Updated 14th February 2020
Leakes Road Rockbank Pty Ltd ABN 93 122 773 924 (Woodlea, we, us, our) is the sponsor of the Favour Fest’ (Event), which is an annual event that celebrates community, music, culture and cuisine and takes place at the Frontier Reserve Ovals, Rockbank, 3335.
We own and operate www.flavourfest.com.au (Site).
Woodlea and its related entities (as defined in the Corporations Act 2001 (Cth) are committed to protecting your privacy, in accordance with applicable Australian privacy laws.
1.2 What is personal information?
In general terms, legislation defines ‘personal information’ as information or an opinion about an identified individual or an individual who is reasonably identifiable, whether the information is true or not and whether the information or opinion is recorded in a material form or not.
1.3 Our obligations
We comply with the Australian Privacy Principles (APPs) in the Privacy Act 1988 (Cth) (Privacy Act). The APPs regulate the manner in which personal information is handled throughout its life cycle, from collection to use and disclosure, security, accessibility and disposal.
The Privacy Act also includes a data breach notification regime, which requires Woodlea to address data breaches involving personal information held by Woodlea.
We also comply with more specific privacy legislation in some circumstances, such as the Spam Act and the Do Not Call Register Act.
2. What we collect
- The type of personal information that we collect about you depends on the type of dealings you have with us. For example, if you:
- book a ticket for and/or attend the Event, we will collect your name, contact details such as telephone number and email address and whether you attend the event.
- are a vendor/participant/supplier to the Event, we will collect your name and contact details, details about the goods or services you supply and payment details
- send us an enquiry, complete a registration of interest or provide us with feedback, we may collect your name, contact details, details of your enquiry or feedback and information about our response
- ask us to send you information about the Event or other products and services, we will collect your name, address, contact details, details of the products/services you are interested in and how you heard about us or the relevant products/services
- apply for a job with us, we will collect the information you include in your job application, including your cover letter, resume, contact details and referee reports
- enter into any promotions, competitions or special offers, we will collect the information you provide when submitting your entry
The personal information collected may vary depending on your particular interaction with us but will be limited to that information necessary to record and manage our interaction with you (e.g. your name, relevant contact details and information about the interaction) and to that information required to enable you to participate in our services and other products being offered on our website.
2.2 Sensitive information
Sensitive information is a subset of personal information that is generally afforded a higher level of privacy protection, such as health information. We generally do not collect sensitive information about an individual.
2.3 Collection of information other than personal information through our website
When you visit our Site, some of the information that is collected about your visit is not personal information, as it does not reveal your identity.
Site visit information
For example, we may record your IP address, the date and time of your visit, the pages you visited, any documents you downloaded, site which referred you to our website, and the type of device, browser and operating system you used.
We use and disclose this information in anonymous, aggregated form only, for purposes including statistical analysis and to assist us to improve the functionality and usability of our website. You are not individually identified, however we reserve the right to use or disclose this information to try to locate an individual where we reasonably believe that the individual may have engaged in any unlawful or inappropriate activity in connection with our website, or where we are otherwise required or authorised by law to do so.
A cookie is a small string of information that a website transfers to your browser for identification purposes. The cookies we use do not identify individual users, although they do identify the user’s internet browser, hardware device and IP address.
We only use non-persistent cookies. That is, they are held on your browser’s memory only for the duration of your session.
Most internet browsers are set to accept cookies. If you prefer not to receive them, you can adjust your internet browser to reject cookies, or to notify you when they are being used. There are also software products available that can manage cookies for you. Rejecting cookies can, however, limit the functionality of our website.
Online Behavioural Advertising
We use advertising programs that place cookies on your computer to collect information about your browsing history (including on external websites). This information, which does not identify you personally, is collected in order to improve your online experience by customising the advertising you see to your interests (including the display of more relevant ads on external websites). You can opt out of these programs at any time by clicking here.
2.4 What if you don’t provide us with your personal information?
We will provide individuals with the option of not identifying themselves, or of using a pseudonym, when dealing with us if it is lawful and practicable to do so. A pseudonym is a name or other descriptor that is different to an individual’s actual name.example, you can access our Site and make general phone queries without having to identify yourself.
In some cases however, if you don’t provide us with your personal information when requested, we may not be able to provide you with the product or service that you are seeking. For example, you must identify yourself to book a ticket for the Event.
3. How we collect personal information
3.1 Methods of collection
We collect personal information in a number of ways, including:
- directly from you in person (for example, if you attend the Event)
- through our Site (for example, by making an online enquiry)
- through our social media pages (for example, through Twitter, LinkedIn or our Facebook or Instagram page)
- over the telephone
- through written correspondence (such as letters, faxes and emails)
- on hard copy forms (for example, competition entry forms and surveys)
- from third parties, including the website you book your ticket for the Event
3.2 Unsolicited information
Unsolicited personal information is personal information we receive that we have taken no active steps to collect (such as an employment application sent to us by an individual on their own initiative, rather than in response to a job advertisement).
We may keep records of unsolicited personal information if the Privacy Act permits it (for example, if the information is reasonably necessary for one or more of our functions or activities). If not, we will destroy or de-identify the information as soon as practicable, provided it is lawful and reasonable to do so.
4. Why we collect personal information
The main purposes for which we collect, hold, use and disclose personal information are set out below
- to verify your identity
- to fulfil our obligations as the sponsor of the Event
- to carry out our obligations arising from any contracts entered into between you and us and to provide you with the products, services and information that you request from us
- outlining our products and services to prospective and existing purchasers
- providing you with information and the services that you have requested
- to communicate with you, including by email, mail or telephone
- analysing and processing information collected through the Event and the Site
- processing transactions for payments and for our billing and account purposes
- to administer our Site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes
- promoting, the Event and its products and services, including through direct marketing and competitions
- performing research and statistical analysis, including for customer satisfaction and service improvement purposes
- protecting the security of the persons who are at the Event (including the audience, vendors/participants and staff) and the property held at the venue
- to assist you with enquiries, resolving complaints or to improve our customer service
- recruiting staff and contractors
- to update our records
- complying with legal and regulatory obligations including notifying you of matters that we may be required by law to notify you of
We may also collect, hold, use and disclose personal information for other purposes explained at the time of collection or:
- which are required or authorised by or under law (including, without limitation, privacy legislation); and
- for which you have provided your consent.
4.1 Direct marketing
If you book a ticket for the Event, you consent (until such time as you opt out, as described below) that we may use your personal information to let you know about the Event (including promotions and special offers), either where we have your express or implied consent, or where we are otherwise permitted by law to do so. We may contact you for these purposes in a variety of ways, including by mail, email, SMS, telephone and online advertising.
Where you have consented to receiving marketing communications from us, your consent will remain current until you advise us otherwise. However, you can opt out at any time, by:
- contacting us (details under heading 13 below)
- advising us if you receive a marketing call that you no longer wish to receive these calls
- using the unsubscribe facility that we include in our commercial electronic messages (such as emails and SMSes)
Once you do this, we will update your profile to ensure that you don’t receive further marketing
messages. Stopping marketing messages will not stop service communications (such as contract updates).
We will get your express opt-in consent before we share your personal data with any company outside the Woodlea for marketing purposes.
Notification of source
If we have collected the personal information that we use to send you marketing communications from a third party (for example a direct mail database provider), you can ask us to notify you of our source of information, and we will do so, unless this would be unreasonable or impracticable.
5. Who we may share your personal information with
We may disclose your personal information, and you consent to us disclosing your personal information, to its related bodies corporate and associated entities (as those terms are defined in the Corporations Act 2001 (Cth)).
We may also disclose your personal information, and you consent to us disclosing your personal information, to the following third parties:
- responsible authorities, such as local councils
- financial institutions for payment processing
- an individual’s agent or authorised representative
- referees whose details are provided to us by job applicants
- third parties who support our information technology or handle mailings on our behalf
- our contracted service providers (including payment processors and our web consultants)
- law enforcement agencies, other governmental agencies or third parties if we are required by law to do so, or in other limited circumstances (for example if required by a court order or regulatory authority, or if we believe that such action is necessary to prevent fraud or cyber-crime or to protect our website, our products or our technology assets or the rights, property or personal safety of any person)
- our professional advisers
In each case, we may disclose personal information to the service provider and the service provider may in turn provide us with personal information collected from you in the course of providing the relevant services.
We may also disclose information to provide our products and services, to respond to legal requirements, enforce our policies, and protect our rights and property.
6. Cross border disclosure of personal information
7. Use of government related identifiers
We will not:
- use a government related identifier of an individual (such as a Medicare number or driver’s licence number) as our own identifier of individuals; or
- otherwise use or disclose such a government related identifier,
- unless this is permitted by the Privacy Act (for example, use of an identifier to verify an individual’s identity or uses or disclosures required or authorised by or under an Australian law).
8. Data quality and security
We are committed to keeping your personal information secure and confidential. All reasonable precautions will be taken to protect personal information from loss, misuse, unauthorised access or alteration. Paper documents are held in locked drawers and cabinets, or in locked onsite storage. Additionally, we also take reasonable steps to:
- make sure that the personal information that we collect, use and disclose is accurate, up to date and complete and (in the case of use and disclosure) relevant;
- protect the personal information that we hold from misuse, interference and loss and from unauthorised access, modification or disclosure; and
- destroy or permanently de-identify personal information that is no longer needed for any purpose that is permitted by the APPs.
- You can help us keep your information up to date, by letting us know about any changes to your details, such as your address, email address or phone number.
- You acknowledge that the security of online transactions you conduct using the website cannot be guaranteed. To the fullest extent permitted at law, Woodlea does not accept responsibility for misuse of or loss of, or unauthorised access to, your personal information where the security of that information is not within Woodlea’s control.
The steps we take to secure the personal information we hold include website protection measures (such as firewalls and anti-virus software), security restrictions on access to our computer systems (such as login and password protection), controlled access to our corporate premises, personnel security (including restricting access to personal information on our systems to staff who need that access to carry out their duties, staff training and workplace policies.
Online credit card payment security
We process payments using EFTPOS and online technologies. All transactions processed by us meet industry security standards to ensure payment details are protected.
While we strive to protect the personal information and privacy of users of our website, we cannot guarantee the security of any information that you disclose online and you disclose that information at your own risk. If you are concerned about sending your information over the internet, you can contact us by telephone or post (details under heading 13 below).
If you are a registered user of our website, you can also help to protect the privacy of your personal information by maintaining the confidentiality of your username and password and by ensuring that you log out of the website when you have finished using it. In addition, if you become aware of any security breach, please let us know as soon as possible.
An IP (internet protocol) address is a number that is automatically assigned to your computer by your internet service provider when you log on. Your IP address is not linked to your personal information but we do preserve the right to use IP addresses to identify individuals who may threaten our site, services or clients. IP addresses may also be used to help diagnose problems with our website and to gather broad demographic information.
Third party websites
If there is any breach of your personal information, Woodlea will deal with such breach and notify you in accordance with its obligations under the Privacy Act.
9. How long we keep your information
We will only keep the information we collect about you for as long as required for the purposes set out above or as required to comply with any legal obligations to which we are subject. This will involve us regularly reviewing our files to check that information is accurate, up-to-date and still required.
If you close an account you have with us or you decide not to go ahead with any transaction with us, we may still keep your information.
10. Mail and email information
If you wish to stop receiving any e-mails or other communications from us which may be sent to you in the future, or if you have submitted personal information through the website and would like to have that information deleted from our records, please unsubscribe through the link at the bottom of any email or notify us at firstname.lastname@example.org
We will preserve the contents of any e-mail message that you send if we believe that we have a legal requirement to do so. E-mails sent to or from us are routinely monitored for quality control, systems administration and legal compliance purposes.
11. Access and Correction
Please contact our Privacy Officer (details under heading 13 below) if you would like to access or correct the personal information that we hold about you. We may require you to verify your identity before processing any access or correction requests, to make sure that the personal information we hold is properly protected.
If you have a complaint about how we have collected or handled your personal information, please contact our Privacy Officer (details under heading 13 below).
We will endeavour in the first instance to deal with your complaint and take any steps necessary to resolve the matter within a week. If your complaint can’t be resolved at the first instance, we will ask you to submit your complaint in writing.
In most cases, we expect to investigate written complaints will be investigated and a response provided within 30 days of receipt. If the matter is more complex and our investigation may take longer, we will write and let you know, and tell you when we expect to provide our response.
If you are not satisfied with our response, you can refer your complaint to the Office of the Australian Information Commissioner (see here for further information).
13. Our contact details
Please contact us if you have any queries about the personal information that we hold about you or the way we handle that personal information. Our contact details are set out below.
Mail: Privacy Officer, Woodlea, Suite 4.01, Level 4, 99 Queen Street, Melbourne VIC 3000
Further general information about privacy is available on the website of the Office of the Australian Information Commissioner at www.oaic.gov.au or by calling the OAIC’s enquiry line at 1300 363 992.
14. Changes to this Policy