Smooth Retirement informs employees, contractors and relevant third parties about this Policy and all changes. All employees are trained to respect your privacy in accordance with this Policy.
We value your trust and are committed to ensuring that your personal information is secure, and your privacy is protected.
This policy explains the steps we take to comply with the Privacy Act 1988 (Cth), Australian Privacy Principles and General Data Protection Regulation. It contains information about:
Personal Information is information or an opinion relating to an individual, whether true or not and whether recorded in a material form or not, which can reasonably be used to identify that individual.
We are subject to certain legislative and regulatory requirements under the National Consumer Credit Protection Act 2009, the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 and the Corporations Act 2001. This requires us to obtain personal information about you including (but not limited to):
We will also collect information relating to the use of the website such as:
We may collect sensitive information from you. Sensitive information (for example) includes information relating to a person’s racial or ethnic origin, sexual preferences and health. We will only collect sensitive information that is reasonably necessary for us to provide you with our advice and services.
If you apply for employment with us, we will collect information about your work history and ask your referees about you. If you apply to become a Smooth Retirement™ Representative, we will collect information to enable us to assess whether you meet accepted industry standards.
We collect personal information directly from you whenever we can. We may also collect your personal information if you make an enquiry by emailing or phoning us or sending us correspondence by post.
Sometimes we will collect information about you from other sources as the Privacy Act 1988 permits. We will do
this only if we have your consent and it is reasonably necessary to do so, for example, where:
If you do not provide us with your personal information or it is not complete or accurate, the advice you receive may not be appropriate.
We don't usually collect unsolicited personal information. Where we receive unsolicited personal information that is not relevant, we will destroy or de-identify that personal information as soon as practicable.
You can deal with us anonymously where it is lawful and practicable to do so. For example, if you wish to make general inquiries about mortgage brokers or financial advisers near to your location.
It is only through the collection of your personal information that we can understand you (and your needs) and provide you with advice and services that are appropriate for you. We will use your personal information for the primary purpose of:
We may also use and disclose your personal information for a secondary purpose which relates to a primary purpose above, or in other circumstances authorised by the Privacy Act.
Sensitive information collected will only be used and disclosed for the purpose for which it was provided (or a direct secondary related purpose), unless you agree otherwise, or an exemption applies under the Privacy Act.
We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so.
We will retain the information we collect from you for a period of 7 years, as required by law.
If you apply to become a representative or apply for employment with us, we will collect information about you to assist us to decide whether to appoint you.
In order to provide you with our advice and services we will need to disclose your personal information to third parties. The organisations that we are likely to disclose information about you to include:
We may disclose your personal information to overseas entities that provide support functions to us. You may obtain more information about these entities by contacting us.
Where your personal information is disclosed, we will seek to ensure that the information is held, used or disclosed consistently with the Australian Privacy Principles.
You can contact us to update your personal information using our contact details in the ‘Contact Us’ section of this Policy. We aim to make sure that the personal information we collect, use or disclose is accurate, complete and up-to-date. If you believe your personal information is not accurate, complete or up to date please contact us as soon as possible. Where the information is inaccurate, we will take reasonable steps to correct it (free of charge) within 30 days.
The security of your personal information is important to us and we take reasonable steps to protect it from misuse and loss and unauthorised access, modification or disclosure. Some of the ways we do this are:
You can gain access to your personal information (subject to some exceptions allowed by law) by contacting the Privacy Officer. We will need to verify your identity first however we will never use a government identifier to verify your identity. We will provide you access within 30 days if it is reasonable and practicable to do so, but in some circumstances, it may take longer (for example, if we need to contact other entities to properly investigate your request).
We may refuse to provide you with access, such as where the information relates to existing or anticipated legal proceedings, if the request is vexatious or if the information is commercially sensitive. If access is refused, we will give you a notice explaining our decision, to the extent practicable, and your options to make a complaint.
We do not usually charge you for access to your personal information. However, if the request is complex, we may charge you the marginal cost of providing the access, such as staff costs of locating and collating information or copying costs. If charges are applicable in providing access to you, we will disclose these charges to you prior to providing you with the information.
We may use technology such beacons, tags, scripts and tracking pixels to collect, store and use anonymous data about how you use our website / mobile technology. This includes your server address, the date and time of your visit, the pages and links accessed, the type of browser used and other information about your browsing activities. This data is used to increase functionality and can also enable us to display information and content that is tailored to our understanding of your interests. This information alone cannot be used to discover your identity.
We may use or disclose your personal information to let you know about products and services that we believe may be of interest to you. We will not do this if you tell us not to. Such marketing activities may be via email, telephone, SMS, IM, mail, or any other electronic means, including targeted advertising through our website.
We may also market our services to you through third party channels (such as social networking sites), or via other companies who assist us to market our services. We may use de-identified data to disclose to online advertisers that allow us to place communications in the media most relevant to you.
With your consent, we may disclose your personal information to third parties for the purpose of connecting you with other businesses. You can ask us not to do this at any time.
You have the right to request us not to disclose or use your personal information for the purposes of direct marketing, or for the purpose of facilitating direct marketing by other organisations.
We will process your request as soon as practicable. You may also request that we provide you with the source of their information. If such a request is made, we must notify you of the source of the information free of charge within a reasonable period.
You can let us know at any time if you no longer wish to receive direct marketing offers (see ‘Contact Us’).
A data breach occurs when personal information held by us is lost or subjected to unauthorised access or disclosure. If we suspect or know of a data breach, we will take immediate steps to limit any further access or distribution of the affected personal information or the possible compromise of other information.
When we have reasonable grounds to believe that a data breach is likely to result in serious harm – for example identity theft, significant financial loss or threats to physical safety we will notify individuals at likely risk as soon as practicable and make recommendations about the steps they should take in response to the data breach. We will also notify the Office of the Australian Information Commissioner.
Notifications will be made using our usual method of communicating with you such as email and physical mail. We may also publish a statement on the front page of our website.
If you have a complaint about how we handle your personal information, we want to hear from you. You are always welcome to contact us. We are committed to resolving your complaint and doing the right thing by our customers. Most complaints are resolved quickly, and you should hear from us within five business days.
Our Privacy Officer will investigate the issue and determine the steps we will undertake to resolve your complaint. We will contact you if we require any additional information from you and will notify you in writing within 30 days of the determination of our Privacy Officer. If you are not satisfied with the outcome of your complaint, you are entitled to contact the Office of the Australian Information Commissioner by:
You may also lodge a complaint with the Australian Financial Complaints Authority (AFCA):
If your complaint relates to how we handled your access and correction requests, you may take your complaint directly to AFCA or the Office of the Australian Information Commissioner. You are not required to let us try to fix it first.
Scott Phillips, Privacy Officer
Level 1, 99 St Georges Terrace, Perth WA 6000
08 9467 7390