The policy sets out the different areas where user privacy is concerned and outlines our obligations to you when collecting, storing, and securing your data.
Although ISD Cyber is not obliged to adhere to the requirements of the Privacy Act we endeavour to uphold and work to the Australian Privacy Principles (APPs).
The main contact for Privacy issues is Yvonne Sears, Managing Director Enquiries@ISDCyber.com.
3. Personal Data
3.1. Service Provision
We may from time to time collect very basic personal information through questionnaires and surveys to better define services offered by us, and to ensure that the advice and guidance is appropriate to your needs. Surveys and questionnaires may be provided to you via email or through our website.
We typically collect the following demographics:
- Contact Number
- Email Address
- Organisation Name.
At the time of completing the online requests for personal information you will be informed as to the purpose of data collection.
Results of surveys are tracked and stored in a database for future analysis and evaluation. This information is used to refine the services and future information sessions, blogs and training services.
We will retain personal information for up to 1 year (unless deletion is requested by the data subject) after last contact with an individual for the purpose of offering services related to the original survey.
Your details will not be passed on to any third parties.
We will from time to time collate and be in receipt of résumés from prospective employees.
Records are likely to include:
- Salary expectations / Reward
- Previous employment details
Our recruitment process is supported by professional recruitment services who will process personal information specifically for candidate selection and assessment. You may be required to complete an online Psychometric test as part of the recruitment process which will enable us to determine not only your suitability for the role but will be used to support your personal development thereafter. You are more than welcome to obtain a copy of the assessment regardless of whether you are successful.
If you are a successful candidate, we will also request to collate the following as required by statutory requirements for employment in Australia:
- Evidence of Education
- Police Check
- Visa / Passport / Birth Certification – to verify your ‘right to work’ in Australia.
We may retain your résumé and contact details for up to 6 months as there may not be an immediate opportunity available for you. At this point we may contact you to request consent to further retain your details if we believe that you remain a good fit for the company.
3.3. Rights of Data Subject
You have a right under the Privacy Act to contact us at any time in writing to Enquiries@ISDCyber.com to find out what information we have related to you. You may also request to have your personal information amended or deleted from our records.
We will oblige your request unless there is a statutory requirement for us to retain the data for a specific period of time.
4. Information Security
We take Information Security seriously and endeavour to adequately protect information provided to us through the course of our services to prevent loss of Confidentiality, Integrity and Availability.
We are currently certified to the ISO 27001 standard by the British Standards Institution (BSI). A link to our BSI certificate profile may be found below:
The collection, use, storage and disposal of personal information is managed in accordance with ISO 27001 industry best practice in Information Security.
There are inherent risks associated with the transmission of information over the internet, including via email. You should be aware of this when sending personal information to us via email, via our website or social media platforms.
We will only record your email and contact details when you send a message to us, subscribe to a newsletter, complete a survey, or provide a business card. We will only use this information for the purpose for which it was collected.
Other cookies may be stored to your computer’s hard drive by external vendors where the website uses referral programs, sponsored links or adverts. Such cookies are used for conversion and referral tracking and typically expire after 30 days, though some may take longer.
4.2. External Links
Although our website only looks to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout the website or our Blogs (External links are clickable text / banner / image links to other websites).
ISD Cyber cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note they click on external links at their own risk and ISD Cyber cannot be held liable for any damages.
5. Document Review
The review will include assessing opportunities for improvement of the policy and approach to managing privacy in response to changes to the company, business circumstances, legal requirements, and technical environment.
We shall seek feedback from interested parties prior to finalising the review.
If you have any comments on this document, please contact enquiries@ISDCyber.com. We will take your comments in to consideration within the next scheduled review.