Colour Code is a movement of Aboriginal, Torres Strait Islander and multicultural communities working together for racial justice.
Colour Code is powered by GetUp, which is an independent movement of more than a million people working to build a progressive Australia and bring participation back into our democracy.
As you take part in campaigns for a more fair, flourishing, and just Australia, we are committed to protecting your privacy. We take seriously your right to keep your Personal Information private, and our obligation to manage your Personal Information with care.
This policy sets out the ways we work hard to keep your Personal Information safe and private. By visiting our website, signing a petition, making a donation, applying to be a staff member or volunteer, or otherwise providing us with your Personal Information, you consent to your Personal Information (including your Sensitive Information) being collected, held, used and disclosed as set out in this policy.
Personal Information is defined in the Privacy Act 1988 (Cth) as information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether the information or opinion is true or not, and whether the information or opinion is recorded in a material form or not.
Sensitive Information is defined in the Privacy Act 1988 (Cth) as including information about a person’s racial or ethnic origin, political affiliation, religious affiliation, mental health, disability, trade union or other professional or trade association membership, sexual preferences and criminal record, and other health information.
The kinds of information that we collect will depend on the nature of your involvement with us:
When you first take action on a campaign, the Personal Information we collect generally includes email address, first name and last name, home and mobile phone numbers, and home address.
As you take subsequent actions on campaigns, the Personal Information we collect generally includes the actions you take, the donations you make (and other information you give to us when donating, like bank details or credit card details), information you give to us when completing surveys, like gender and date of birth, and information contained in feedback or complaints.
Some Personal Information which we may collect in the course of your engagement with us is Sensitive Information. For example we might collect information about your campaign priorities or political views. This is because we want to understand what you’re passionate about. Knowing your priorities, values and opinions helps us communicate with you better.
If you are, or apply to be, a staff member or volunteer, the Personal Information we collect about you generally includes employment details like job title, salary and work practices, information you give to us when applying for a job, like past employment details, referee’s comments, performance reviews, and performance complaints. The Sensitive Information we may collect includes health information and criminal record information.
Colour Code is one of Australia’s largest racial justice movements. GetUp is one of Australia’s largest and most effective progressive campaigning organisations. Our vision is a more fair, flourishing and just Australia, led by the values and hopes of everyday people. Our mission is to create a thriving democracy by giving everyday Australians the chance to make extraordinary impact – online, across the airwaves, and in the streets. We never collect, hold, use or disclose Personal Information other than in pursuit of this vision, mission, and our functions or activities.
We make sure that we only hold, use and disclose Personal Information for the purpose for which it was collected. We will not use or disclose Personal Information for a purpose other than that for which it was collected unless:
Collection, holding and use of Personal Information
We collect, hold and use Personal Information about you so that we can:
Disclosure of Personal Information
We never sell, licence or rent your Personal Information. However, there are some purposes for which your Personal Information will be disclosed, including:
If you don’t want your Personal Information disclosed in these ways, please let us know either at the time we collect your information or at any later time on (02) 9211 4400 or at email@example.com.
Disclosure of Personal Information to overseas recipients
Some of the trusted third parties providing services to us are in the United States and Singapore, so it is possible that your Personal Information will be disclosed overseas.
We take reasonable steps to ensure that any overseas recipient of your Personal Information complies with Australian Privacy Principles in the Privacy Act 1988 (Cth), or is subject to another law or scheme that is substantially similar to the Australian Privacy Principles. If neither of these situations apply, we will not disclose your Personal Information to an overseas recipient unless it is otherwise authorised to do so.
If you don’t want your Personal Information disclosed to overseas recipients, please let us know either at the time we collect your information or at any later time on (02) 9211 4400 or at firstname.lastname@example.org.
We collect Personal Information from a range of sources, including:
We make sure that our collection of Personal Information from these sources is legal and fair. If we receive information that we did not solicit, and the information is not information that we would otherwise have collected, we will destroy that information where it is lawful to do so.
We take the security of Personal Information very seriously and have implemented a range of physical and electronic security measures to protect your Personal Information from misuse, interference, loss, and unauthorised access, use, modification, or disclosure.
We hold Personal Information in our secure databases and in secure third-party cloud databases. These databases are best practice, protected and comply with industry security standards. We regularly conduct penetration testing on these databases to ensure that they are secure.
We have strict security protocols and thorough risk management processes in place. In relation to Personal Information specifically, we have strict data storage, access, handling and retention protocols. We regularly audit for compliance with these protocols, and review and update these protocols.
Our Staff and Volunteers
Only authorised, properly trained staff and volunteers have access to our databases. We continually monitor who is accessing these databases. Our staff and volunteers are bound by confidentiality obligations as a condition of their work or volunteering, and this extends to ensuring that Personal Information collected by us is kept confidential.
You have the right to request access to the records of Personal Information that we hold about you. You also have the right to ask us to alter your Personal Information if you think the information is inaccurate, out-of-date, incomplete, irrelevant or misleading.
To make such a request, please email us at email@example.com setting out what information you wish to access, your name and an email or mail address at which we can contact you.
We will ask you to provide identification so that we can ensure that you are the person to whom the Personal Information relates. In some cases, we will ask you to pay a reasonable fee to cover our costs in responding to your request. We will aim to respond to you within 28 days of receiving it.
In some cases, we will need to refuse your request, for example where granting your request would infringe someone else’s privacy or would be unlawful. If we’re not able to help you with your request, you’ll receive a written explanation providing reasons for that refusal and information about how to make a complaint.
If we refuse to correct your personal information, and you ask us to, we will take reasonable steps to associate a statement with your personal information that you consider the information to be inaccurate.
If you have any questions or concerns, please don’t hesitate to contact us via phone or email and set out the nature of your concern.
In order to effectively address your concern, we may ask you to provide further information. Once we have received all the information we need from you, please allow us 28 days to respond to your concern. If you are unsatisfied with our response, you may contact the Office of the Australian Information Commissioner at www.oaic.gov.au
Phone: (02) 9211 4400
A NOTE ON COOKIES, GOOGLE ANALYTICS AND GOOGLE ADS When you visit this website, a record of your visit is logged. Your browser supplies data like your IP address and/or domain name, your operating system, the date, time and length of your visit to our website, and the actions you took on the website.
This information is used to compile statistical information about the use of our website and to help us improve our website. If you do not want cookies to be used, you can adjust your browser settings to disable them. Learn how to do this here.
We also use Google Analytics to collect demographic data on website visitors. The kind of information we collect includes: city, gender, age, interests, device and browser. No personally identifiable information is collected via Google Analytics. This information is used to better understand website visitors and improve our website. You can opt out of Google Analytics at any time using this browser plug-in.
Phone: (02) 9211 4400