EFIC is committed to protecting the personal information we hold and complying with the Privacy Act 1988. The Act sets out standards that organisations must meet in collecting, using, disclosing and handling personal information.
EFIC is Australia's government-owned Export Credit Agency. We provide a range of insurance and financial products and services with the ultimate aim of supporting the growth of Australian businesses internationally. Our products and services include export credit insurance, political risk insurance, loans, bonds and guarantees. If you would like further information about the products and services we offer, please contact us.
Why we collect personal information
We collect personal information to provide the insurance and financial products and services we offer and to manage our rights and obligations in relation to those products and services. We also collect personal information to enable us to:
- develop and identify products and services that may interest you;
- conduct market or customer satisfaction research; and
- develop, establish and administer alliances and other arrangements with other organisations (including financiers and other insurers) in relation to the promotion, administration and use of our respective products and services.
The type of personal information we collect
Generally, the type of personal information we collect includes an individual's name, mailing address, telephone and facsimile numbers and e-mail address. If you request or apply for a specific product or service we may need to collect specific information from you relating to that product or service, such as financial information. Where we have provided a product or service to you, we will need to collect and store your personal information relating to that product or service. This will enable us to assist you with any further information or questions you may have and to manage the provision of that product or service.
In certain circumstances, we may also collect sensitive information about you, for example information about your membership of professional or trade associations. Special rules apply to collection of sensitive information under the Australian Privacy Principles contained in the Act.
If you do not provide us with the personal information we (or other relevant third parties) need, we or they may not be able to provide the appropriate type or level of service to you.
How we collect personal information
We collect personal information in the following ways:
directly from the individual to whom the information relates, including by telephone and in documents completed by the individual and provided to us;
through our representatives, advisers and third parties, including related companies and alliance partners;
from credit reporting agencies and your financiers and representatives;
from our records of EFIC products or services to which you have subscribed; and
from publicly available sources.
Collection of personal information via our website
Site Visit Data
Our website hosting provider makes a record of your visit and logs the following information for statistical purposes: the user's server address; the user's top level domain name; the date and time of the site visit; the pages accessed and documents downloaded; the previous site visited and the type of browser used.
No attempt will be made to identify users or their browsing activities except, in the unlikely event of an investigation, where a law enforcement agency may exercise a warrant to inspect the service provider's logs.
Use of "Cookies"
Cookies are used on our website to supplement the site visit data described above. As with that information, EFIC makes no attempt to identify users or their browsing activities except, in the unlikely event of an investigation, where a law enforcement agency may exercise a warrant to inspect the service provider's logs.
What is a cookie?
A cookie is a tiny piece of text that a website server gives to a browser the first time the user visits the site and updates with each return visit. Cookies can store information such as user name and password and what parts of the site were visited. Accepting a cookie does not give access to your computer nor to your personal information. The website server saves the information the cookie contains about the user and the user's browser does the same (if it supports cookies). There are two types of cookies: temporary and log cookies. Temporary cookies are required and tell the website server which page to pull up next. EFIC's website uses traffic log cookies to show what pages are being used on its site.
Security of information transmitted via our website
We disclose personal information to third parties in Australia or overseas who we believe are necessary to assist us in providing our products and services. We may disclose your personal information to:
- our external advisers (for example, our lawyers, accountants and auditors);
- other insurers;
- government agencies and departments;
- persons or entities with whom we have formed alliance or other agencies; and
- anyone to whom we are required to disclose information by law.
We may transfer personal information to third parties by electronic means, including via the Internet.
Except where you have consented, we limit the use and disclosure of any personal information provided by us to third parties to the purpose for which we supplied it and related purposes.
When transferring personal information to third parties within Australia and outside Australia we will take reasonable steps to ensure that those third parties treat the information in accordance with the Act and subject to our confidentiality requirements.
Provision of personal information to EFIC
If you provide us with personal information about other individuals, we rely on you to have made them aware:
that you will or may provide that information to us;
of the purposes for which we use it;
- of the types of third parties to whom we disclose it; and
- of how those individuals may obtain access to personal information relating to them.
Where the personal information is sensitive, we rely on you to have obtained the relevant individual’s consent to the above. If you have not done these things, you must tell us before you provide the relevant information.
If we provide you with personal information about an individual, you and your representatives must only use it for the purposes for which we supply it. Where relevant, you must meet the requirements of the Australian Privacy Principles set out in the Act as they relate to the collection, use, disclosure and handling of personal information on our behalf. You must also ensure that your agents, employees and contractors meet the above requirements.
Security of your personal information
We endeavour to protect any personal information we hold from misuse and loss and to protect it from unauthorised access, modification and disclosure.
We maintain physical security such as locks and security systems over our premises and paper and electronic data stores. We also maintain security over our computer network. For example, we use firewalls (security measures for the Internet) and other security systems such as user identifiers and passwords to control access to computer systems.
We impose confidentiality obligations on third parties that handle personal information.
Accuracy and Access
We take reasonable steps to ensure that your personal information is accurate, complete and up-to-date whenever we collect or use it having regard to the purpose for which it was collected.
We will, on request, provide you with access to personal information we hold about you (including so that you can request correction of that information) subject to exceptions permitted by law. For example, we will not provide access to personal information if we have a duty of confidentiality in relation to that information.
If we do not provide you with access to personal information or refuse to make any changes to the information that you request, we will take any reasonable steps to respond to your needs where access to information cannot be given in the manner requested or, alternatively, inform you of our reasons for refusing access and the mechanisms available for those reasons to be reviewed. We will also, on request, record the fact that you have made a request for access to personal information and the reason(s) for our refusal to provide access to it.
Your request for us to provide access to and/or correct personal information will be dealt with within 30 days and without any cost to you of us retrieving and supplying the information to you.
Opting out of receiving marketing information
If we send you information about products or services that you do not wish to receive, you can inform us that you wish to opt out by contacting us.
How to contact us
If you wish to:
- obtain access to your personal information;
- opt out of receiving marketing information;
- lodge a complaint about a breach of your privacy;
- query how your personal information is collected or used; or
you may contact our Privacy Officer during business hours at:
Level 10, 22 Pitt Street
Sydney NSW 2000
Telephone: +61 2 8273 5333
Facsimile: + 61 2 9251 3851
We will respond to your query or complaint as soon as possible and will try to resolve any complaint within 5 working days. If this is not possible, we will contact you within that time to let you know how long we estimate it will take to resolve your complaint.