This document describes how Insurance Council of Australia Limited ABN 50 005 617 318 (the ICA) complies with the requirements of the Privacy Act 1988 (Cth) (Privacy Act), including the Australian Privacy Principles, and any other applicable privacy laws in Australia in respect of the website www.findaninsurer.com.au (Website).
What kinds of personal information does the ICA collect and hold?
The kinds of personal information that the ICA collects and holds in connection with the Website include contact details, complaint details, photographs, audio and video recordings and other information that is relevant to its functions or activities.
The ICA may also collect, hold, use and disclose some sensitive information about individuals as set out in the section entitled Sensitive information.
The information collected is normally limited to the minimum information required to establish and maintain routine communications with individuals in the course of the ICA's activities.
How does the ICA collect and hold personal information?
Generally, when individuals use the Website to search for an insurer or insurance service, the only information that the ICA collects, holds, uses or discloses is information collected though its use of "cookies" on the Website.
A cookie is a small amount of information which is transferred to the hard drive of your computer and which can identify your web browser but not you. Individuals can disable their web browsers from accepting cookies. If you do so, you can still access the Website, but not all services may be available.
The ICA may also collect other personal information directly from individuals through their use of the Website and when they contact the ICA by telephone via the Find an Insurer call centre, in person or otherwise in writing in connection with the Website's services, functions or activities.
The ICA only collects personal information for purposes directly related to its functions or activities, including:
- processing and dealing with inquiries from individuals about the ICA, the insurance industry, its member companies or other information provided by the ICA and providing general information in response to inquiries;
- direct marketing of its services to individuals;
- hosting blogs or forums on the Website;
- dealing with queries and responses relating to disasters and catastrophes;
- providing information in respect of its activities and those of its members to individuals;
- taking photographs, video and audio recordings of attendees at ICA events and publishing these on the Website or elsewhere; and
- other purposes relating to the ICA's objectives.
If the ICA is not provided with information that it requests in connection with the above activities, it may not be able to provide its services to the relevant individual.
The ICA may collect, hold, use and disclose sensitive information about individuals such as physical or mental health, disability, racial or ethnic origin, criminal convictions, directly from the individuals in connection with processing and responding to inquiries regarding insurance services and insurance organisations.
However, any such collection is with the consent of such individuals. Any such sensitive information is only retained on an aggregated basis by the ICA and the individuals are not identifiable.
Dealing anonymously or pseudonymously with the ICA
Individuals may deal with the ICA on an anonymous basis or using a pseudonym when making inquiries or carrying out searches in respect of insurers and insurance services on the Website or through the Find an Insurer call centre.
However, the ICA may require certain contact details from individuals to respond to inquiries.
How the ICA holds, uses and discloses personal information
The ICA holds personal information in a secure online database. It may also hold electronic copies of documents containing personal information (e.g. queries, complaints, CVs, membership application forms and other relevant documents) in a secure online database.
Where it holds personal information electronically, such information can only be accessed by authorised ICA staff using personal accredited passwords.
The keeping of personal information in hard copy is not encouraged by the ICA. Information is held in hard copy only for a reasonable time as necessary and stored securely. All ICA premises are protected by security access.
The ICA only holds and uses personal information for purposes directly related to its functions or activities or for the purposes for which the information was originally collected.
Disclosure of personal information
The ICA may disclose personal information provided to it through the Website or the Find an Insurer call centre to the following third parties:
- members of the ICA, such as insurance companies, to process queries or complaints received by the ICA from individuals;
- conference organisers;
- Federal, State or Territory police authorities and agencies;
- members of the ICA's Policy Committees and Working Groups if relevant;
- media organisations and agencies and other third parties for the purpose of dissemination and publication of photographs and audio and video recordings made by the ICA, or its agents, at events;
- the ICA's staff for the purposes of their work responsibilities; and
- other third parties providing law enforcement or administrative services.
The disclosure of personal information in the circumstances outlined in sections (a), (c) and (g) above may include the disclosure of sensitive information.
The ICA's Policy Committees are comprised of representatives of the ICA's member companies and the ICA's staff and executives. Members of Policy Committees are nominated by the controlling officers of the ICA's members or by the ICA as relevant. Working Groups may be established by the ICA from time to time to assist the ICA in addressing contemporary industry issues. Some of the ICA's Committees and Working Groups may have representatives from organisations that are not members of the ICA.
The ICA does not generally disclose personal information to overseas recipients and will only do so in accordance with the Australian Privacy Principles.
Accessing and correcting personal information held by the ICA
Individuals may access personal information about them that is held by the ICA, and may make or seek changes to that information, by contacting the ICA on 02 9253 5100.
If the ICA does not agree to provide access to personal information or to amend or annotate the information we hold about an individual, the relevant individual may seek a review of the ICA's decision.
If the ICA does not agree to make requested changes to personal information, an individual may make a statement about the requested changes and the ICA will attach the statement to the individual's record.
Individuals can send written complaints about a breach of the Australian Privacy Principles in relation to their personal information to The Privacy Officer, Insurance Council of Australia, Level 4, 56 Pitt Street, Sydney NSW 2000. Complaints will be reviewed by our Privacy Officer and a response will usually be provided within 30 days of receipt of the complaint by the ICA.
For more information about making a complaint, please contact the ICA on 02 9253 5100.
If an individual believes that his or her complaint has not been satisfactorily addressed by the ICA, after following the procedure set out above, he or she can make a complaint to the Office of the Information Commissioner (OAIC). The OAIC's contact details are on its website.