Introduction
Workstem Australia Pty Limited (ABN 64 644 409 398) (‘we’, ‘us’, ‘our’) respects your privacy and is committed to protecting your personal information in accordance with the Privacy Act 1988(Cth) (the Privacy Act) and the Australian Privacy Principles (APPs).
This Privacy Policy describes how we collect, hold, use, and disclose your personal information in connection with our human resources and payroll platform and services (the Service).
We provide the Service to businesses (Clients). Your employer (our Client) determines how your personal information is managed within the Service. We process such information on behalf of and under the instructions of our Client, who is responsible for complying with applicable privacy obligations. This policy also explains our independent privacy practices as a custodian of that information.
Our information security practices are governed by a comprehensive Information Security Management System designed in accordance with the ISO/IEC 27001:2022 standard.
The Personal Information We Collect and Hold
We collect personal information necessary to provide the Service to your employer, for the primary purpose of facilitating your employment relationship. Where we collect sensitive information (as defined in the Privacy Act), we will do so only with your consent or as otherwise permitted by law.
The types of personal information we may collect include:
- Identity and Contact Details: Name, date of birth, address, email, telephone number, visa and work right details.
- Employment Details: Job title, employment history, salary, superannuation details, leave records, performance information.
- Financial Information: Bank account details for payroll processing.
- Government Identifiers:Tax File Number (TFN), supplied solely for the purpose of reporting to the Australian Taxation Office (ATO).
- Technical and Usage Data: IP address, device information, browser type, and log data related to your use of our Service.
- Information from Third Parties: We may receive information about you from your employer or integrated third-party services with necessary authorisation.
How We Collect Personal Information
We collect information directly from you, from your employer, and automatically via cookies and similar technologies when you use our website or apps. We will collect personal information from you only where it is reasonable and practicable to do so.
Information about Children
Workstem is a workforce management and payroll platform designed for business use and is not directed at children. We do not knowingly collect personal information from individuals under the age of 15, except where such information is provided by a User (employee or their employer) for the sole purpose of listing a child as a dependent or beneficiary for legitimate employment-related benefits, such as superannuation. In the event we learn we have inadvertently collected personal information from a child under 15 outside of this specific context, we will take prompt steps to delete that information from our records. If you believe we might have such information, please contact us as set out in Section 12.
How We Use and Disclose Your Personal Information
We use and disclose your personal information for the purposes for which it was collected, related secondary purposes you would reasonably expect, and as otherwise permitted by law. This includes:
- To provide, operate, and improve the Service for you and your employer.
- To process payroll, report to the ATO, and comply with superannuation obligations.
- For identity verification and security purposes.
- To communicate with you regarding the Service.
- To comply with Australian laws or legal processes.
- To disclose to a third party as part of a sale or change in control of our business, under terms of confidentiality.
Cross-Border Disclosure
To provide, support, and improve our Service, we may disclose personal information to trusted service providers located outside Australia. Where such disclosures occur, we take reasonable steps required by the Privacy Act to ensure the information is handled in a manner consistent with Australian privacy law, including through contractual agreements.
Security of Your Personal Information
We take reasonable steps to protect your personal information from misuse, interference, loss, and unauthorised access, modification, or disclosure. These steps include electronic security systems, access controls, and staff training as part of our ISO 27001:2022 framework. While we strive to protect information, we cannot guarantee the security of information transmitted over the internet.
Retention of Personal Information
We retain personal information for as long as necessary to provide the Service, fulfil our legal obligations (e.g., under tax law), and for legitimate business purposes. We securely destroy or de-identify information that is no longer needed.
Access and Correction
You have the right to access and correct the personal information we hold about you. Please contact us using the details below to make a request. As we often act on your employer’s instructions, we may need to refer your request to them. We will respond within a reasonable period.
Direct Marketing
We may use your contact details to send you direct marketing about our products and services. You can opt-out at any time by using the unsubscribe link in any email or by contacting us.
Complaints
If you have a complaint about how we have handled your personal information, please contact our Privacy Officer using the details below. We will investigate and respond within a reasonable period.
Contact Us
For any questions about this Privacy Policy, or to exercise your privacy rights, please contact:
Privacy Officer
Workstem Australia Pty Limited
16/F, 1 Denison Street, North Sydney, NSW 2060, Australia
Email: info@workstem.com
Changes to this Policy
We may update this Privacy Policy from time to time. The updated version will be posted on our website with a new version number and effective date.