Quest Systems ("the Company", "We", "Us", or "Our") is committed to protecting your privacy. This policy outlines our procedures regarding the collection, use, and disclosure of your information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
2. Types of Data Collected
Personal Data: Includes but is not limited to: Name, email address, phone number, and business location.
Technical Data: IP addresses, browser types, and usage patterns via cookies.
Financial Data: If you use our payment solutions, we process encrypted transaction data (compliant with PCI-DSS standards).
3. How We Use Your Data
We use your data to provide, maintain, and improve our services, specifically:
Service Delivery: To manage your account and fulfill contracts.
Communication: To provide updates, security alerts, and support via
Automated Decision-Making (ADM): > Note: In compliance with 2026 regulations, Quest Systems may use automated systems for credit risk assessment or fraud detection. You have the right to request a human review of any automated decision that significantly affects your rights.
4. Data Disclosure & Overseas Transfer
We do not sell your data. We may share information with:
Service Providers: For hosting, analytics, and payment processing.
Overseas Recipients: If data is stored outside Australia (e.g., cloud servers in the US or Singapore), we ensure the recipient provides a level of protection substantially similar to the APPs.
5. Your Rights & Data Control
Under Australian law, you have the right to:
Access & Correction: Request a copy of your data or ask for corrections.
Opt-Out: Unsubscribe from marketing at any time via the "unsubscribe" link in our emails.
Right to Deletion: Request the removal of your personal data where it is no longer required for legal or business purposes.
6. Security (APP 11)
We implement "technical and organisational" measures to protect your data, including Multi-Factor Authentication (MFA), end-to-end encryption, and regular staff privacy training. While no system is 100% secure, we follow rigorous protocols to prevent unauthorized access.
7. Serious Invasions of Privacy
Quest Systems acknowledges the 2025 statutory tort. We are committed to preventing any "serious invasion of privacy" through reckless or intentional misuse of information.
8. Contact Us
For any privacy inquiries or to exercise your data rights, please contact our Privacy Officer: Email:[email protected]
AI Transparency: If your website uses a chatbot or your software uses AI to recommend products, the 2026 laws require you to clearly state this in the policy. I have included a placeholder for Automated Decision-Making in Section 3.
The $3M Threshold: If Quest Systems has an annual turnover exceeding $3 million, you are legally bound by the Privacy Act. Even if you are under this threshold, "opting in" (as suggested in Section 1) builds significant trust with Tier 1 Australian corporate clients.
Data Retention: Ensure you have a process to "destroy or de-identify" data after 7 years (for financial records) to avoid "keeping it just in case," which is now a compliance risk.