Background

Privacy legislation was first introduced into Australia with the Privacy Act 1988. This legislation applied to government and public bodies. Privacy requirements were extended to the private sector by the Privacy Amendment (Private Sector) Act 2000. For Stride Foundation, the provisions of this Act became effective on December 21, 2001.

The centrepiece of the new legislation is a code of privacy practice. This consists of ten National Privacy Principles (NPP), as set out in the Act.

The full text of the National Privacy Principles is available from us on request. The Principles are summarised in the next section. It is the policy of Stride Foundation to collect, handle and store personal information in compliance with the National Privacy Principles.

National Privacy Principles

This section summarises the ten National Privacy Principles. Where applicable, Stride Foundation’s approach to handling information has been documented.

NPP 1. Collection

Stride Foundation collects information from clients and donors solely to carry out its functions. Where possible, information is collected directly from the individual. Where information is collected from a third party, the individual is informed or may reasonably expect that we have been given this information.

NPP 2. Use and Disclosure

Generally, information is used solely for the purpose for which it was collected (the “primary purpose”)

Some information is used in a secondary manner for direct marketing, to raise further funds to assist Stride Foundation.

Where we use information for direct marketing, we provide our contact with the opportunity to decline or modify any further direct marketing.

Under this NPP, we may be required to disclose information by law or for various legal purposes.

NPP 3. Data Quality

We try to ensure our information is accurate and as up-to-date as possible.

NPP 4. Data Security

All personal information is held under secure conditions with access restricted to those individuals who need it to carry out their work under Stride programs.

NPP 5. Openness

This NPP requires organisations to have a freely available policy document outlining its information handling practices. This “Policy on Privacy” is designed to meet this requirement.

NPP 6. Access and Correction

It is Stride Foundation’s policy to give individuals access to their data on request, so that they may review and correct details. However, the full text of this NPP lists exceptions to this right, mainly where access to the information may impact adversely on the individual or others.

We reserve the right to take reasonable steps to ensure that the person seeking access is in fact the individual to whom the data relates; or is otherwise entitled to access the data. To meet the requirements of this NPP, it is also possible that there may be small delay while we investigate the appropriateness of providing access to some classes of data (for example, we would have to check that release of health information may not harm our client or associated people).

If access is refused or restricted, we will give an explanation for this decision.

NPP 7. Identifiers

Organisations should not use identifiers issued by Commonwealth Government agencies as Account Number identifiers. However, the Australian Business Number (ABN) is not considered such an identifier.

NPP 8. Anonymity

Individuals must be able to act anonymously where it is practical and lawful to do so (for example, Stride Foundation will accept anonymous donations, but is unable to issue a tax-deductible receipt to the donor).

NPP 9. Transborder Data Flows

An organisation must take steps to ensure data will be protected when forwarded to a third party. This includes data going overseas.

Stride Foundation ensures client data is sent to government agencies under secure conditions. No data is sent overseas.

NPP 10 Sensitive Information

Information on race, ethnicity, political opinions, religious or philosophical beliefs, trade union membership, health information or sexual inclination is classed as sensitive information.

Stride Foundation does not collect sensitive information except where relevant to research or programs. The NPP lists other circumstances where sensitive information might be collected.

TYPES OF PERSONAL AND SENSITIVE INFORMATION
HANDLED BY STRIDE FOUNDATION

This section sets out in general terms the major categories of information collected and processed by Stride Foundation, together with any necessary specific comment.

Information on Child Abuse

Stride Foundation through our work is sometimes made aware of situations of child abuse or other areas of concern. Stride’s policy means that we are mandated to report any disclosures of child abuse to the appropriate mandated reporting person or organisation. We make a written record all concerns raised, including names and details if disclosed.

Financial Records

Stride Foundation maintains a database of suppliers, customers and other contacts with which it engages in financial transactions. The computerised financial system operated by Stride Foundation accesses this database in order to process financial transactions.

The information held in the database for each contact consists of the contact’s name, address, telephone numbers and one or more identifiers necessary for effective financial processing.

The information may be used from time to time for direct marketing purposes to raise funds for Stride Foundation. The information is not made available to any third party except to government agencies as required by law.

Discussing or Accessing Your Information

You may wish to discuss, or obtain access to your personal information as held by Stride Foundation, or which you believe may be held by Stride Foundation. Please contact our office on 03 9885 8956 or office@stride.org.au if you wish to request this information.