Cudmore Legal (referred to in this document as we, us or our) is committed to protecting the privacy of personal information obtained in fulfilling its duties to the court, its clients and employees. We are committed to ensuring the privacy of your information and to complying with the Australian Privacy Principles (“APP”), which are contained in the Privacy Act 1988 (“Privacy Act”).
- Collection of personal information (including sensitive information)
- Use of personal information
- Security of personal information
- Storage of personal Information outside of Australia
- Disclosure of personal information
- Web site, Marketing and Applications Privacy
- Access to personal Information
- Our Privacy team contacts
- Effect of Policy
This Policy applies to all of the directors, officers and employees of Cudmore Legal.
Please read this policy carefully and contact us if you have any questions. Our contact details are included below.
2. Personal Information
We collect and holds personal information from various sources in the ordinary course of fulfilling our duties to the court, our clients and employees. This includes collecting and holding personal information pertaining to:
- Clients and potential clients who contact us
- suppliers and consultants
- employees and applicants for employment
“Personal Information” is defined in the Privacy Act 1988 (Cth) as information or an opinion about an identified individual, or an individual who is reasonably identifiable:
- whether the information or opinion is true or not; and
- whether the information or opinion is recorded in a material form or not.
The main types of personal information we collect may include:
- Names and contact details including phone numbers, postal and/or residential addresses and email addresses;
- Information that can identify you, including date of birth or residence status; drivers licence number, passport details, marital status and photographs;
- any facts or opinions that are connected to an enquiry that we are conducting on behalf of a client or potential client to effectively provide legal services; and
- any other personal information that is provided through a website belonging to Cudmore Legal or as otherwise requested by us or provided by you.
In some cases, you might need to give us personal information about other people – such as when you have an authorised representative. In those situations, we’re relying on you to tell those people that you’re giving us their details, and to let them know about this Policy. In addition, if you provide us with third party personal information then you warrant to us that you have the third party’s consent to do this.
With your permission, sometimes we may also need to collect sensitive information. Sensitive information is a subset of personal information that is given a higher level of protection under the Australian Privacy Principles. Sensitive information includes personal information about an individual’s:
- health (including predictive genetic information)
- racial or ethnic origin
- political opinions
- membership of a political association, professional or trade association or trade union
- religious beliefs or affiliations
- philosophical beliefs
- sexual orientation or practices
- criminal record
- biometric information that is to be used for certain purposes
- biometric templates.
The personal information (including sensitive information) collected or held by Cudmore Legal will be referred to in this policy as “personal information”.
3. Method of collection of Personal Information
In most circumstances, we will collect personal information through completed questionnaires and forms that have been provided to us, interviews and telephone conversations.
We may also contact you to voluntarily respond to questionnaires, surveys or market research to seek your opinion and feedback.
Where you are a client receiving legal services from us, we often collect your personal information from external professional sources (i.e. health professionals, financial advisors, accountants, other legal parties and their legal advisors). With the exception of personal information obtained from opposing legal parties, this personal information will, in the usual course, be obtained under your express authority or within the scope of the instruction you have provided us and will be securely stored on your file.
Cudmore Legal may also collect personal information about you from other people or organisations, such as referral sources, service providers, agents, advisors, current or former employers or your family members.
We might also collect personal information when you visit our website or use our apps, including things like your location, IP address and your activity on our sites. You can find out more about the kind of personal information we store under the Website, Marketing and Applications Privacy section below.
Sometimes we collect personal information about you that’s publicly available – for example, from social media or public registers e.g. Australian Securities and Investments Commission (ASIC), Australian Business Register (ABR).
If we receive personal information from third parties, we will protect it as set out in this policy.
4. Use of Personal Information
Cudmore Legal will only use your personal information for the purpose for which you have provided it, or otherwise consistently with the APP and Privacy Act. We will not disclose your personal information to third parties, unless you consent or in other circumstances where such disclosure is required or permitted by law.
We collect, hold and use personal information that is reasonably necessary for the purposes of:
- contacting and communicating with you;
- assessing whether we are able to act for an individual or group of individuals (We will not consider acting for any individual who does not properly identify themselves as this could lead to a conflict of interest developing between our clients in the future);
- providing legal services and advice (In some instances, we may also need to collect Information at the initial stage of an enquiry if it is directly relevant to the advice being sought);
- assisting you to apply to a disbursement funder and/or litigation funder for a loan to cover the payment of disbursements incidental to the conduct of your matter;
- conducting the effective management of our business, such as invoicing and account management, internal record keeping and analysis;
- seeking consent in relation to publications of reviews and testimonials;
- for market research, business development and marketing, including direct marketing;
- sending promotional information about third parties that we think may be of interest to you;
- for recruitment purposes;
- for purposes related to the employment of our personnel and providing internal services to our employees; and
- other purposes related to our business.
If you do not provide us with the personal information we request, we may not be able to fulfil the applicable purpose of collection, such as to supply products or services to you.
If we collect, hold or use personal information in ways other than as stated in this policy, we will ensure we do so pursuant to the requirements of the Privacy Act.
The handling of employee records by a private sector employer is not generally subject to the Privacy Act and, therefore, this policy may not apply to the handling of information pertaining to employees of Cudmore Legal. For information about our practices relating to employee information, please contact us directly.
Cudmore Legal retains and safely stores personal information that is provided to us, including such information obtained at a pre-client stage, as this enables us to respond more efficiently and to inform such persons of our other legal services or developments that may be of interest to them at a later stage.
Personal information is stored on our computer systems and within paper based files as appropriate.
At the conclusion of legal matters, we are required to keep legal files for a minimum period of 7 years from the closure of a legal file unless we are instructed to the contrary. In some cases, we may be required to retain documents for a longer period of time (e.g. documents that inform the making of a Will).
We strive to provide the highest standard of service and keep our stakeholders informed. In addition, we hope to have an on-going professional relationship with our pre-client and existing client base. As a result, we may from time to time send out information related to the other legal services that we offer using your personal information. We do, however, respect the wishes of individuals who do not want to receive such material from us in the future and have implemented simple ‘opt-out’ procedures that can be activated within the promotional e-mails and other commercial electronic messages that we may send you from time to time.
5. Security of Personal Information
We endeavour to keep all personal information safe by taking all reasonable precautions to protect personal information from misuse, loss, unauthorised access, modification or disclosure.
It is essential that all personal information is kept confidential. We will not disclose personal information to third parties, other than as set out in this Policy or without your consent, unless it becomes necessary to lessen or prevent a serious and imminent threat to life, health or safety or unless we are otherwise compelled by law.
6. Storage of Personal Information Outside of Australia
We do not generally transfer personal information to overseas parties unless required by law or enforcement activity or unless working with international service providers. There may be times when we store personal information with vendors who have been contracted to provide customer relationship systems and technological solutions. For example, we utilise international cloud computing services for e-mail storage and to store personal information that we collect. Countries in which such data may be stored may include (but are not limited to) the United Kingdom, Japan, Netherlands and the United States. Because the security of personal information about our clients and pre-clients (i.e. individuals who have made an enquiry but did not instruct us to act on their behalf) is of a paramount concern to us, we seek confirmation that such service providers comply with the Australian Privacy Principles or are subject to a binding law or scheme that offers substantially similar protection. Although information is encrypted where possible and efforts are made to protect your personal information, when you agree to this Policy you acknowledge that we will not be responsible for the overseas third party.
Any such disclosure or transfer of information does not change any of our commitments to safeguard your privacy and the information remains subject to existing confidentiality obligations
7. Disclosure of Personal Information
We may disclose personal information:
- for the purpose of providing information, products, services or marketing to you;
- for the purpose of assisting you to obtain products or services from third parties in connection with the conduct of your matter, including disbursement funders and litigation funders;
- to credit reporting agencies and courts, tribunals and regulatory authorities where you fail to pay for goods or services provided by us to you; and
- to third parties, including agents or sub-contractors, who assist us in providing information, products, services, or direct mail or digital marketing to you. This may include parties located, or that store data, outside of Australia.
We may also be compelled to disclose personal information by law, for example, under court orders or statutory notices to produce documents under laws relating to social security, taxation, bankruptcy, anti-money laundering, counterterrorism and the management of incorporated entities. Where we disclose your personal information to third parties for these purposes, we will request that the third party follow this Policy in relation to their handling of your personal information.
If there is a change of control of our business or a sale or transfer of business assets, we reserve the right to transfer, to the extent permissible by law, our user databases together with any personal information and non-personal information contained in those databases. This information may be disclosed to a potential purchaser during the due diligence investigations and on a confidential basis. We would seek to only disclose information in good faith.
8. Access to Personal Information
Information may be accessed by personnel within Cudmore Legal. All personnel within Cudmore Legal are bound by confidentiality laws and standards that govern the legal profession within Australia and to comply with the Australian Privacy Principles.
In the course of providing legal services and conducting the effective management of our business, disclosure to third party professionals and service providers may occur (e.g. barristers, document reproduction service providers, disbursement funders and debt recovery agents). Third party service providers may also come into contact with personal information when we outsource certain functions, such as: bulk mailing, direct mail or digital marketing, client experience research, company audits and information technology support. We have contractual arrangements in place with all of our third party professionals and service providers to protect personal information from unauthorised use or disclosure.
If you wish to access your personal information, you should make a request in writing to the Privacy Officer.
9. Website, Marketing and Applications Privacy
This Policy also applies to any personal information we collect via our website, including www.cudmorelegal.com.au and applications including mobile applications, in addition to personal information you provide directly – such as where you make a request or complete an intake form.
We may also use web beacons on Cudmore Legal’s websites from time to time. Web beacons or clear .gifs are small pieces of code placed on a web page to monitor the visitors’ behaviour and collect data about the visitors viewing a web page. For example, web beacons can be used to count the users who visit a web page or to deliver a cookie to the browser of a visitor viewing that page.
We do not use this technology to access your personal information.
Because we want your user experience to be as informative and helpful as possible, Cudmore Legal’s website may contain links to other websites of interest. We do not have any control over those third party websites. We are not responsible for or liable for the protection and privacy of any information which you provide whilst visiting such third party websites, and such third party websites are not governed by this policy.
10. Correction to Personal Information
From time to time, we may take steps to verify information by collecting information from publicly available resources, for example, telephone directories or electoral rolls to improve the integrity of the information that we hold.
We provide a transparent system of allowing individuals to access their information and seek corrections to any inaccuracies. Requests for access and correction to information for pre-clients should be made by contacting our firm using the contact details at the end of this policy.
In certain circumstances, we are permitted to deny the request for access, or limit the access that we provide.
If you believe that information we hold about you is incorrect or out of date, or if you have concerns about how we are handling your personal information, please contact us and we will try to resolve those concerns.
If you wish to have your personal information deleted, please let us know and we will take reasonable steps to delete it (unless we need to keep it for legal or internal risk management reasons, or compliance with our professional obligations).
If we become aware of any concerns or problems concerning our privacy practices, we will take these issues seriously and work to address any concerns. If you have any further queries relating to this policy, or you have a problem or complaint, please contact our Privacy Officer.
If you are not satisfied with our handling of your problem or complaint you may make a complaint to the Australian Information Commissioner (www.oaic.gov.au).
This Policy may be amended, including with changes, additions and deletions, from time to time in our sole discretion and any such amendments will be notified to you by posting an updated version of the Policy on our website. If at any point we decide to use personal information in a manner materially different from that stated at the time it was collected we will notify relevant persons by email or via a prominent notice on our website, and where necessary, we will seek the prior consent of the relevant persons.
12. Our Privacy Team Contacts
For privacy related matters please contact our firm by email at [email protected] or by telephone on (07) 3317 8346 between 9:00am and 5:00pm AEST Monday to Friday.