Privacy Policy





Crystal Clear Data Pty Ltd ABN 79 050 063 379 (“Crystal Clear Data”) is committed to protecting your privacy.


Crystal Clear Data is bound by the Privacy Act 1988 (Cth) (“the Privacy Act”), including the 13 Australian Privacy Principles (“APP(s)”). Crystal Clear Data will collect, manage, use and disclose, Personal Information in accordance with its Privacy Policy and all relevant Australian legislation.


  1. The Policy


  • Legislation


The Privacy Act outlines a comprehensive national privacy scheme for private sector organisations. Minimum standards are established for the handling of Personal Information by private organisations. The AAPs are the standard principles Crystal Clear Data complies with in relation to the Personal Information it holds.


  • Collection


Crystal Clear Data only collects Personal Information that is reasonably necessary for its functions and activities. Furthermore, Personal Information and Sensitive Information is collected through our website and mobile application, as they exist from time to time.


Crystal Clear Data may collect and hold Personal and/or Sensitive Information about you, including your:


The Personal Information that Crystal Clear Data collects and holds about you, depends on your interaction with Crystal Clear Data. Generally, Crystal Clear Data will collect and hold your Personal and/or Sensitive Information for the purpose of:


  • Providing data processing services to you or someone else;
  • Providing a broad range of marketing support services;
  • Tailoring programs and services to suit your requests;
  • Recording concerns, complaints and resolutions;
  • Requiring online data capture portals;
  • Requiring data for survey design and deployment,
  • Helping in designing and printing your research or medical survey;
  • Helping with your data capture process to streamline your work flow;
  • Managing your donations, surveys and leads;
  • Helping with your appeals and campaigns;
  • Handling, scanning and data capture services;
  • Merchandising response and payment processing;
  • Recording payment details;
  • Providing you with information about other services, programs and activities that Crystal Clear Data offers that may be of interest to you;
  • Providing you with information about Crystal Clear Data news and any updates such as fees or policies;
  • Facilitating Crystal Clear Data’s internal business operations, including the fulfilment of any legal requirements;
  • Analysing Crystal Clear Data’s services and customer needs with a view to developing new and/or improved services;
  • Contacting you, in the case of an emergency involving someone else you know;
  • Contacting you to provide a testimonial for Crystal Clear Data; and
  • Contacting your nominated person to retain communication with you in circumstances where we are unable to reach you.


Crystal Clear Data does not collect Personal Information for the purpose of advertising revenue or transacting that information to third parties for financial gain.


Personal Information will generally be collected by Crystal Clear Data directly from you using Crystal Clear Data’s, or its authorised agents, standard forms or by direct communication. If Personal Information is collected from you indirectly because it is unreasonable or impractical to collect it directly from you, we will endeavour to notify you in advance, or as soon as reasonably practicable after the information has been collected.


  • Use and Disclosure


Crystal Clear Data uses and/or discloses Personal Information and/or Sensitive Information about you for the purposes for which it was collected. In some instances, Crystal Clear Data may also disclose Personal and/or Sensitive Information about you to:


  • Service providers who assist Crystal Clear Data in operating its business. Please note that service providers are required to comply with Crystal Clear Data ’s Privacy Policy and confidentiality policies handling your Personal and/or Sensitive Information; Typically a service provider would be a current supplier to your organisation such as a fundraising agency or mail house.
  • Commonwealth and State Governments and Agencies; and


  • Anonymity and pseudonymity


The APPs provide for the option of having you dealt with anonymously or by pseudonym. You can request that you be treated as anonymous or use a pseudonym during your interaction with Crystal Clear Data. However, please note that Crystal Clear Data is not required to provide this option where:


  • We are required or authorised by law or a Court or tribunal order to deal with identified individuals; or
  • It is impracticable for Crystal Clear Data to deal with individuals who have not identified themselves.



  • Security


All reasonable measures will be taken to ensure Personal and Sensitive Information is stored safely to protect it from misuses, loss, unauthorised access, modification or disclosure, including electronic and physical security measures.


Crystal Clear Data will ensure that Personal and Sensitive Information is kept for no longer than is necessary for the purposes for which it may lawfully be used. Records will be disposed of securely and in accordance with any requirements for the retention and disposal of Personal and Sensitive Information.


All data is processed and stored on premise, on Crystal Clear Data’s servers and encrypted NAS drives.


  • Access to Personal Information and Sensitive Information


Crystal Clear Data will provide you with access to your Personal and/or Sensitive Information about them upon receipt of a written request sent to our contact details provided below. Crystal Clear Data will endeavour to acknowledge such requests within 14 days of its receipt and provide the requested information/documentation within 30 days. A reasonable fee may be charged to cover costs of processing such requests.


Please note that there may be certain circumstances where Crystal Clear Data may decline a request for access to Personal and /or Sensitive Information:


  • The request for access is frivolous or vexatious;
  • Providing access would pose a serious threat to the life or health of an individual;
  • Providing access would have an unreasonable impact upon the privacy of other individuals;
  • The information relates to existing or anticipated legal proceedings between Crystal Clear Data and you, and the information would not be accessible by the process of discovery in proceedings;
  • Providing access would reveal information about a commercially sensitive decision making process;
  • Providing access would be unlawful;
  • Denying access is required or authorised by or under law;
  • Providing access would be likely to prejudice an investigation of possible unlawful activity; or
  • Providing access would be likely to prejudice the activities of enforcement bodies.


  • Correction of Personal Information


If you believe Crystal Clear Data holds inaccurate or outdated information about you, you should notify Crystal Clear Data immediately by contacting us via contact details provided below. Crystal Clear Data will take reasonable steps to correct the information so that is accurate, complete and up to date.


  • Complaints


If you believe Crystal Clear Data has breached the APPs, you may make a complaint in writing to Crystal Clear Data at the contact details provided below.


Crystal Clear Data will endeavour to acknowledge such complaints within fourteen (14) days of its receipt and will thereafter propose a deadline for a response.

Crystal Clear Data’s main objective in responding to privacy complaints is to conciliate an outcome which is acceptable to the complainant and which addresses any broader or systemic privacy issues which may arise.


If you do not agree with Crystal Clear Data’s response, an internal review process is available or a complainant may refer the matter for independent mediation by the Office of the Information Commissioner.


  1. Further Information


The Australian Privacy Principles Guidelines are located on the following website:


  1. Related Procedures


Information and notification will be provided in the event that the law changes and those changes affect Crystal Clear Data’s use of Personal and/or Sensitive Information.


  1. Definitions


Personal Information is defined in the Privacy Act to means information or an opinion, whether forming part of a database or not, whether true or not and whether recorded in a material form or not, about an identified individual, or an individual who is reasonably identifiable:


  1. Whether the information or opinion is true or not; and
  2. Whether the information or opinion is recorded in a material form or not.


Location Information allows us to infer that you are either interested in the place or that you might be at the place. For example, if your device connects to, or appears to be within range, of a particular shopfront, we infer that you may like to see information about that shop. We use that information to provide you with information about that shop, or similar shops, to you.


Sensitive Information is defined in the Privacy Act to mean information or an opinion about an individual’s:


  1. Racial or ethnic origin;
  2. Political opinions;
  3. Membership of a political association;
  4. Religious beliefs of affiliations;
  5. Philosophical beliefs;
  6. Membership of a professional or trade association;
  7. Membership of a trade union;
  8. Sexual orientation or practices;
  9. Criminal record – that is also personal information;
  10. Health information about an individual;
  11. Genetic information about an individual that is not otherwise health information;
  12. Biometric information that is to be used for the purpose of automated biometric verification or biometric identification;
  13. Biometric templates; and/or
  14. Psychometric information.


  1. Contact Details

Crystal Clear Data
Phone :1300 858 253

U2, 7-9 Tradelink Road