We value your privacy
Protecting your privacy and keeping your personalinformation confidential is very important to us. We are bound by the PrivacyAct 1988 (Cth), including the Australian Privacy Principles (APPs) set out inthe Act, and the Privacy and Other Legislation Amendment Act 2024, when wehandle your personal information.
In this Policy, we use the terms "we","us", "our" or "Jonas Leisure" to refer to Jonas Leisure Pty Ltd and its related companies.
This Jonas Leisure Pty Ltd Privacy Policy outlines how we collect, use, hold, and protect your personal information if you are a client, a visitor to one of our websites, or a member of the public in Australia.
If you work for us, you can contact our human resources team for more information about how your privacy is handled internally. If you are applying for a job online with us, you can view our Employment Relations Privacy Statement. If you are based in New Zealand, please see our Privacy Policy for New Zealand.
Personal information means information or an opinion that identifies you, or could reasonably identify you as an individual, whether the information or opinion is true or not, and whether recorded in a material form or not.
Sensitive information is a subset of personal informationthat includes health information, racial or ethnic origin, political opinions,religious beliefs, sexual orientation, biometric data, and criminal record information. We handle sensitive information with heightened care and only collect it where legally permitted or with your explicit consent.
We only collect personal information from you that is necessary to do business with you. The personal information that we collect about you includes:
1. your name, postal and street address, email address, telephone number
2. your profession or role, place of work, and ABN or ACN (for business transactions);
3. payment information, such as billing address
4. technical data such as IP address, device identifiers, browser type, and pages visited on our website;
5. information relating to any feedback, queries or complaints you have made to us; and
6. various personal preferences, including marketing preferences and opt-out status.
Some personal information is considered sensitive information under the Privacy Act. We will only collect sensitive information about you if you give the information to us yourself, or otherwise consent to us having it.
We collect most personal information directly from you,when you:
7. orderand/or register for a product or service;
8. activate and use a company file, product or service;
9. interact with our client support and sales teams;
10. use our website, community forum or social media sites;
11. complete a form for us, for example when you register for our competitions, training, events and newsletters;
12. interact with members of our authorised partner and certified consultant programs;
13. complete our surveys or product testimonials; or
14. apply for a job with us.
We may also collect personal information about you:
15. from our third-party joint initiative partners;
16. when you attend an industry event where you have given permission for your details to be shared with event sponsors or partners;
17. from publicly available sources such as social media websites; and
18. from third parties that provide us with marketing leads.
Where we collect personal information about you from a third party, we will take reasonable steps to ensure you are made aware of the collection in accordance with APP 5.
We use your personal information to:
19. verify your identity and manage your account;
20. provide you with the products and services you have asked for;
21. help us operate, protect, improve and develop our products and services and customise your experience;
22. assist your authorised professional adviser (e.g. your accountant or bookkeeper);
23. provide technical support to you and your authorised contacts;
24. keep you informed about our products and services and those of our relevant business and joint initiative partners, and tailor this information to your needs and interests;
25. enable secure access to our websites;
26. respond to any feedback, queries or complaints;
27. fulfil any legal and regulatory obligations; and
28. process a job application that you have submitted.
We may use automated systems to process personal information for purposes such as fraud detection, personalisation, or usage analytics. Where an automated decision may have a significant effect on you, we will ensure appropriate human oversight is available. You may request human review of any such decision by contacting our Privacy Officer. Email:privacy@jonasleisure.com
We may provide your personal information to our related companies and to third-party service providers that we outsource functions too partner with, where it is necessary to do so to provide our products andservices or perform associated business activities.
These third parties assist us by performing functions such as client contact, auditing, professional advisory, data processing,marketing and advertising, data analysis, business intelligence, website and technology services. Each third party we contract with is carefully selected and is only authorised to use your personal information in a secure way that is necessary for them to perform their service to us.
Some of our related companies and third parties that we share information with may be located outside of Australia, including in the United States, Canada, the United Kingdom, Singapore and New Zealand. Where we disclose personal information overseas, we take reasonable steps under APP 8 to ensure the recipient handles your information consistently with the Australian Privacy Principles.
We will also disclose your personal information if we are required by law or permitted by the Privacy Act to do so. We do not sell your personal information to third parties.
Aggregated data is general data about groups of people which does not personally identify you or anyone else. We use aggregated data to help us understand how you use our products and services, improve your customer experience, and create helpful insights for the business community. We sometimes share aggregated data with our business or industry partners.
We typically hold the personal information that we collect on electronic databases or in secure cloud environments. The security of your personal information is fundamental to the way that we do business. We take all reasonable steps to protect the personal information that you give us from unauthorised access, use or disclosure, in line with industry standards.
We do this by employing a range of security measures including:
29. encryptionof data in transit using TLS/SSL (look for https:// and the padlock icon in your browser);
30. access controls and role-based permissions limiting access to authorised personnel only;
31. regular security assessments and penetration testing;
32. secure data centres and cloud environments; and
33. employee privacy and security training.
If you are a registered user of any of our websites or services, you can control access to your account with a username and password of your choice. You should choose a strong password and keep it protected from others to prevent unauthorised access.
Whilst we take all reasonable measures to protect your personal information when it is in our hands, we are unable to guarantee the security of the internet as a whole. If you use email to send and receive personal information, please be aware that the information may be less secure in transit.
We retain personal information only for as long as is reasonably necessary to fulfil the purposes for which it was collected, or as required by law. General retention periods include:
34. client and account records: 7 years after the end of the business relationship (inline with Australian tax and corporations law);
35. marketing records: until you opt out, after which we retain only a suppression record to honour your preference;
36. job applicant records: up to 12 months after a recruitment process concludes,unless you are engaged; and
37. website and technical logs: up to 12 months.
When personal information is no longer required, we will take reasonable steps to destroy or de-identify it securely.
We are subject to the Notifiable Data Breaches (NDB) scheme under the Privacy Act. If we become aware of an eligible data breach that is likely to result in serious harm to any affected individuals, we will promptly assess and contain the breach, notify the Office of the Australian Information Commissioner (OAIC) as soon as practicable, and notify affected individuals where required under the scheme.
We maintain an internal data breach response plan andconduct regular reviews to minimise the risk and impact of any breach.
We may use your personal information to contact you aboutproduct upgrades and releases. We may also use your personal information to let you know about new services and special offers that may be relevant to your business. We will only send you marketing communications where we have a lawful basis to do so, including your consent or an existing business relationship as permitted by the Spam Act 2003 (Cth).
If you don’t want us to use your personal information for marketing purposes, you can let us know at any time through one of thefollowing channels:
38. to optout of email marketing, click the ‘Unsubscribe’ link at the bottom of any of our marketing communications; or
39. contact our Privacy Officer using the details in Section 10.
Please allow up to 5 business days for your opt-out request to be processed. Note that even after opting out of marketing, we may still send you service-related or transactional communications such as invoices, support responses, or important account notices.
Our websites contain many useful services and we are constantly making changes and improvements to provide you with a better website experience. Our websites may contain links to third-party websites that do not belong to us and are beyond our control. We are not responsible for and cannot guarantee the privacy of these third-party websites.
We use Internet Protocol (IP) addresses to analyse trends, administer our websites, track your navigation among Jonas Leisure webpages and gather broad information for aggregate use. Our web servers may also send a small data file known as a “cookie” to your internet browser or harddrive.
When you first visit our website, you will be presentedwith a cookie consent notice. You may accept all cookies, manage your preferences, or reject non-essential cookies. We use cookies to:
40. enable core website functionality and security;
41. remember your preferences and settings;
42. analyse how visitors use our website (analytics cookies); and
43. delive rrelevant advertising (marketing cookies).
You can also adjust your browser settings to block ordelete cookies at any time; however, some parts of our websites may not function fully if you do. Third-party services we may use include Google Analytics, Google Ads, Microsoft Advertising, Meta Pixel, LinkedIn Insight Tag, and Segment.
If you have provided us with personal information, you have a right to request to access or correct it. You can contact us with your request by using the contact details at the bottom of this Policy.
We will respond to you as soon as we are reasonably able to, and in most cases within 30 days. In some cases we might ask you to pay an administrative fee to cover costs associated with your request. To help us respond to you, please include as much detail as possible about the information that you want to access or correct.
We will provide you with a copy of or details of your personal information wherever possible. In some circumstances we might not beable to give you access to the personal information that you have requested, or we may refuse to correct your personal information. In either of these situations, we will let you know the reasons for our decision in writing.
Under the Privacy and Other Legislation Amendment Act 2024 you also have the right to request de-identification or deletion of your personal information where we no longer require it for the purpose for which it was collected and are not required by law to retain it. We will consider your request and advise you of the outcome.
If you have a complaint about how we have handled your personal information, you can make a complaint by contacting us using the details at the bottom of this Policy.
Once we have received your complaint, we will investigateand respond to you as quickly as possible. We will try to resolve yourcomplaint within 30 days of hearing from you. If your complaint takes longer to resolve, we will keep you informed of our progress.
If you are not satisfied with our handling or resolutionof your complaint, you can lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au or by calling 1300 363 992.
Privacy Officer
Jonas Leisure Pty Ltd
Email: privacy@jonasleisure.com
Website: www.jonasleisure.com.au
We may make changes to this Policy from time to time to reflect changes in our business practices, legal obligations, or the services we offer. Please check our website regularly for any updates to this Policy. You can also get a copy of the most current version of this Policy by emailing or writing to the Privacy Officer using the contact details set out below.
For material changes, we will take reasonable steps tonotify you directly, for example by email or a prominent notice on our website. By continuing to use our website and otherwise deal with us, you accept this Policy as it applies from time to time.