- Contact information (name, email address, phone number, business address)
- Business information (ABN, business name, industry type)
- Payment information (processed through secure payment gateways)
- Usage data (login times, feature usage, system interactions)
- Communication records (support tickets, chat logs, email correspondence)
- Technical data (IP addresses, browser type, device information)
- Website and application usage
- Cookies and tracking technologies
- Third-party integrations
- Customer support interactions
- Marketing and sales communications
- Technical support and customer service
- Product improvement and development
- Marketing and communications (with consent)
- Legal and regulatory compliance
- Business analytics and reporting
- Anonymous transactions where possible
- Consent-based collection of sensitive information
- Regular privacy impact assessments
- Staff training on privacy obligations
- Reach 360 operates as a white-label provider of third-party services
- Clear delineation of responsibilities between Reach 360 and third parties
- Transparent disclosure of service provider relationships
- Subprocessor agreements and obligations
- Data transfer and storage protocols
- Service Level Agreements (SLAs)
- Purpose and scope of data sharing
- Security and confidentiality requirements
- Compliance obligations of service providers
- Adherence to Australian Privacy Principles
- Regular privacy impact assessments
- Employee training and awareness
- Documentation of compliance measures
- International data transfer protocols
- Safeguards for overseas data processing
- Data sovereignty considerations
- Notification timeline and requirements
- Response team and responsibilities
- Documentation and reporting protocols
- Process for requesting personal information
- Timeline for information provision
- Format of information delivery
- Verification requirements
- Process for updating personal information
- Timeline for corrections
- Notification of changes
- Record-keeping requirements
- Step-by-step complaint process
- Response timelines
- Escalation procedures
- External dispute resolution options
- Marketing communications opt-out
- Data collection limitations
- Consequences of opting out
- Process for implementing opt-out requests
- Encryption standards (minimum 256-bit encryption)
- Access control systems
- Regular security audits
- Incident response procedures
- Password policies
- Multi-factor authentication
- Session management
- Regular security updates
- Retention periods for different data types
- Data disposal procedures
- Archiving protocols
- Backup procedures
Privacy Officer: Paul Burkett Email: [email protected]
Address: 3 Carlton Street Chippendale, NSW 2008
Reach 360 ABN: 35 672 693 248
Trading Address:3 Carlton Street Chippendale, NSW 2008
Website: www.reach360.com.au
- Annual review schedule
- Update procedures
- Notification of changes
- Version control
- How changes will be communicated
- Notice period for significant changes
- User acknowledgment requirements
- Historical version access