We usually collect personal information (including sensitive information) from you when you are applying to work or volunteer at The Bridge or if you are a prospective or current participant.
We sometimes collect personal information from a third party such as a recruitment agency, education provider, government agency or your authorised representatives.
We also collect personal information through our websites and social networking services such as Facebook, when you engage with us via those platforms.
We may disclose your personal information to any of the organisations that we deal with in the ordinary administration of business including government departments/agencies, the Australian Government, professional advisors, information technology service providers, educational institutions, health care professionals and community based services that assist us to deliver services.
We don’t disclose sensitive information about you unless you agree, or would reasonably expect us to.
We don’t disclose personal information to third parties located overseas without your consent and in accordance with the Australian Privacy Principles.
If you ask, in most cases we must give you access to the personal information that we hold about you, and take reasonable steps to correct it if we consider it is incorrect. We will try to make the process as simple as possible.
The Bridge is required to provide notice of any serious privacy data breach to affected individuals and the Privacy Commissioner. This occurs where there has been unauthorised access to, unauthorised disclosure of, or loss of, personal information held by The Bridge that would likely result in serious harm being caused to any of the individuals to whom the information relates. This may include serious physical, psychological, emotional, financial, or reputational harm.
In instances where The Bridge suspects that a serious privacy breach may have occurred, the organisation will carry out an assessment within 30 days. If such a breach is found to have occurred a statement will be prepared for the Privacy Commissioner, and all reasonable steps will be taken to notify each of the individuals whose information has been breached.
You can complain to us in writing about how we have handled your personal information. We will respond to the complaint within 30 days.