Delegator may collect and receive Customer Data in a variety of ways:
Customers or individuals granted access to an Organisation by an Organisation admin (Authorised Users) routinely submit Customer Data to Delegator when using the Applications. Delegator also collects, generates and/or receives Customer Data in a number of other ways:
Generally, no one is under a statutory or contractual obligation to provide any Customer Data. However, certain Customer Data is collected automatically when using the Website and Applications and, if some Customer Data, such as Organisation setup details, is not provided, a Customer may be unable to use the Applications.
Customer Data will be used by Delegator in accordance with the Customer’s instructions, the Customer’s use of the Website and Applications functionality, and as required by applicable law. Delegator is the controller of Customer Data in the context of the Website. Delegator is both a controller and processor of Customer Data in the context of the Applications.
The Customer is the controller of some Customer Data in the context of Applications, as a Customer may, for example, use the Applications to grant and remove access to a Organisation, assign roles and configure settings, access, modify, export, share and remove Customer Data and otherwise apply its own policies to the Applications.
Delegator uses Customer Data in furtherance of our legitimate interests in operating our Applications, Website and business. More specifically, Delegator uses Customer Data:
This section describes how Delegator may share and disclose Customer Data. Customers determine their own policies and practices for the input, sharing and disclosure of Customer Data, and Delegator does not control how they or any other third parties choose to share or disclose Customer Data.
Delegator takes security of data very seriously. We are focussed on protecting any provided Customer Data from loss, misuse, and unauthorised access or disclosure. All Customer Data stored on Delegator managed databases is encrypted and protected by industry standard data security practice. Given the nature of communications and Customer Data processing technology, Delegator cannot guarantee that Customer Data, during transmission through the Internet or while stored on our systems or otherwise in our care will be absolutely safe from intrusion by others.
To the extent prohibited by applicable law, Delegator does not allow use of our Applications and Website by anyone younger than 16 years old. If you learn that anyone younger than 16 has unlawfully provided us with Personal Data, please contact us and we will take steps to delete such Customer Data.
Delegator will never store your Personal Data to countries other than Australia. All stored data remains encrypted and secure within Australia.
Individuals in Australia, have certain statutory rights in relation to their Personal Data. Subject to any exemptions provided by law, you may have the right to request access to Customer Data, as well as to seek to update, delete or correct this Customer Data. You can usually do this using the settings and tools provided in your Applications account. If you cannot use the settings and tools, contact the Customer who controls your Organisation for additional access and assistance.
To the extent that Delegator’s processing of your Personal Data is subject to the General Data Protection Regulation (or applicable laws covering the processing of Personal Data in Australia), Delegator relies on its legitimate interests, described above, to process your data. Delegator may also process Customer Data that constitutes your Personal Data for direct marketing purposes, and you have a right to object to Delegator’s use of your Personal Data for this purpose at any time.
Subject to applicable law, you also have the right to (i) restrict Delegator’s use of Customer Data that constitutes your Personal Data and (ii) lodge a complaint with the Office of the Australian Information Commissioner (OAIC)