Privacy Policy
5 September 2023
In this Privacy Policy, 'us' 'we' or 'our' means AllyOne Pty Ltd ABN 41 657 206 874 (AllyOne).
Introduction
AllyOne provides legal project management technology platform and related services.
We are committed to respecting your privacy. Our Privacy Policy sets outs out how we collect, use, store and disclose your personal information.
By providing personal information to us, you consent to our collection, use and disclosure of your personal information in accordance with this Privacy Policy and any other arrangements that apply between us. We may change our Privacy Policy from time to time by publishing changes to it on our website. We encourage you to check our website periodically to ensure that you are aware of our current Privacy Policy.
Personal information includes information or an opinion about an individual that is reasonably identifiable. For example, this may include your name, age, gender, postcode and contact details.
Personal information we collect and hold
We collect and hold personal information about you when you use our services or deal with us in some way. The information we collect and/or hold about you and other individuals (such as your spouse or partner) can include:
name, date of birth and gender;
contact details (for you, your emergency contact and your referees) such as postal address, telephone numbers and email address;
financial institution account details like your credit card or bank account number;
your device ID, device type, geo-location information, computer and connection information, statistics on page views, traffic to and from the sites, ad data, IP address and standard web log information;
details of the products and services we have provided to you or that you have enquired about, including any additional information necessary to deliver those products and services and respond to your enquiries;
any additional information relating to you that you provide to us directly through our website or app or indirectly through your use of our website or app or online presence or through other websites or accounts from which you permit us to collect information;
information you provide to us through customer surveys; or
any other personal information that may be required in order to facilitate your dealings with us.
How we collect and hold personal information
We may collect these types of personal information either directly from you, or from third parties. We may collect this information when you:
register on our website or app;
communicate with us through correspondence, chats, email, or when you share information with us from other social applications, services or websites;
interact with our sites, services, content and advertising; or
invest in our business or enquire as to a potential purchase in our business.
We may collect personal information about you from publicly available sources, including social applications, services or websites.
In addition, when you apply for a job or position with us we may collect certain information from you (including your name, contact details, working history and relevant records checks) from any recruitment consultant, your previous employers and others who may be able to provide information to us to assist in our decision on whether or not to make you an offer of employment or engage you under a contract. This Privacy Policy does not apply to acts and practices in relation to employee records of our current and former employees, which are exempt from the Privacy Act.
We hold personal information in hard copy or electronic f ormat, in storage facilities that we operate ourselves or that are operated by trusted third parties. We use a combination of technical solutions, security controls and internal processes to help us protect your personal information and our network from unauthorised access and disclosure. We aim to keep your personal information for as long as we need it – for example for business or legal reasons. When we no longer need it, we take reasonable steps to destroy or de-identify your personal information.
The purposes for which we collect, hold, use and disclose personal information
We collect, hold, use and disclose personal information, in the ordinary course of carrying out AllyOne’s functions and activities, for a number of purposes including:
to enable you to access and use our website and services;
to operate, protect, improve and optimise our website and services, business and our users’ experience, such as to perform analytics, conduct research and for advertising and marketing;
to send you service, support and administrative messages, reminders, technical notices, updates, security alerts, and information requested by you;
to send you marketing and promotional messages and other information that may be of interest to you, including information sent by, or on behalf of, our business partners that we think you may find interesting;
to administer rewards, surveys, contests, or other promotional activities or events sponsored or managed by us or our business partners;
to comply with our legal obligations, resolve any disputes that we may have with any of our users, and enforce our agreements with third parties; and
to consider your employment application;
facilitating our internal business operations, including to comply with legal requirements, insurance contracts and professional obligations;
informing individuals of any coming events or other items of interest; and
direct marketing to you.
We may also disclose de-identified information to a trusted third party who also holds other information about you. This third party may combine that information in order to enable it and us to develop anonymised consumer insights so that we can better understand your preferences and interests, personalise your experience and enhance the products and services that you receive.
We don’t commonly collect sensitive information but it may be disclosed during the recruitment and employment process. Sensitive information is personal information about an individual’s ethnic origin, political opinions, religious beliefs, union membership, sexual orientation or criminal record. It also includes information regarding an individual’s health, genetic or biometric information. We only disclose sensitive information with your consent.
If you would like to opt out of our direct marketing communications you may notify us to that effect. We will not use sensitive information to direct market our services unless you agree beforehand.
To whom do we disclose your personal information?
We may disclose personal information for the purposes described in this privacy policy to:
our employees and related bodies corporate;
third party suppliers and service providers (including providers for the operation of our websites and/or our business or in connection with providing our products and services to you);
professional advisers, dealers and agents;
payment systems operators (eg merchants receiving card payments);
our existing or potential agents, business partners or partners;
our sponsors or promoters of any competition that we conduct via our services;
anyone to whom our assets or businesses (or any part of them) are transferred;
specific third parties authorised by you to receive information held by us; and/or
other persons, including government agencies, regulatory bodies and law enforcement agencies, or as required, authorised or permitted by law.
Using our website and cookies
We may collect personal information about you when you use and access our website.
While we do not use browsing information to identify you personally, we may record certain information about your use of our website, such as which pages you visit, the time and date of your visit and the internet protocol address assigned to your computer.
We may also use 'cookies' or other similar tracking technologies on our website that help us track your website usage and remember your preferences. Cookies are small files that store information on your computer, TV, mobile phone or other device. They enable the entity that put the cookie on your device to recognise you across different websites, services, devices and/or browsing sessions. You can disable cookies through your internet browser but our websites may not work as intended for you if you do so.
We may also use cookies to enable us to collect data that may include personal information. For example, where a cookie is linked to your account, it will be considered personal information under the Privacy Act. We will handle any personal information collected by cookies in the same way that we handle all other personal information as described in this Privacy Policy.
Storage and security
We take reasonable steps to ensure that any of you personal information which we hold is accurate, complete and up-to-date. These steps include promptly updating personal information when we are advised that the information has changed and checking our contact lists for accuracy. We store personal information for as long as it is needed fro the purpose for which it was collected or as required by law.
We may hold your personal information in either electronic or hard copy form. We take reasonable steps to protect your personal information from misuse, interference and loss, as well as unauthorised access, modification or disclosure and we use a number of physical, administrative, personnel and technical measures to protect your personal information. For example, we use multi factor authentication, sessions, automated backups, access tokens. However, we cannot guarantee the security of your personal information.
Links
Our website may contain links to websites operated by third parties. Those links are provided for convenience and may not remain current or be maintained. Unless expressly stated otherwise, we are not responsible for the privacy practices of, or any content on, those linked websites, and have no control over or rights in those linked websites. The privacy policies that apply to those other websites may differ substantially from our Privacy Policy, so we encourage individuals to read them before using those websites.
How may you access your personal information and seek correction of it
If you would like access to your personal information, it can be obtained by making written request to the Chief Executive Officer, AllyOne at our Canberra office. Our telephone number, postal address and email details are available on our website: www.AllyOne.com.au.
There is no fee for making this request but sometimes we might charge an administration fee to cover the time and cost of finding and putting together the information you want. We will let you know if an administration fee will be charged and how long we will need to provide you access, after we receive your request. If we are unable to meet your request, we will let you know why.
If you believe your personal information is not accurate, up-to-date or complete, please let us know. Again, you can address your request for a correction to our Chief Executive Officer. We may need to check with others before making any changes but we will let you know how long this will take. If we don’t think the information needs correction, we will give a statement setting out our reasons for this view.
Complaints about how we handle your personal information
If you have a concern about our handling of your personal information, please contact the Chief Executive Officer, AllyOne at our Canberra office.
To help us fix the issue(s) please provide us the details together with any supporting evidence. We will acknowledge the receipt of your complaint within 10 working days. Our aim will be to investigate it and determine the steps we will take to resolve the matter, within 30 working days. This may not be possible in all circumstances depending on the nature and extent of your complaint. We will let you know if we need more information and/or time to resolve it.
If you are not satisfied with how we managed your complaint, you can contact the Office of the Australian Information Commissioner via www.oaic.gov.au.