The Australian Brain Cancer Foundation Ltd (ABN: 18 669 852 902), (ABCF, we, our or us) is an Australian philanthropic organisation involved in funding research, advocacy and advancement of brain cancer outcomes.

We are committed to protecting your privacy and understand the importance of protecting your Personal Information. This Policy outlines the types of Personal Information that we usually collect, how we collect it, the purposes for which we collect it, to whom we disclose it, how we hold it and keep it secure, and how individuals can seek to access and correct their Personal Information or make a complaint.

This Privacy Policy describes how we handle and protect Personal Information. We will handle your Personal Information in accordance with this Policy and legislation including the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs) contained in the Privacy Act.

This Policy does not apply to the Personal Information of our employees.

We may change this Privacy Policy from time to time, by publishing changes on our website.

3.1. Types of Personal Information we collect

The types of Personal Information we collect about you depends on how you interact with us and the purpose of that interaction. They may include:

• name, address, email address and phone number,
• date of birth,
• payment information,
• research and activity interests, and
• donation preferences and history.

• name, address, email address, phone number, and
• position and place of employment

• name, address, email address and phone number, and
• financial information and bank details.

(d) People applying for jobs or placements, including volunteers

• name, address, email address and phone number,
• date of birth,
• research interests,
• References, and
• Working with Vulnerable People checks.

3.2. Dealing with us anonymously or using a pseudonym

Where requested by you and if it is practicable and lawful to do so, you may interact with us anonymously or using a pseudonym. For example, if you contact us with a general question, we will not record your name unless we need it to adequately handle your question.

However, on some occasions, if you do not provide the personal information we request, we may not be able to work with you on an ongoing basis, issue tax deductible receipts or you may be unable to participate in or have access to our research programs, events, and activities.

3.3. Ways we collect your personal information

We may collect your personal information in different ways, including:

• from you directly when you interact with us, for example from our discussions with you, your participation in our research studies, when you complete a form, when you make a donation to us, when you apply for a job or to study with us, when you provide us with a product or service, when you register to attend one of our events,
• from organisations with whom we conduct research (if you are participating in that research),
• from other parties with your consent or where it is otherwise lawful for us to do so,
• publicly available sources,
• from a third party if they participate in our research and list you as an emergency contact or family member, and
• from video and camera surveillance in our premises and car parks (it will not always be possible to reasonably identify you in the footage).

When you visit our website, we may also use ‘cookies’ or other similar tracking technologies that help us track your website usage and remember your preferences. Cookies are small files that store information on your computer, mobile phone or other device. They enable the entity that put the cookie on your device to recognise you across different websites, services, devices and/or browsing sessions. You can disable cookies through your internet browser, but our website may not work as intended for you if you do so.

Whilst we do not use browsing information to identify you personally, we may record certain information about your use of our website, such as which pages you visit, the time and date of your visit, search engine referrals and the internet protocol address assigned to your computer.

Our web pages may contain electronic images, known as web beacons. These electronic images enable us to count users who have visited certain pages on our website. Web beacons are not used by us to access your Personal Information, they are simply a tool we use to analyse which web pages are viewed, in an aggregate number.

3.4. Purposes for which we collect, use and disclose Personal Information

We collect, use and disclose your Personal Information for the following purposes:

• to undertake research activities and to contact you regarding participation in future research activities,
• to manage and conduct our business, research, studies, educational activities, and perform any of our other functions and activities,
• to obtain and administer funding for research,
• to assess potential participants for involvement in research activities,
• to offer or promote our research, studies and fundraising activities,
• to plan, manage, review and audit our activities and processes,
• to administer our relationship with third parties, such as collaborators, contractors, agents, funding bodies and contracted fundraisers,
• to help us manage, develop and enhance our activities,
• to consider your suitability for employment, volunteering, internships or study with us,
• for management, safety and security (video and camera surveillance footage is used for this purpose),
• to comply with our legal obligations, resolve any disputes and enforce our agreements and rights with third parties, and
• to administer our Policy for the distribution of net commercial income.

3.5. Disclosing your Personal Information

While conducting our activities, we may disclose your Personal Information to the following:

• our collaborators for the purpose of undertaking research activities,
• organisations or people that fund research to facilitate the ongoing funding of our Institute and research activities,
• our contracted fundraisers who assist us with fundraising,
• organisations we contract to provide services on our behalf such as analytics, software and telecommunication suppliers, who may access your Personal Information to provide their services to us,
• anyone to whom part or all of our assets or businesses are transferred or sold,
• our professional advisers, including lawyers, accountants and auditors,
• government agencies, regulatory bodies and law enforcement agencies, or other similar entities, and
• If you donate, we may publish your name in our annual report or other The Australian Brain Cancer Foundation publications, in accordance with your preferences as notified to us. While we seek to publicly recognise the generous contributions of our donors and supporters, individuals wishing to remain anonymous in our publications or at public forums should advise us of this in writing.

3.6. Direct marketing

We may, with your consent where required, use your Personal Information to:

• identify a fundraising initiative, education or research activity, or one of our other products or services that we believe may be of interest to you, and
• contact you from time to time, whether by post, email or phone, to tell you about an event, initiative, activity, product or service or provide updates via the Australian Brain Cancer Foundation newsletter.

You can withdraw your consent to receiving direct marketing communications from us at any time by contacting us using the contact details at the end of this Policy or using the unsubscribe facility in the communication.

3.7. Security and storage

We store your Personal Information in hard copy, electronically or in our software or systems, including cloud or other types of network or electronic storage. We take all reasonable steps (including organisational and technological measures) to protect your Personal Information from misuse, interference and loss, as well as unauthorised access, modification or disclosure.

Where we store Personal Information offshore, we take reasonable steps to ensure the recipient handles the information in accordance with this Privacy Policy, the APPs and the health information principles.

If we no longer need to hold your Personal Information for any reason and we are no longer required by law to keep it, we will take reasonable steps to de-identify or destroy that information. These steps may vary depending on the nature of the information, the way it was collected and how it was stored.

3.8. Access to and correction of your information

We take reasonable steps to ensure the Personal Information we hold is up to date, accurate and complete.

You may request access to, or correction of, the Personal Information we hold about you at any time by contacting our Privacy Officer using the contact details listed at the end of this Policy. We may need to verify your identity before responding to your request. Subject to any applicable exceptions or requirements, we will respond to your request within a reasonable time and usually within 30 days. If we decide to refuse your request, we will generally tell you why in writing (unless this would be unreasonable) and how to complain.

3.9. Complaints

You can make a complaint in writing to our Privacy Officer using the details set out at the end of this Policy. We will respond to you within a reasonable period to acknowledge your complaint and inform you of the next steps we will take in dealing with your complaint.

If you are not satisfied with our response, you may complain to the Office of the Australian Information Commissioner (OAIC) via the OAIC website, www.oaic.gov.au.

3.10. Contact us

If you have a question or comment regarding this Policy or wish to make a complaint or exercise your privacy rights, please contact our Privacy Officer on the following details:

Privacy Officer:

Email: contact.abcf@gmail.com