CPG commits to providing open and transparent management of the personal information of the individuals with whom we deal.
The kinds of personal information we collect and hold:
Personal information is information or an opinion that can identify an individual or from which the identity of the individual can be reasonably ascertained. An individual’s name, address and telephone number are examples of personal information.
The type of personal information which we collect will depend upon the dealings you may have with CPG. We collect personal information to:
We do not generally collect sensitive information as this information is not required for us to provide residential home building services. If we do collect sensitive information about you, we will only do so with your consent and directly from you, or otherwise in accordance with the law.
Sensitive information (as defined in the Privacy Act) includes information or opinion relating to:
Acts and practices of employers that are directly related to both employee records and an employment relationship are exempted from the Privacy Act and are therefore not covered by this Policy.
How personal information is collected and held
We start collecting your personal information from the time you make an enquiry about the possibility of engaging us for residential building services. This is usually through our website and application(s) or at our display home locations.
For suppliers and subcontractors, we collect personal information at the time of first engaging you to perform services for us, usually in the form of the “subbie pack”.
Security of personal information
We take all reasonable steps to protect the personal information we hold from misuse, loss, unauthorised access, modification, or disclosure. This protection applies in relation to information stored in both electronic and hard copy form.
CPG will destroy or permanently de-identify any personal information collected when it is no longer required.
External organisations which provide support services to CPG are also required to appropriately safeguard the security of the personal information which we provide to them.
Purpose for which personal information is collected, held, used, and disclosed
We collect personal information from you or your authorised intermediaries which is reasonably necessary for the following purposes:
Consequences if information not provided
When we ask you to provide us with personal information, if you do not provide us with that information or if that information is incomplete or inaccurate, it may:
Use and disclosure of personal information
Personal information which is collected by CPG is generally only used and disclosed for:
We may share personal information with our related entities. In this case, the information may only be used or disclosed by the related entity for the main purpose for which it was collected, where required or authorised by law, or for other purposes if you have consented.
If we wish to use or disclose your personal information in any other circumstances, we will only do so with your consent (implied or express), and will also take steps to ensure the party to whom we have disclosed your information agrees to protect the privacy of your personal information.
We do not sell personal information to companies outside CPG.
Disclosure required by law
We may otherwise use or disclose your personal information where the use or disclosure is required or authorised by law (for example, disclosure to government regulatory and law enforcement agencies) or in emergency situations.
Sending personal information overseas
We currently engage the services of an overseas provider to assist us with preparing plans. This provider is based in Vietnam and we take steps to ensure our provider respects the confidentiality of your personal information by abiding by the APPs and/or equivalent privacy laws.
Other than this overseas provider, we will never disclose your personal information to recipients outside of Australia without first obtaining your consent or otherwise complying with the APPs.
Accessing and updating personal information
You may request access to your personal information or request us to correct information which we hold about you. To make a request, please put your request in writing using the contact details below. We may require proof of identification before we provide access to your personal information.
In normal circumstances we will give you full access to the personal information which we hold about you. However, in some circumstances, we may not be required by law to provide an individual with access to or to correct their personal information. If this is the case, you will be provided with the reason(s) for our decision.
We normally provide access without charge unless your request relates to a large volume of personal information, or access to our archived records. In these circumstances, we may impose a fee to recover our reasonable costs.
Use of our websites and electronic media
We outsource the development, maintenance and hosting of our websites, applications, and customer databases to third party service providers who are contract bound to protect your privacy (and who are also bound by the Privacy Act). Personal information may be disclosed to our third-party service providers so they can effectively provide these services.
If you wish to opt out, most Internet browsers allow you to change your settings to manage or block these cookies.
We may, from time to time, include links to websites or applications of other organisations which may be of interest to you. We are not responsible for the privacy practices of these organisations.
Website and Application(s) security
As with any internet transaction, the transmission of data over the internet is not completely secure. While we take reasonable steps to ensure your personal information is safe and protected against misuse, loss or unauthorised access, modification or disclosure, we cannot guarantee the security of all data submitted to us over the internet.
Commercial Electronic Messages
The Spam Act 2003 (Cth) sets out the circumstances in which we can send you commercial electronic messages (including email and SMS text messages). From time to time, we may send you advertising material related to the purpose for which your personal information was collected.
Commercial electronic messages sent from us will include information about how to contact us and unsubscribe if required. Please note it may take up to 30 days (or such other time as required by the Spam Act) for our records to be updated to reflect your unsubscribe preference.
How to make a complaint or provide feedback
Phone: 02 8851 5300
Email: [email protected]
Address: Unit 2, 21 Solent Circuit, Norwest NSW 2153
By Post: PO Box 7105, Norwest NSW 2153
If you wish to make a privacy complaint, you may contact the Privacy Officer using the contact details above. We will provide a response within 20 working days. In some circumstances we may request further information and/or time to allow us to properly investigate your complaint.
If you feel we have not adequately dealt with your complaint, you may contact the Information Commissioner on 1300 363 992 or in writing, GPO Box 5218, Sydney NSW 2001.
Changes to this Policy
Dated: 5 October 2022