Tenac Solutions Privacy Policy

1. Definitions

Tenac Solutions Pty Ltd (the Company) have adopted definitions from the EU General Data Protection Regulations (GDPR)

1. Personal data means any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person
   
   
2. Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction
   
   
3. Restriction of processing means the marking of stored personal data with the aim of limiting their processing in the future
   
   
4. Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law
   
   
5. Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements
6. Pseudonymisation means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person
   
   
7. Filing system means any structured set of personal data which are accessible according to specific criteria, whether centralised, decentralised or dispersed on a functional or geographical basis
   
   
8. Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law
   
   
9. Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller
   
   
10. Recipient means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing
    
    
11. Third party means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data
    
    
12. Consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her
    
    
13. Representative means a natural or legal person established in the Union who, designated by the controller or processor in writing pursuant to Article 27, represents the controller or processor with regard to their respective obligations under this Regulation
    
    
14. Enterprise means a natural or legal person engaged in an economic activity, irrespective of its legal form, including partnerships or associations regularly engaged in an economic activity
    
    

2. We respect your privacy

(a) The Company respects your right to privacy and is committed to safeguarding the privacy of our customers and website visitors. This policy sets out how we collect and treat your personal information.

(b) "Personal information" is information we hold which is identifiable as being about you. This includes information such as your name, email address, identification number, or any other type of information that can reasonably identify an individual, either directly or indirectly.

(c) You may contact us in writing at info@tenacsolutions.com, Western Australia for further information about this Privacy Policy.

3. What personal data is collected

(a) The Company will, from time to time, receive and store personal data that you submit to our website, provided to us directly or provided to us in other forms.

(b) You may provide basic information such as your name, phone number, address, and company email address to enable us to send you information, provide updates and process your product or service order.

(c) We may collect additional information at other times, including but not limited to, when you provide feedback, when you provide information about your business affairs, change your content or email preference, respond to surveys and/or promotions or communicate with our customer support.

(d) Additionally, we may also collect any other information you provide while interacting with us.

4. How we collect your personal data

(a) The Company collects personal information from you in a variety of ways, including when you interact with us electronically or in person, when you access our website and when we engage in business activities with you. We may receive personal information from third parties. If we do, we will protect it as set out in this Privacy Policy.

(b) By providing us with personal information, you consent to the supply of that information subject to the terms of this Privacy Policy.

5. How we use your personal data

(a) The Company may use personal information collected from you to provide you with information about our products or services. We may also make you aware of new and additional products, services, and opportunities which may be of interest.

(b) The Company will use personal information only for the purposes that you consent to. This may include to:

(i) provide you with products and services during the usual course of our business activities;

(ii) administer our business activities;

(iii) manage, research and develop our products and services;

(iv) provide you with information about our products and services;

(v) communicate with you by a variety of measures including, but not limited to, by telephone, email, sms or mail; and

(vi) investigate any complaints.

If you withhold your personal data, it may not be possible for us to provide you with our products and services.

(c) We may disclose your personal data to comply with a legal requirement, such as a law, regulation, court order, subpoena, warrant, legal proceedings or in response to a law enforcement agency request.

(d) If there is a change of control in our business or a sale or transfer of business assets, we reserve the right to transfer to the extent permissible at law our user databases, together with any personal data and non-personal data contained in those databases.

6. Disclosure of your personal data

(a) The Company may disclose your personal information to any of our employees, officers, insurers, professional advisers, agents, suppliers, or subcontractors insofar as reasonably necessary for the purposes set out in this privacy policy.

(b) If we do disclose your personal data to a third party, we will protect it in accordance with this privacy policy.

7. General Data Protection Regulation (GDPR) for the European Union (EU)

(a) The Company will comply with the principles of data protection set out in the GDPR for the purpose of fairness, transparency and lawful data collection and use.

(b) We process your personal data as a Processor and/or to the extent that we are a Controller as defined in the GDPR.

(c) We must establish a lawful basis for processing your personal data. The legal basis for which we collect your personal data depends on the information that we collect and how we use it.

(d) We will only collect your personal data for a specific purpose and any data collected will be to the extent necessary and not excessive for its purpose. We will keep your data safe and secure.

(e) We will also process your personal data if it is necessary for our legitimate interests, or to fulfil a contractual or legal obligation.

(f) We process your personal data if it is necessary to protect your life or in a medical situation, it is necessary to carry out a public function, a task of public interest or if the function has a clear basis in law.

(g) We do not collect or process any personal information from you that is considered "Sensitive Personal Information" under the GDPR, such as personal information relating to your sexual orientation or ethnic origin unless we have obtained your explicit consent, or if it is being collected subject to and in accordance with the GDPR.

(h) You must not provide us with your personal data if you are under the age of 16 without the consent of your parent or someone who has parental authority for you. We do not knowingly collect or process the personal information of children.

8. Your rights under the GDPR

(a) If you are an individual residing in the EU, you have certain rights as to how your personal information is obtained and used. The Company complies with your rights under the GDPR as to how your personal information is used and controlled if you are an individual residing in the EU

(b) Except as otherwise provided in the GDPR, you have the following rights:

(i) to be informed how your personal information is being used;

(ii) access your personal information (we will provide you with a free copy of it);

(iii) to correct your personal information if it is inaccurate or incomplete;

(iv) to delete your personal information (also known as "the right to be forgotten");

(v) to restrict processing of your personal information;

(vi) to retain and reuse your personal information for your own purposes;

(vii) to object to your personal information being used; and

(viii) to object against automated decision making and profiling.

(c) Please contact us at any time to exercise your rights under the GDPR at the contact details in this Privacy Policy.

(d) We may ask you to verify your identity before acting on any of your requests.

9. Hosting and International Data Transfers

(a) Information that we collect may from time to time be stored, processed in or transferred between parties or sites located in countries outside of Australia. These may include, but are not limited to USA.

(b) The hosting facilities for our website are situated in. Transfers to each of these Countries will be protected by appropriate safeguards, including data protection clauses.

(c) Our Suppliers and Contractors are situated in. Transfers to each of these Countries will be protected by appropriate safeguards, including data protection clauses.

(d) You acknowledge that personal data that you submit for publication through our website or services may be available, via the internet, around the world. We cannot prevent the use (or misuse) of such personal data by others.

10. Security of your personal information

(a) The Company is committed to ensuring that the information you provide to us is secure. To prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure information and protect it from misuse, interference, loss and unauthorised access, modification and disclosure.

(b) Where we employ data processors to process personal information on our behalf, we only do so on the basis that such data processors comply with the requirements under the GDPR and that have adequate technical measures in place to protect personal information against unauthorised use, loss and theft.

(c) The transmission and exchange of information is carried out at your own risk. We cannot guarantee the security of any information that you transmit to us, or receive from us. Although we take measures to safeguard against unauthorised disclosures of information, we cannot assure you that personal information that we collect will not be disclosed in a manner that is inconsistent with this Privacy Policy.

11. Access to your personal information

(a) You may request details of personal information that we hold about you in accordance with the provisions of the Privacy Act 1988 (Cth), and to the extent applicable the EU GDPR. If you would like a copy of the information which we hold about you or believe that any information we hold on you is inaccurate, out of date, incomplete, irrelevant or misleading, please email us at info@tenacsolutions.com.

(b) We reserve the right to refuse to provide you with information that we hold about you, in certain circumstances set out in the Privacy Act or any other applicable law.

12. Complaints about privacy

(a) If you have any complaints about our privacy practices, please feel free to send in details of your complaints to info@tenacsolutions.com. We take complaints very seriously and will respond shortly after receiving written notice of your complaint.

13. Changes to Privacy Policy

(a) Please be aware that we may change this Privacy Policy in the future. We may modify this Policy at any time, in our sole discretion and all modifications will be effective immediately upon our posting of the modifications on our website or notice board. Please check back from time to time to review our Privacy Policy.

14. Website

(a) When you visit our website

When you come to our website (Tenac Solutions - STA Compliance Management; https://tenacsolutions.com), we may collect certain information such as browser type, operating system, website visited immediately before coming to our site, etc. This information is used in an aggregated manner to analyse how people use our site, such that we can improve our service.

(b) Cookies

We may from time to time use cookies on our website. Cookies are very small files which a website uses to identify you when you come back to the site and to store details about your use of the site. Cookies are not malicious programs that access or damage your computer. Most web browsers automatically accept cookies but you can choose to reject cookies by changing your browser settings. However, this may prevent you from taking full advantage of our website. Our website may from time to time use cookies to analyses website traffic and help us provide a better website visitor experience. In addition, cookies may be used to serve relevant ads to website visitors through third party services such as Google AdWords. These ads may appear on this website or other websites you visit.

(c) Third party sites

Our site may from time to time have links to other websites not owned or controlled by us. These links are meant for your convenience only. Links to third party websites do not constitute sponsorship or endorsement or approval of these websites. Please be aware that the Company is not responsible for the privacy practices of other such websites. We encourage our users to be aware, when they leave our website, to read the privacy statements of each and every website that collects personal identifiable information.