The ASCI Privacy Policy

The Australasian Supply Chain Institute (ASCI) has always respected its members and people's privacy on its mailing lists. ASCI takes reasonable steps to protect your personal information. ASCI abides by the (Cth) (Act) requirements concerning collecting, using, and disclosing your personal information and complying with other applicable laws protecting privacy.
This Privacy Policy describes respecting and protecting your privacy under the Australian Privacy Principles (APPs). It applies to all information ASCI collects about you through our services. This includes personal information collected in person, in forms completed by you or on your behalf, by telephone, through our website, via other service providers and through electronic communication channels.
Your continued membership and use of our website and our service indicate that you accept the conditions of this Privacy Policy and consent to the collection and use by us of any personal information you provide while members and using our services.

The below provides important information in the following areas:

Personal information and how ASCI collects it

Personal information is any information that can be used to identify you. This may include your name, address, telephone number, email address, profession, or occupation. If the information ASCI collects personally identifies you or is reasonably identifiable, it will be considered personal information.
ASCI collects personal information in several ways, including:

  1. directly from you:
    1. when you enter your details on application forms (e.g., during course registration or attending a function)
    2. when you provide information via your business card
    3. by phone or mail, or email enquiries
  2. from third parties such as work colleagues or other resource professionals who feel you may be interested in ASCI activities
  3. from enquiries forwarded on by APICS and other Certification Partners.

ASCI also collects limited information about all visitors to our online resources, which is used only to identify generic behavioural patterns. ASCI may use cookies, Google Analytics or other technology to track visits to our website to monitor its effectiveness, maintain our server and improve our services.

Types of data collected include (but is not limited to):

  1. Server address.
  2. Top-level domain name (for example, .com, .gov, .au, etc.).
  3. The date and time of the visit to the site.
  4. The pages accessed and documents downloaded.
  5. The previous site visited.
  6. If the individual has visited our site before; and
  7. the type of browser used.

These statistics will not identify you as an individual or any of your personal information.

How ASCI use Personal Information

ASCI collects personal information to improve and perform our activities and functions, provide you with any products or services you request, respond to any query or complaint you may have, and communicate with you generally concerning these purposes.

Your personal information may also be used to:

  1. identify you to our Certification Partners for membership, examinations or issuing of certifications
  2. record results of exams; seminars attended and other ASCI-related bodies, including all continuing education activities required for certification maintenance
  3. provide ASCI services
  4. process credit card services for payment details
  5. research and develop any services ASCI considers may be of interest to you should you choose.

Disclosure of Personal Information

For the purposes set out above (under "How ASCI uses your personal information"), ASCI may disclose your personal information to organisations outside of ASCI. Where appropriate, these disclosures are subject to privacy and confidentiality protections. The organisations to which ASCI would typically disclose information include:

  1. billing and debt-recovery functions
  2. the authority (agents) involved in running exams, planning, and advising of exams and another testing
  3. Certification Partners for exam administration certification and certification maintenance
  4. event companies used to promote ASCI-sponsored resource management conferences, exhibitions seminars

government, regulatory authorities, and other organisations, as required or authorised by law.

ASCI will not share any personal information with third parties without consent except under this Policy and:

  1. If ASCI is required by law, or ASCI believes in good faith that such action is necessary to comply with the law, cooperate with law enforcement or other government agencies, or comply with a legal process served on the company (including insurers) or court order.
  2. If the information disclosure will prevent or lessen a serious and imminent threat to somebody's life or health.
  3. To our contractors, only to the extent necessary for them to perform their duties to us.
  4. To our related companies.
  5. To our professional advisers, including our accountants, auditors, and lawyers.
  6. To any governmental or semi-governmental organisation who requests it.
  7. If you are not able to provide us with consent, ASCI may use and disclose your personal information with the permission of a responsible person (as defined under the Act)
  8. As otherwise permitted by law.

Ensure ASCI holds Accurate Information

ASCI takes all reasonable precautions to ensure that the personal information it collects, uses, and discloses is accurate, complete and up-to-date. However, the accuracy of the information ASCI holds depends on the information you provide. That is why ASCI recommends you inform ASCI if there are any errors in your personal information and keep ASCI up to date with changes to your personal information, such as your email and contact details.

You can easily change the information you provide by updating your member profile or contacting ASCI by phone or email.

Requesting your personal information
You have a right to access your personal information. If you would like to do so, let ASCI know by emailing the email below. You must put your request in writing for security reasons.

Security of Information

ASCI takes all reasonable steps to ensure your personal information is managed securely. Discarded media and computers which may hold personal data are securely erased or shredded. ASCI does its best to safeguard your personal information from misuse, loss, and unauthorised access.

ASCI prioritises personal information security and implements several reasonable physical and electronic measures to protect it. Staff who may have access to confidential information may have to sign a confidentiality agreement, and if ASCI uses contract service providers, they will be bound by our Privacy Policy.

Please note that there are no guarantees regarding the security of any information transmitted via the Internet.

Online Transactions

The ASCI website may be enabled for online transactions using a certified secure payment gateway. However, despite the site's security, you should be aware of inherent risks in transferring information across the Internet, and ASCI cannot accept liability for any breaches.
When you make an internet payment, your credit card number is used only to make a debit and is not kept by ASCI.

Security Measures for Online Payments

ASCI processes payments made online on its website, in real-time, using a secure payment gateway. It processes payments in Australian dollars in Australia (and for all other countries). The ASCI website has security measures designed to protect against the loss, misuse, or alteration of your personal information under our control.

Direct Marketing

ASCI never discloses personal data that it collects, to a third party, allowing them to direct market their products and services to you unless you have given us your express permission to do this.
However, ASCI may disclose data internally for direct marketing, including issuing newsletters, company updates, and product offerings.
Accepting ASCI's services allows ASCI to use your data for our direct marketing purposes and the purposes explicitly set out in this Policy. You consent to using your information to issue product and professional mailouts by email, fax, social media, or letters and undertaking other marketing or service-based activities about our products and services. You may opt out of any direct marketing service at any time.

Links to other Websites

The ASCI website may contain links to third-party websites, which may also have links to our websites. ASCI does not endorse any of those websites or links. This Privacy Policy does not apply to external links or websites that collect your personal information. ASCI encourage you to read the privacy policies of any website you link to from our website.

Cross Border

Suppose ASCI needs to transfer your personal information to a party outside the jurisdiction in which you reside. In that case, ASCI will comply with all applicable laws, including the provisions of Australian Privacy Principles (APP 8; Cross-border disclosure of personal information) and the General Data Protection Regulation (GDPR). ASCI will ensure that any third party to whom to provide the information offshore is already subject to strict privacy laws (like the GDPR) or compel them to comply with the Australian Privacy Principles.

Data Breach

ASCI takes all reasonable steps to prevent data breaches. However, suppose ASCI suspects that a data breach has occurred. In that case, ASCI will undertake a fair and quick assessment to determine if the data breach will likely result in serious harm to any affected individual. If so, ASCI will:

  1. Take all reasonable steps to contain the breach.
  2. Where possible, take action to remediate any risk of harm.
  3. Notify individuals and the Commissioner where an individual is likely to suffer serious harm or is otherwise required by law, and
  4. Review the incident and consider what actions can be taken to prevent future breaches.

Paper Records

Manual paper records and receipts that contain your original request may be kept on file until destroyed or archived, depending on auditor requirements.

ASCI may keep exam registration and exam results from the information. However, they will not be released to anyone except the examinee without their written permission. In most cases, exam registrations and exam results are held and managed by the examining certification partner.

Complaints

If you wish to complain about a breach of privacy, you must supply full details of your complaint in writing and send it to the Privacy Officer (see contact details below).

Suppose your complaint relates to our failure to access or correct any personal information that ASCI holds about you. In that case, you may submit a complaint directly to the Office of the Australian Information

Commissioner (for more information, please see the Office of the Australian Information Commissioner website).

If your complaint does not relate to these matters, you must first submit a complaint to us in writing and provide details of the incident so that ASCI can investigate. ASCI will treat your complaint confidentially, investigate your complaint and aim to ensure that ASCI contact you and your complaint is resolved within a reasonable time (and in any event within the time required by the relevant privacy legislation, if applicable).
Individuals inquiring about their rights and remedies for privacy breaches can access detailed information at the Office of the Australian Information.

Changes to this Privacy Policy

As it may be necessary, ASCI reserves the right to review, revise or make changes to our Privacy Policy and notify you of those changes by posting those changes on our website.

More Information

If you want more information about our Privacy Policy or how ASCI manages your personal information, you can contact the Privacy Officer at [email protected].
Alternatively, additional information on the Australian Privacy Principles can be obtained from the Office of the Australian Information Commissioner website.

Back to top of page