Personal information we collect
The main types of personal information we collect includes names, contact and address details, university courses you are undertaking and job titles. In order to provide our services, we may also collect other personal information such as bank account details and tax file numbers. It may be necessary in some circumstances for Ducere to collect sensitive information about you, for example, your professional memberships. We will only collect sensitive information as permitted by law.
How we collect personal information
Use of personal information
Ducere collects personal information for a number of purposes including:
- to provide professional services
- to provide technology services and solutions
- to respond to requests
- to maintain contact with our clients and other contacts (including alumni)
- to keep our clients and other contacts informed of our services and to notify you of courses, seminars and other events provided by us or our partners/affiliates
- for administrative purposes
- for recruitment purposes
- for the engagement of service providers, contractors or suppliers relating to the operation of our business, or
- for other business related purposes.
Ducere may also use your personal information for the purpose of marketing its or its partners or affiliates services. If you do not want to receive marketing material from us, you can contact us as detailed below or use the unsubscribe function on electronic communications or the notification function on other marketing material.
If you do not provide us with the personal information we have requested, we may not be able to complete or fulfil the purpose for which such information was collected, including providing our clients with the services we were engaged to perform.
Disclosure of personal information
Ducere will not disclose your personal information to third parties unless:
- permitted by law
- one or some of Ducere’s businesses is offered for sale, or
- you consent.
If we do disclose personal information to third parties, we will do so in accordance with the purpose for which the personal information was collected, or a related or ancillary purpose.
The types of third parties we may disclose your personal information to include:
- experts or other third parties contracted as part of an engagement
- our service providers or partners/affiliates
- our professional advisers
- if you are an employee, a contractor or supplier of services to a client, then we may disclose your personal information as part of providing services to that client.
We do not disclose personal information to third parties for the purpose of allowing them to send marketing material to you. However, we may share non-personal, de-identified or aggregated information to them for research or promotional purposes.
Transfer of personal information overseas and sharing personal information within Ducere’s network
We may transfer your personal information to other Ducere entities in Australia or overseas to fulfil the purpose of collection of the personal information or in connection with the provision of services to you, or a related or ancillary purpose or otherwise in accordance with the Privacy Act. We may also store, process or back-up your personal information on servers that are located overseas (including through third party service providers).
We take reasonable steps in our contractual obligations with overseas entities to ensure that they do not breach the Privacy Act in relation to personal information.
Security and disclosure of personal information
We take reasonable steps to protect any personal information that we hold from misuse and loss. We also take reasonable steps to protect it from unauthorised access, modification and disclosure.
The security measures we take include physical security measures (including security passes to enter our offices and storage of files in lockable cabinets), technology security measures (including restriction of access, firewalls, the use of encryption, passwords and digital certificates) and our staff and partners are required to undertake privacy and data protection training.
The personal information you provide to us will be retained only for as long as necessary to fulfil the purposes for which the information was collected, as required by law or in accordance with our document retention policies.
“Cookies” (i.e. small text files placed on your computer when you first visit the site) may be used on the Ducere website. Most browsers now recognise when a cookie is offered and permit you to refuse or accept it. If you are not sure whether your browser has this capability, you should check with the software manufacturer, your company’s technology help desk or your internet service provider.
Cookies are primarily used to enhance your online experience. If you visit our websites to read or download information, such as news stories or articles, much of the information we do collect is statistical only (e.g., the domain from which you access the internet, the date and time you access our site, and the internet address of the website from which you linked directly to our site) and not personally identifiable. We use this information about the number of visitors and their use of the sites in aggregate form to make our sites more useful and attractive to you.
You have several choices regarding your use of the Ducere website. In general, unless you are utilising our services you are not required to provide personal information when you visit our websites. However, if you are using or proposing to use our services or apply to receive information about our courses and events or wish to apply for a job, we may require you to provide certain personal information.
Links to third party websites
Ducere’s website may contain links to third parties’ websites. Those other websites are not subject to our privacy policies and procedures. You will need to review those websites directly to view a copy of their privacy policies. Ducere does not endorse, approve or recommend the services or products provided on those third party websites.
We understand the importance of protecting children’s privacy, especially in an online environment. In particular, our websites are not intentionally designed for or directed at children under the age of 13. It is our policy to never knowingly collect or maintain information about anyone under the age of 13, except as part of a specific engagement to provide professional services or for the purposes of ensuring compliance with our auditor independence policies.
Gaining access to personal information we hold
You can gain access to your personal information from Ducere on request in writing, subject to some limited exceptions permitted or required by law. The factors that affect your right to access your personal information include whether:
- it is a frivolous or vexatious request
- the information relates to a commercially sensitive decision making process
- access would be unlawful
- access would prejudice enforcement activities relating to criminal activities and other breaches of law, or
- denying access is required or authorised by or under law.
If Ducere denies you access, we will let you know the reason why access is denied.
Ducere may charge the reasonable costs of providing you with access to your personal information.
Keeping personal information current
If you believe that any personal information Ducere has collected about you is inaccurate, incomplete or not up-to-date, please contact Ducere and we will take reasonable steps to correct it in accordance with the requirements of the Privacy Act.
Changes to this Statement
How to contact us