Privacy Policy

The nature of our business means that, from time to time, we’ll require some personal details from our customers and website users.

The data we collect could just be a name and an email address, but depending on your level of engagement with the International Diagnostic and Admissions Test Pty Ltd (hereafter IDAT), it could be much more than that.

The personal information you’ve shared with us, along with data on how you use our websites – what you search for and what preferences you select, for example – help us to better understand our customers as a group and as individuals. This in turn helps us to provide a range of products and services that meet your needs. 

When you share your personal information with any company, you have a right to expect that information to be treated with total confidentiality.

Your privacy is extremely important to us. We’re committed to protecting any personal information you’ve given us, and we comply with all relevant data protection laws.

This means that:
·We take full responsibility for the information we hold about you;
·We will protect your privacy at all times;
·We will never sell your personal information.
 
Whether you’ve supplied your personal details online, by phone or text, by email or in a letter, we will never use them without a lawful reason to do so. We’ll use them for the purposes for which they were initially requested and as fully explained in this Privacy Notice and Cookie Policy.
 
These explain how your personal data is being managed and safeguarded by us, including:

·What information we collect about you;
·How we collect and use this information;
·How we safeguard the information you’ve provided;
·Your rights in relation to the information we hold about you;
·How to report abuse.

At IDAT, we know that you care how your personal information is used and we appreciate that you trust us to do that carefully and sensibly.

This Privacy Notice is designed to help you understand how we use your personal information. We want you to make informed decisions when using our websites and any features on them, including any registration and e-commerce services.

This Privacy Notice applies to all the pages on our sites linking to this Privacy Notice and any features of them and any e-commerce, purchasing or other areas which require registration on our sites. However, it won’t apply to any third-party sites which are linked to our sites. We recommend that you read the privacy notice of any such sites that you visit as we are not responsible for them.

When we refer to our website or sites, we mean any of our websites or applications from which you have accessed this Privacy Notice.

If you are under 18 (as most IDAT candidates are), please be sure to read this Privacy Notice with your parent or guardian and ask them questions about anything you don’t understand.
 
Personal information that we collect may include your name, contact details (phone numbers, email address and addresses), your date of birth, job, course information, your personal interests, credit card or billing information, shopping selections and data about the pages you visit and your other activity on our site, as well as any other personal information relating to you that you supply to us.

Some of our sites may also collect other information that you supply to us, such as information relating to your education, skills or job experience, where relevant in the context of the site or the services provided through the site. Except where stated otherwise on the site at the time such personal information is submitted, it is only processed for the purposes for which you have submitted it to us.

We provide services to support you in preparing to take the IDAT test including support tools, training tests, seminars and IDAT Training seminars.
Collection of your Personal Information allows us to:

·Provide you with test training and preparation services you request;
·Develop new and improved test training and preparation tools;
·Provide you with your test training results and give you general or personalised feedback;
·With your consent, inform you of and provide you with information on the services we provide (including events and opportunities to participate in projects/programs);
·Manage our internal business operations; 
·Respond to your questions.

Other ways you may deal with IDAT include:
·Registering your interest in being engaged as consultants or employees;
·Submitting a research proposal;
·Registering with a service offered by IDAT; 
·Being the representative of a Recognising Organisation.

We will provide specific notice at the point your information is collected. Any unsolicited personal information will be securely destroyed.

When the Personal Information that we collect is no longer required, we will destroy, delete it in a secure manner, or ensure that the information is de-identified in accordance with our information destruction and de-identification policy, unless we are required by law to retain a copy of the Personal Information or the information is contained in a Commonwealth record.

If we collect your information for IDAT testing or test preparation purposes, we will retain it for up to 3 years after taking the IDAT test or participating in the service, or after your last activity with us.

Facial Scan recognition data is only retained as a binary large object file for 90 days after your test date.

We may also retain certain records for other legitimate reasons (including after your relationship with the IDAT Owner(s) has ended), for example to resolve any potential disputes, to comply with other reporting and retention obligations, or for the prevention of fraud.

1. Personal information you choose to disclose. You may, for example, provide us with your information when you post something on our site, when you register for any features on our site that require registration, when you contact us (online or offline) or when you order goods or services from us.

2. Information collected by us when you interact with our site, or when you open our email communications. We use cookies (a small piece of computer code that we store for a period of time on your computer or mobile device) and other similar technologies to collect this information. To find out more, please visit our Cookie Policy page.

We will inform you prior to collecting your personal information if it is requested on a voluntary basis and the consequences of not providing voluntary personal information.

In a separate automatic operation, the web server will collect your IP address and browser type and details of the website, application or email communication you came from before entering our site. This information is used to:

·Work out how many times our site has been visited;
·Record which parts of our site have been visited so we can improve the content and layout of the site;
·Understand the effectiveness of our email communications.

We may from time to time supply this data to third parties in an anonymized form for uses in connection with our site.
 
We use your personal information for a variety of business purposes which are in our legitimate interests (“Business Purposes”), and/or in order to enter into or perform a contract with you (“Contractual”), and/or with your consent (“Consent”), and/or compliance with our legal obligations (“Legal Reasons”). For example, we may use your personal information:

·To provide you with the relevant services through our applicable site, for Contractual Reasons;
·To process your online purchases, for Contractual Reasons;
·To inform you about and provide more information on products and services offered by us, for our Business Purposes or with your Consent;
·To invite you to participate in surveys, discussions and prize draws and ask for your views on our services via online surveys and discussion forums, for our Business Purposes and/or with your Consent;
·To improve the products and services offered to you for our Business Purposes;
·For marketing for our Business Purposes and/or with your Consent;
·For statistical or analytical purposes for our Business Purposes;
·To detect, prevent or investigate security breaches or fraud for our Business Purposes and/or Legal Reasons;
·To otherwise to better meet the needs and preferences of our customers for our Business Purposes.

We will not allow unrelated third parties to use your personal information for marketing without your consent. Where we rely on your consent, you have the right to withdraw it at any time.  When you apply to schools and indicate which school you are applying to, then testing information will be shared with schools you designate.  Further to this,  when a student submits an application to any school which as a policy that you cannot be tested on the IDAT privately or on your own,  you waive privacy rights to your test details and registration information that it may be shared with that school. Please check with the school you are applying to and the IDAT handbook issued by that school for more details.

We also use personal information to identify types of user, audit how our sites are used, and to help with the strategic development of our sites. When doing so, we remove any direct identifiers.

Participation in surveys and discussion forums is entirely voluntary. You may unsubscribe from being contacted for these purposes at any time. Survey information will be used for market research with the aim of improving our services.

We will show your username on any content you submit or post on our sites (including discussions, bulletin boards and forums).
 
We will keep your personal information only for as long as necessary to fulfill the purposes for which we are processing your personal information unless the law permits or requires longer. For example, we might need to keep your personal data for quality assurance of the service we have provided, or we might need to keep it to defend future legal claims.
 
We will not send you marketing emails if you have opted out of receiving them. Any marketing emails we send you will include an unsubscribe link at the end of the email.

Some IDAT sites also provide contact details you may use if you want to contact us by email, post or telephone in order to unsubscribe. In addition, some IDAT sites have a “My Account” page where you can choose whether or not to receive marketing communications from us.
 
We seek to protect the safety of all your personal information by implementing appropriate technical and organizational measures. For example, provided your browser accepts HTTPS (Hyper Text Transfer Protocol) Secure encryption, we seek to protect your payment information against unauthorized access through a secure server. Where we use third parties to process personal information, we require them to ensure the safety of your information.
 
Any personal information that you voluntarily post on a public area of our site, such as a bulletin board or discussion forum, or an interactive area requiring registration and/or subscription, may be collected and used by others. Please be careful what personal information you disclose in this way. You understand that we cannot control the actions of other users.
 
We will never sell your personal information. We may disclose and share your personal information:

·Any entity which acquires any part of our business;
·Our service providers (including, for example, credit reference agencies and payment processors, distributors/agents of our products, suppliers who develop or host our sites);
·Third-party search engines that may index user profile pages and usernames as part of the URL of the user profile page by default if required or permitted by law;
·Relevant third parties (such as your employer, your school, your internet service provider, law enforcement agencies) if we reasonably believe you may be in breach of the law (e.g. if you have posted defamatory content on our sites) or if required to do so in accordance with applicable law;
·Other third parties with your consent.
 
We may transfer your personal information to other countries around the world, including countries outside of Australia, which may not have the same data protection laws as those of the country where you access our sites. Where we transfer your personal information, we will take appropriate steps to ensure your personal information is afforded the same level of protection as described in this Privacy Notice.
 
Any improper collection or misuse of personal information is in violation of this Privacy Notice and of our Legal Notice or terms of use. Please report it by emailing info@idat.org Aten:  Privacy Policy

You agree not to misuse any personal information available on our sites or to gather it or use robots or other automated scripts, codes or functionalities to do so.
We may immediately suspend or terminate your access to our site without notice if we become aware that you are in breach of applicable terms and conditions of use or of this Privacy Notice.

We may update this Privacy Notice from time to time. We will always include the date of a new version so that you know when there has been a change.

If you have any questions about our Privacy Notice, please do not hesitate to contact us at:
info@idat.org
Atten:  Privacy Policy

This Privacy Notice is provided on behalf of the International Diagnostic and Admissions Tests Pty Ltd.  This means all companies owned or controlled by IDAT Pty Ltd L35 One International Towers. Level 1,338 Pitt Street,Sydney NSW 2000 Australia.

Phone: +61 2 8316 6633

IDAT is aware

• Children need particular protection when collecting and processing their personal data because they may be less aware of the risks involved.
• IDAT processes children’s personal data with emphasis on protecting them from the outset, and have design our systems and processes with this in mind.
• Compliance with the data protection principles and in particular fairness is central to all IDAT’s processing of children’s personal data.
• IDAT has a lawful basis for processing a child’s personal data. Consent is required by the parent and child. IDAT realized that n the UK only children aged 13 or over are able provide their own consent. However IDAT seeks parental consent and child consent.
• IDAT recognizes children merit specific protection when you use their personal data for marketing purposes or creating personality or user profiles.
• IDAT endeavors to write clear privacy notices for children so that they are able to understand what will happen to their personal data, and what rights they have.
• IDAT recognizes that children have the same rights as adults over their personal data. These include the rights to access their personal data; request rectification; object to processing and have their personal data erased.
• IDAT recognizes a parent or child’s individual right to erasure is particularly relevant if they gave their consent to processing when they were a child.
• IDAT uses Data Protection Impact Assessments to assess and mitigate risks to children. IDAT also considers children’s, guardians and parents’ point of view when designing processes.
• IDAT regularly reviews available age verification and parental responsibility verification mechanisms to ensure we are using appropriate current technology to reduce risk in the processing of children’s personal data.
• IDAT does not use student’s test result pages for purposes of marketing without explicit consent from children, parents and involved schools. When used for marketing, it is only ever shared with admissions and school professionals and not with the public. Student’s private information is always blocked or redacted before sharing.
• IDAT complies with the direct marketing requirements of the Privacy and Electronic Communications Regulations (PECR).
• IDAT follow the approach in the Information Commissioner’s Office’s Data Sharing Code of Practice.
• IDAT explains to children why the test requires the personal data we have asked for, and what we will do with it, in a way which they can understand.
• As a matter of good practice, IDAT explains the risks inherent in the processing, and how we intend to safeguard against them, in a child friendly way, so that children (and their parents) understand the implications of sharing their personal data.

We have procedures in place to deal with your inquiries or complaints.
If you have any questions about our policy or any complaint regarding the treatment of your privacy by us, please contact info@idat.org Atten:  Privacy Policy
If you fell we have intruded on your privacy or misused your data, you are able to complain.

In Australia

Office of the Australian Information Commissioner’s (OAIC) website at www.oaic.gov.au
The contact details for the OAIC are:

Office address: Level 3, 175 Pitt Street, Sydney 2000

Postal address (Sydney): GPO Box 5218 Sydney NSW 2001

Postal address (Canberra): GPO Box 2999 Canberra ACT 2601

Phone: 1300 363 992

Fax: + 61 2 9284 9666

Email:enquiries@oaic.gov.au

In the UK

Information Commissioners Office

http://ico.org.uk/make-a-complaint/