Logo

Key Considerations When Sharing Personal Information with Overseas Contractors

Share this article:

Engaging overseas contractors can be an effective way for businesses to respond to their business needs. However, while there are many advantages to hiring overseas contractors, you must consider this against legal risks, such as the risk of sharing the personal information of Australian individuals with overseas parties.

.

This article considers how you can comply with your privacy obligations under the Australian Privacy Principles outlined in the Privacy Act 1988 (Cth) when disclosing information with overseas contractors.

Are You an APP Entity?

Before sharing information with an overseas contractor, you must determine if you are an APP entity. This distinction is important because if an APP entity shares information overseas and that overseas party breaches the APPs, that breach will be taken to be a breach by the APP entity itself.

For example, suppose your business generates more than $3 million in annual turnover. In that case, it will likely be considered an APP entity and will have obligations under the Privacy Act, including concerning the disclosure of personal information overseas.

Sharing Information With Overseas Contractors

Suppose you are an APP entity. If so, let us explore several precautionary measures you can take when sharing information with your overseas contractors.

1. Privacy Policy

Before sharing information with any third party (including overseas contractors), you should review the terms of your privacy policy to ensure that you have informed your customers that you will share their personal information with overseas contractors.

If you have yet to inform customers of this intended use, you can update your privacy policy and provide notice of this to your customers. You should aim to give your customers at least 30 days’ notice before the privacy policy comes into effect. Accordingly, this will allow your customers to inform you of any issues with your intended use of their personal information before you disclose it.

2. Risk Mitigation

As a best practice, you should only share information essential for your overseas contractors to be able to deliver the services.

When engaging an overseas contractor, consider the following questions.

1. Whether the volume of information you are sharing with the contractor is necessary to enable them to perform the services?

  • Tip: As a rule, do not provide the contractor with more personal information than is necessary. The more information you share, the higher the risk of individuals using data in a way that breaches the APPs.

2. What is the nature of the information?

  • Tip: You should consider the nature of the information, and whether it is personal or sensitive information. Sensitive data requires a higher level of confidentiality due to its delicate nature.

3. How much access does the contractor have to my existing databases?

  • Tip: Ensure that you only provide access to the databases that the contractor needs to perform their services. All other access should be limited or subject to your approval.

3. Contractual Terms

You should ensure that the terms of your contractor agreement impose strong privacy obligations on the contractor, particularly concerning any personal information they receive or have access to during the term.

You can include clauses addressing the following:

  • an acknowledgement by the contractor that you are required to comply with the APPs;
  • a warranty that the contractor will not breach the APPs;
  • an indemnity by the overseas contractor if it breaches the APPs (for example, by disclosing personal information to an unauthorised party); and
  • a data breach response plan that includes a straightforward process for reporting a data breach.

 

 

 

Saya Hussain
April 18
legalvision.com.au

Share this article:

Hot Issues

Advanced Partners Logo

ABN: 67 614 945 667

Disclaimer | Privacy Policy

Disclaimer

The contents hereinafter presented and made accessible on this website are exclusively provided by Advanced Partners, representing general informational materials. The purpose of these materials is solely to serve as guidance and in no case should they be interpreted as counsel or advice on any specific matter.

In using the information provided, you are encouraged to assess its relevance to your individual goals, financial circumstances, and needs. In the event of detailed descriptions of any products being available on this website, you are advised to procure the Product Disclosure Statement (PDS) corresponding to said products, and to deliberate on its contents prior to any decision-making.

Advanced Partners extends no assurances or warranties pertaining to uninterrupted, delay-free, error-free, or omission-free operation of the Site, nor its immunity from viruses. Thus, the information is furnished “as is”, bereft of warranties of any kind, express or implied, inclusive of those concerning accuracy, promptness, and completeness.

Advanced Partners and its respective affiliates (be they direct or indirect) renounce all guarantees, obligations, and warranties, be they express or implied, and shall not bear liability for any loss or damage whatsoever (including those resulting from human or computer errors, whether negligent or otherwise, or incidental or consequential losses or damages) that arise from or are connected with any utilization of or reliance on the information or advice on this site. The user must undertake sole responsibility related to the use of the material on this site, regardless of the purpose or the outcomes of such usage. The information available on this website should not be considered a replacement for professional tax advice or consultation.

Our liability is limited by a scheme approved under Professional Standards Legislation.

Privacy Policy

Welcome to Advanced Partners (“we,” “our,” or “us”). This Privacy Policy outlines how we collect, use, disclose, and protect the personal information of our users and customers in Australia. We are committed to safeguarding your privacy and ensuring the security of the information you provide to us. By accessing or using our website, you agree to the practices described in this Privacy Policy.

Information We Collect

We may collect the following types of personal information:

1.1. Personal Identifiers: Name, email address, postal address, phone number, date of birth, and other contact details.

1.2. Account Information: Usernames, passwords, and other credentials used to access our website and services.

1.3. Payment Information: Credit card details or other payment information when making purchases on our website.

1.4. Usage Information: Data about how you interact with our website, such as IP address, browser type, pages viewed, and referring URL.

1.5. Communications: Records of your interactions with us, such as customer support inquiries, feedback, or chat logs.

1.6. Cookies and Similar Technologies: We may use cookies and similar technologies to collect information about your browsing activities on our website.

How We Use Your Information

We use your personal information for the following purposes:

2.1. Service Delivery: To provide you with access to our website and deliver the services you request.

2.2. Communication: To send you important updates, newsletters, and promotional materials (if you’ve opted in) related to our website and services.

2.3. Personalization: To tailor our website content and offerings to your preferences and interests.

2.4. Payment Processing: To process payments for products and services you purchase from us.

2.5. Legal Compliance: To comply with applicable laws, regulations, and legal processes.

How We Share Your Information

We may share your personal information with third parties in the following circumstances:

3.1. Service Providers: We may engage trusted service providers to assist us in operating our website and providing services to you, and they may have access to your personal information for that purpose.

3.2. Legal Obligations: We may disclose your information to comply with legal obligations, enforce our Terms of Service, or protect our rights, privacy, safety, or property.

3.3. Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal information may be transferred to the acquiring entity.

3.4. Consent: We may share your information with your consent or as otherwise disclosed at the time of collection.

Your Privacy Rights

4.1. Access and Correction: You have the right to access and correct your personal information held by us.

4.2. Marketing Preferences: You can opt-out of receiving marketing communications from us at any time.

4.3. Cookies: You can manage your cookie preferences through your browser settings.

Security

We take reasonable measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. However, no method of transmission over the internet or electronic storage is entirely secure, and we cannot guarantee absolute security.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The most recent version will be posted on our website with the updated effective date.

Contact Us

If you have any questions or concerns about this Privacy Policy or our privacy practices, please contact us.

By using our website, you agree to the terms outlined in this Privacy Policy. If you do not agree with any part of this policy, please refrain from using our website.

Disclaimer

The contents hereinafter presented and made accessible on this website are exclusively provided by Advanced Partners, representing general informational materials. The purpose of these materials is solely to serve as guidance and in no case should they be interpreted as counsel or advice on any specific matter.

In using the information provided, you are encouraged to assess its relevance to your individual goals, financial circumstances, and needs. In the event of detailed descriptions of any products being available on this website, you are advised to procure the Product Disclosure Statement (PDS) corresponding to said products, and to deliberate on its contents prior to any decision-making.

Advanced Partners extends no assurances or warranties pertaining to uninterrupted, delay-free, error-free, or omission-free operation of the Site, nor its immunity from viruses. Thus, the information is furnished “as is”, bereft of warranties of any kind, express or implied, inclusive of those concerning accuracy, promptness, and completeness.

Advanced Partners and its respective affiliates (be they direct or indirect) renounce all guarantees, obligations, and warranties, be they express or implied, and shall not bear liability for any loss or damage whatsoever (including those resulting from human or computer errors, whether negligent or otherwise, or incidental or consequential losses or damages) that arise from or are connected with any utilization of or reliance on the information or advice on this site. The user must undertake sole responsibility related to the use of the material on this site, regardless of the purpose or the outcomes of such usage. The information available on this website should not be considered a replacement for professional tax advice or consultation.

Our liability is limited by a scheme approved under Professional Standards Legislation.