This Privacy Statement sets out CT’s policy relating to the collection and use of your personal information.
At CT we have a few fundamental principles around privacy:
- We don’t ask you for personal information unless we truly need it.
- We don’t share your personal information with anyone except to comply with the law, develop our products and services or protect our rights.
- We don’t store personal information on our servers unless required for the on-going operation of one of our services.
If you have questions about deleting or correcting your personal data, please contact our support team at firstname.lastname@example.org
The CT Group of Companies (“CT Group”) operates several websites including ct.com.au. It is the CT Group’s policy to respect your privacy regarding any information we may collect while operating our websites. The Site may contain links to other websites. The Company is not responsible for the privacy practices of those other websites.
Like most websites, ct.com.au collects non-personally identifying information of the sort that web browsers and servers typically make available, such as the browser type, language preference, referring site, and the date and time of each visitor request. CT’s purpose in collecting non-personally identifying information is to better understand how CT’s visitors use its website. From time to time, CT may release non- personally identifying information in the aggregate, e.g. by publishing a report on trends in the usage of its website.
CT also collects potentially personally identifying information like Internet Protocol (IP) addresses for logged in users and for users leaving comments on blogs. CT only discloses logged in user and commenter IP addresses under the same circumstances that it uses and discloses personally identifying information as described below, except that blog commenter IP addresses are visible and disclosed to the administrators of the blog where the comment was left.
Personally Identifying Information
When you interact with CT, we may need to gather some personally identifiable information (PII) about you. CT will only gather the information necessary to support our interaction with you. CT complies with the Australian Privacy Act and the European General Data Protection Regulations. The following section provides information on what we gather, how we use it, and your rights in relation to that information.
What Information do we gather?
The specific information we gather will depend on how you wish to interact with us. When browsing the CT website, cookies are used to track usage. The usage data gathered is anonymised though it does include basic demographic information (such as country and web browser used). You may disable cookies in your browser if you do not want this information gathered. If you make an enquiry via our website, email, or other means, CT may gather information about your contact details and your enquiry to service that request. If you purchase products or services from CT, we will gather a range of information for the purposes of delivering those products and services. This may include non-sensitive personally identifiable information about people within your organisation. If you apply for a job with CT, we will collect all information you provide us and store it in a file. We may gather additional information while assessing your application. If you are successful in your application, this information will become part of your employee record. If you are unsuccessful, we will only retain this information with your permission, for the express purposes of assessing your suitability for any future opportunities that may become available.
What will we do with your information?
We will use it only for the purposes it was gathered. We will not sell your personal information. We will take all reasonable steps to protect your information. We will only provide your information to a third party in the context of engaging with you and providing services (such as storing your contact information in a customer relationship management system).
We will only use such service providers where we are confident, they will protect your privacy.
What are your rights?
CT respects your rights under the Australian Privacy Act. Where relevant, we also support your rights under other regulatory schemes, such as the European General Data Protection Regulations. You own your personally identifiable information.
At a minimum, you may: request to review any of your personally identifiable information we possess; ask us to correct any errors in your personally identifiable information; ask us to “forget” your personally identifiable information, in which case we will take all reasonable steps to permanently delete any of your information we possess and which we are not legally required to retain.
CT may collect statistics about the behaviour of visitors to its websites. For instance, CT may monitor the most popular requests or use spam screened by the 3rd party services to help identify spam. CT may display this information publicly or provide it to others. However, CT does not disclose personally identifying information other than as described below.
Protection of certain Personally Identifying Information
CT discloses potentially personally-identifying and personally-identifying information only to those of its employees, contractors and affiliated organizations that (i) need to know that information in order to process it on CT’s behalf or to provide services available at CT’s websites, and (ii) that have agreed not to disclose it to others. Some of those employees, contractors and affiliated organisations may be located outside of your home country; by using CT’s websites, you consent to the transfer of such information to them. CT will not rent or sell potentially personally identifying and personally identifying information to anyone. Other than to its employees, contractors and affiliated organisations, as described above, CT discloses potentially personally-identifying and personally-identifying information only in response to a subpoena, court order or other governmental request, or when CT believes in good faith that disclosure is reasonably necessary to protect the property or rights of CT, third parties or the public at large. If you are a registered user of an CT website and have supplied your email address, we may occasionally send you an email to tell you about new features, solicit your feedback, or just keep you up to date with what’s going on with CT and our services. We primarily use our various client account managers to communicate this type of information, so we expect to keep this type of email to a minimum. If you send us a request, we reserve the right to publish it in order to help us clarify or respond to your request or to help us support other users.
CT takes all measures reasonably necessary to protect against the unauthorized access, use, alteration or destruction of potentially personally- identifying and personally identifying information.
In some areas of the Site, CT employs ‘cookies’ (small data files that are sent to your computer) to improve your experience of the Site however, these are not used to track individuals or record information about you. The use of ‘cookies’ is now a fairly standard operating procedure for most websites. Please configure your browser accordingly to permit you to reject or disable the cookies if you wish. Please note however that certain parts of the website may not work properly if you decide to do so.
Generic comments and other non-specific content (e.g. spam) submitted to our helpdesk service are not saved on our servers unless they were marked as false positives, in which case we store them long enough to use them to improve the service to avoid future false positives.
CT is Certified to ISO 27001 (Information Security), ISO 9001 (Quality), ISO 14001 (Environmental) and ISO 45001 (Occupational Health and Safety) Management Systems.
CT utilises an internationally recognised Integrated Management System (IMS) incorporated throughout its premises and platforms which provides us with a systematic approach to combating a broad range of security risks to both our own proprietary information assets and those (such as customer data and personal information about employees) over which we have a duty of care under ISO 27001. This IMS also ensures we adhere to Quality, Environmental and Work Health & Safety standards as laid out in ISO 9001, ISO 14001 and ISO 45001.