- Your privacy is important to us and we are committed to managing your personal information responsibly and in accordance with our legal obligations including the requirements of the Privacy Act 1988 and with the Australian Privacy Principles. These laws and principles regulate, among other things, the way we collect, use, disclose, keep secure, and give you access to your personal information.
- You are not required to provide us with your personal information, but if you do not do so we may not be able to provide you with our products or services.
What kind of information do we collect?
- In order to provide our products and services, including establishing and administering your investment and providing information about our products and services, and to comply with relevant legislation, we may collect the following information:
- full name, date of birth, gender and contact details including telephone, address, e-mail and fax;
- a copy of your driver licence and/or passport or other identification documentation for the purpose of verifying identity and to ensure compliance with the Anti-Money Laundering and Counter-Terrorism Financing Act and/or other legislation and regulations regarding identification verification, and tax reporting and withholding;
- your tax file number (TFN) and bank account details for the purpose of administering investor accounts and tax reporting and withholding;
- investor contribution details and investment choice;
- details about authorised signatories on your investments or accounts with us;
- detailed contact information about your financial adviser; and
- copies of any relevant trust deeds, partnership agreements or constitutions, which may be relevant to comply with the Anti-Money Laundering and Counter-Terrorism Financing Act.
- It may, on occasion also be necessary to obtain other details, including information relating to powers of attorney or for probate and estate administration.
How do we collect and hold personal information?
- We may collect your personal information in various ways including by telephone, our website, from documents or correspondence and by email. Wherever practicable, we will collect information about you from you personally.
- However, it may be necessary at times to collect information about you from other external sources, such as:
- a financial adviser or broker;
- authorised representatives, such as executors or administrators; and
- identification verification service providers.
- If you use our website, our web server (i.e. the computers that house our website) has the capacity to collect the following types of information for statistical purposes:
- the number of users who visit the website;
- the number of pages viewed; and
- traffic patterns.
- This is anonymous statistical data and no attempt is made to identify users or their browsing activities. This data is used only to evaluate our website performance and to improve the content we display to you.
- Other information, such as browser type, is included in a ‘cookie’ that is sent to your computer when you complete certain tasks on our website. A cookie contains bits of information that enables our servers to identify and interact efficiently with your computer. Cookies are designed to provide a better, more customised website experience, and to make it easier for you to use our website. You can configure your computer to accept or reject cookies.
- Your information is protected from unauthorised access through the use of secure passwords, user logins or other security procedures. Developments in security and encryption technology are reviewed regularly.
- Where necessary, we will remind you that the Internet is an insecure medium.
For what do we use personal information?
- Generally, we only use and disclose information for the purpose for which it was disclosed to us or related purposes which would reasonably be expected. Those purposes include:
- to establish and administer your investment or account and your relationship with us;
- for communication purposes including surveys and questionnaires;
- to comply with our record-keeping, reporting, and tax obligations;
- to protect legal rights and comply with legal obligations;
- to prevent fraud and abuse;
- for quality assurance and training purposes;
- to enable us to provide information about new and existing products and services that will enhance our relationship with you. However, we do respect the right of individuals to ask us not to do this; and
- to handle any relevant enquiries or complaints.
- We may be required by law to disclose personal information. For instance, we may be required to provide details to:
- Australian Government regulators such as the Australian Securities and Investments Commission, the Australian Tax Office, the Australian Transaction Reports and Analysis Centre and to other regulatory or government entities;
- any person who requests a copy of a member register of a registered managed investment scheme;
- the Financial Ombudsman Service (FOS) or the Australian Financial Complaints Authority (AFCA);
- as required by a court order (including in Family Law matters);
- other regulatory or governmental entities outside of Australia.
- In order to meet our investors’ needs and provide some investor services, such as administration of accounts and mailing of investor distribution statements, it may be necessary to release information or provide access to external service providers, for instance:
- to any organisations involved in providing, managing or administering our products systems or services such as custodians, registries, administrators, mail houses and software and information technology providers;
- to auditors, consultants and other professional advisers;
- to your financial adviser;
- to a legal personal representative, attorney or any other person who may be entitled to receive the proceeds from your investment or account with us;
- to other financial institutions who hold an account in an investor’s name, for example, where amounts have been transferred to or from that account;
- to authorities investigating (or who could potentially investigate) alleged fraudulent or suspicious transactions in relation to an investment or account.
- Information about you or your dealings with us is not and will not be sold to any other company, individual, or group.
Can you access and amend your personal information?
- You may request access to any personal information we hold about you. Generally, if it is incorrect, we will correct it at your request.
- Your right to access is subject to some exceptions allowed by law. We will notify you of the basis for any denial of access to your personal information.
Can you complain?
- Your complaint will be referred to our Privacy Officer who will investigate the issue and determine the steps we will take to resolve your complaint. We may ask you to provide additional information.
- We will notify you in writing of our determination, generally within 30 days. If you are not satisfied with our determination or you do not receive a response within 30 days, you can contact us to discuss your concerns and you can refer the complaint to the Office of the Australian Information Commissioner oaic.gov.au.
Notifiable Data Breaches
- If there is a suspected or actual data breach which may compromise personal information, we will promptly undertake an assessment of the incident. Where relevant, immediate steps will be taken to contain the breach. These steps may include limiting any further access or distribution of the affected personal information, or the possible compromise of other personal information.
- If the unauthorised access, disclosure or loss of personal information is likely to cause serious harm to one or more individuals and the likely risk of serious harm has not been prevented by remedial action, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) as soon as practicable. The notification will include our identity and contact details, a description of the incident, the kind/s of information concerned and any recommended steps for affected individuals.
- Following any data breach incident, we will undertake a review process to help prevent future breaches in accordance with our Data Breach Response Plan and Breach Reporting Template.
Will your information be sent overseas?
- We do not anticipate that we will need to disclose information to overseas recipients other than data processors located in Vietnam. These data processors have contracted to abide by Australian Privacy Law and are ISO 27001 (Data Security Management Systems) compliant.
- You can download a copy in document format from our website oneinvestment.com.au;
- You can request a copy be emailed to you by emailing your request to [email protected];
- You can telephone us and request a copy be mailed or emailed to you by calling (02) 8277 0000 (+612 8277 0000 for international callers);
- You can write to us and request a copy be mailed or emailed to you. Our postal address is:
PO Box R1471
Royal Exchange NSW 1225