘Privacy Officer’. The Privacy Officer is the primary point of contact for privacy matters.
By email | Privacy@rsgx.com |
By post | The Privacy Officer, Unit D, 10-16 South Street, Rydalmere, NSW 2116 |
RSGx will respond to requests to access to correct, update or supplement personal information within a reasonable period.