In this policy, reference to “we/us” means each member of the Corum Group. Members of the Corum Group include companies that are related to or owned by Corum Group Ltd, for example, Corum Health Services Pty Ltd and PharmaSol Pty Ltd. Members of the Corum Group may change from time-to-time.
Our Privacy Assurance to You
At Corum Group your privacy has always been important to us. We comply with the Australian Privacy Principles (under the Privacy Act 1988 (Cth)) as well as any applicable obligations of confidentiality.
This Policy & Other Privacy Statements
When you apply for a new product or service, we will provide you with further privacy information, including specifying how the information about you may be used and disclosed in relation to the particular product or service.
What Kinds of Personal Information Does Corum Group Collect and Hold?
The types of information we collect and hold will depend on the type of product or service requested by you and provided by Corum Group and how you chose to contact Corum Group.
When you apply for one of our products or services, you consent to us collecting, holding, using and disclosing personal information about you and provided by you or by another person in accordance with this policy and any further privacy information provided to you at the time the application is made.
Generally, we keep a record of one or more of the following types of information about you:
- information that identifies you such as your name and address and other information provided by you and people nominated by you;
- if you are using our payment systems we will hold records of bank accounts and/or credit card accounts from which transactions are made and other relevant identifying information;
- if we are providing payment systems to you we will hold records of bank accounts from which transactions are made;
- account transaction information, including credits and debits; and
- dispense and point-of-sale information if you are using one of our pharmacy products.
We do not actively seek to collect sensitive information (for example, health information or information about your racial or ethnic origin or any criminal record) unless it is necessary for the operation of our products or services or otherwise for our business purposes. If we do have to collect sensitive information, we collect, hold, use and disclose that information in accordance with the Australian Privacy Principles.
During the course of our relationship with you, we may gather information about you relating to all products and services that we, other members of the Corum Group and/or our preferred suppliers and venture partners provide to you. This information is used to help us form views about how we can improve our relationship with you.
How Corum Group Collects Information
We collect and hold information about you when you:
- complete an online application or any other type of form;
- provide us with your email address or contact us in any other way; or
- access and use our services through our website.
We also collect some statistical information about visitors from our website, for example, the number of visitors, pages viewed, types of transactions conducted, time online, location data and documents downloaded. Some of this statistical information is collected by using cookies. We use this information to evaluate our website performance and continually improve our services.
Other than statistical information, we do not collect any information about you through our website unless you voluntarily provide the information to us.
Generally, we only collect personal information about you from you, unless it is not reasonable or practical for us to do so, or you consent. For example, you may authorise us to collect information from a third party, like your employer, your bank, or we may engage an agent to collect information on our behalf or you may be named as a referee or beneficiary in another application for one of our products or services. We may also collect information about you from other members of the Corum Group or from publicly available sources such as social media, company registers or land title registries.
How Corum Group May Use Your Personal Information
We collect, hold and use your personal information to:
- respond to your request or help us process your application for products or services;
- effectively manage and administer all products and services we provide to you including pharmacy, real estate and payments products and services (for example, we may use your email address to communicate with you about the services we provide to you);
- assess, process and investigate claims in respect of any products we provide to you;
- ensure our internal business operations are running smoothly, which may include fulfilling legal requirements and conducting confidential systems maintenance and testing.
When we request your personal information we may give some more specific details about the way we will use that information.
When will Corum Group Disclose Personal Information?
Usually we must get your consent before we tell anyone about you, your accounts or your credit information. You can give us your consent expressly or it may be implied by your conduct.
Sometimes the law requires us to give out information about you. For example, we must give your account details to a court if we are ordered to do so under a subpoena.
Depending on the product or service that we provide to you, if it is necessary we may also disclose your personal information to:
- our external service providers for the purposes of our business, for example organisations that provide card authorisation, clearing and settlement services (such as Visa or Mastercard), Health Insurance Commission, claims investigators, mailing houses, valuers, real estate agents and ICT service providers, including providers of data storage services;
- any organisation which you request us to provide information to or any persons acting on your behalf including your solicitor, accountant, financial adviser or broker – unless you tell us not to; and
- any referees, any person which whom you transact, for example merchants, to process your transactions or any financial institution nominated by you (for example in direct debit).
We will not disclose your health information or information about your medical history unless you tell us to.
We may at other times give you more details about our disclosure practices in relation to specific products or services, for example, on the forms we use to collect personal information about you.
Your personal information may also be used by Corum Group to help assess your overall relationship and product holding within the Corum Group, analyse products and services and evaluate the needs of our customers in development products.
We may also provide access to your personal information to members of the Corum Group or our preferred suppliers and venture partners to inform you of products and services offered by any member of the Corum Group or such preferred organisations which we think may be of interest or value to you.
If you do not wish to receive information, special offers or exclusive opportunities about products and services (which may be supplied by us or any member of the Corum Group or preferred suppliers or venture partners) which we think may be of interest or value to you, then please tell us. You can do this at any time by opting to “unsubscribe” from such communications or otherwise contacting us using the details set out below.
If you tell us or have previously told us that you do not wish to receive such information, then it will not be sent to you. Your health information or information about your medical history will not be disclosed to other members of the Corum Group or any other party for this purpose.
How Corum Group Protects the Security of Your Information
We take all reasonable steps to protect your personal information from misuse, loss, unauthorised access, modification or disclosure.
We provide an appropriate level of security when you use our online products and services.
We have physical, electronic and procedural safeguards to protect your information which is held by us. For example, your personal information is stored in secure office premises, our electronic databases (which require logins and passwords for access) and/or one of our secured data warehouses. Access to information stored electronically is restricted to staff (including contractors) whose job purpose requires access. We require all staff to maintain the confidentiality of customer information.
Any visitor, for any purpose, to any part of our premises in which customer personal information is kept is required to register with us upon entry, or be accompanied by a member of staff while on the premises. We use secure methods to destroy or de-identify any personal information when it is no longer needed by us for any purpose. Ordinarily, for information about a particular account, we destroy the information seven years from the date you close the account.
Are you required to provide Personal Information?
You are not required to give us any personal information about you or any other person which may be requested in our communications with you. However, without that information, we may not be able to process an application, fulfil your request or provide you with an appropriate level of service.
Access to Your Information
You can request access at any time to personal information we hold about you. We will process your request within a reasonable time, usually fourteen days for a straight-forward request. More time may be needed, depending on the nature of the request.
There is no fee for requesting access to your information, however, we may charge you a reasonable cost for processing a request.
Sometimes we may not be required to grant you access to your personal information. For example, if giving you access to your personal information would have an unreasonable impact on the privacy of other individuals or would otherwise be unlawful. If we refuse you access to your personal information, we will tell you the reason why if possible. If we are not required to provide you with access to the information requested, we will consider, if reasonable, whether the use of a mutually agreed intermediary will allow us sufficient access to meet your needs and ours.
Correction of Information
We try to ensure that all information we hold about you which we collect, hold, use and disclose is accurate, complete and up-to-date. You must promptly notify us if there are any changes to your personal information.
You may ask us at any time to correct personal information held by us about you, which you believe is incorrect or out-of-date. We will deal with your request within a reasonable time.
If we disagree as to the accuracy of the information, you may request that we attach a statement to that information noting that you consider it is not accurate, complete or up-to-date.
If there is anything you would like to discuss, please contact us.
Corum Group Limited
Level 3, 120 Sussex Street
Sydney NSW 2000
PO Box Q281
Queen Victoria Building NSW 1230
Phone: 02 9289 4699
Fax: 02 8069 0691
Note: We will try to answer any questions you may have, correct any error on our part or resolve any complaint that you may have about our information handling practices. If we do not resolve a complaint to your satisfaction, you also have the right to complain to the Office of the Australia Information Commissioner. We will provide you with their contact details if required.