OUR PRIVACY POLICY

Policy Overview

ConnectionWorks is committed to protecting the privacy of all individuals engaging with the service. This policy outlines how we manage personal information in accordance with the Privacy Act 1988 and the Australian Privacy Principles (APPs).

1. Collection of Personal Information

We collect personal information necessary to deliver our programs effectively, ensure cultural safety, and fulfil our funding and reporting obligations.

Information we may collect:

• Name, contact details, and demographic information
• Cultural identification (e.g., Aboriginal or Torres Strait Islander status)
• Feedback, survey responses, and course reflections
• Emergency contact details
• Payment or funding eligibility details (where applicable)

How we collect it:

• Through online registration forms
• During course participation (online or in person)
• Feedback surveys or evaluation tools
• Direct communications with our team

NOTE: Where ConnectionWorks programs are delivered via a host organisation, the host organisation may be responsible for the collection and management of data relating to program participants. In this scenario, the privacy policy of the host organisation will apply.

 
2. Use of Personal Information

We use personal information for the following purposes:

• To manage course participation and logistics
• To provide culturally safe support during and after the course
• To measure impact and improve the course experience
• To report anonymised data to funders and stakeholders
• To respond to enquiries or provide follow-up care when appropriate

We will never sell or rent your personal data to third parties.

3. Storage and Security

Your data is securely stored using encrypted cloud-based systems located in Australia or countries with equivalent data protection laws.

We apply:

• Password-protected access to systems
• Staff training on privacy and data protection
• Annual data audits
• Role-based permissions

Hard-copy information (if collected) is stored in locked cabinets and securely destroyed when no longer needed.

4. Disclosure of Information

We may disclose personal information:

• To course facilitators or cultural advisors on a need-to-know basis
• To emergency services if required to protect someone’s safety
• To external evaluators or researchers — only with consent and de-identification of data
• When legally required (e.g. subpoena or duty of care obligations)

5. Access and Correction

You may request access to your personal information or request corrections by contacting our Privacy Officer (details below). We will respond within 30 days.

6. Website and Online Data

When using our website or online course platform, we may collect de-identified data such as:

• IP address, browser type and usage patterns
• Cookies to enhance user experience

We do not use third-party trackers to profile users. All analytics are anonymised and used to improve website usability.

7. Data Retention

We retain personal information only as long as necessary for:

• Compliance with legal or reporting obligations
• Ensuring appropriate post-course care
• Internal evaluation and quality improvement

After this, data is securely deleted or de-identified.

8. Complaints and Feedback

If you believe we have breached your privacy, please contact our Privacy Officer. We will investigate all concerns fairly and in line with our obligations under the Privacy Act.

You can also lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.

9. Contact Us

Eli Toombs – Privacy Officer
ConnectionWorks
Email: eli.toombs@connectionworks.com.au
Phone: 0498362191

10. Policy Updates

This policy will be reviewed annually and updated when necessary to ensure compliance. Changes will be reflected in the version control header and published at www.connectionworks.net/privacy-policy.