1.1 TW&CM Pty Ltd ABN 38 136 833 620 (‘TerryWhite Chemmart’, ‘we’, ‘us’ and ‘our’), recognises that your privacy is very important to you and that you have a right to control your personal information. We know that providing personal information is an act of trust and we take that seriously. Unless you give us explicit consent to act otherwise, the following policy will govern how TerryWhite Chemmart handles your personal information and safeguard your privacy.
1.2 We are committed to responsible privacy practices and to complying with the Privacy Act 1988 (Cth) (Privacy Act), including the Australian Privacy Principles (Privacy Principles) and Notifiable Data Breaches scheme contained in the Privacy Act, and where relevant, applicable state and territory health records legislation.
1.4 Where applicable, TWCM will handle personal information relying on the related bodies corporate exemption and the employee records exemption in the Privacy Act and any other applicable exemptions in other legislation.
2. WHAT IS PERSONAL INFORMATION?
3. HOW DO WE COLLECT YOUR PERSONAL INFORMATION?
3.1 In order to provide products and services to you and to best service your needs, we may collect personal information about you:
(a) through our websites when you deal with us online (including when you register for an account with us, when you place an order through our website, and through our booking systems and social media pages);
(b) through our Rewards program (REWARDS) when you apply to be a member or make purchases from our Pharmacies;
(c) through the TerryWhite Chemmart Health App (Health App) when you install, register for and use the app, including to store scripts and fill scripts from our Pharmacies;
(d) through your subscription to TerryWhite Chemmart Health Benefits Package (HBP) when you subscribe and redeem benefits under that package;
(e) through our Pharmacies when you purchase products and services or fill scripts for medicines;
(f) in the course of conducting customer satisfaction and market research surveys;
(g) from our partners and service providers that we may use to provide, administer and operate our website, REWARDS, the Health App, and the HBP; and
(h) from our related companies.
3.2 We will not collect or monitor any personal information about you without your consent unless we believe it is necessary for the product and services you require or to best service your needs.
3.3 Personal information which we may collect and hold include:
(a) your name, date of birth, address including email address, and phone number (including mobile and landline phone numbers);
(b) in respect of the Health App, your Medicare or DVA number, and (if you register remotely for the Health App) a photograph of yourself holding your Medicare or DVA card and photo identification, if you ask to link your Health App account to a dispense account in one of our Pharmacies, and any other personal information on your Medicare or DVA card;
(c) your transactional and payment information if ordering online through our website or the Health App;
(d) details of all products and services purchased by you including medicines and dispensary items for the purpose of administering our website, REWARDS, the Health App, or the HBP;
(e) details of the products and services redeemed from your HBP, including health information to determine if the benefits under the package are suitable for you at the time of redeeming them; and
(f) information about your browser, your location, the country you are visiting from, your IP address, which pages you visit and what links you click on when you visit our website, REWARDS portal, the Health App, or social media pages.
4. FOR WHAT PURPOSE DO WE COLLECT, USE AND DISCLOSE YOUR PERSONAL INFORMATION
4.1 The purposes for which we use and disclose your personal information will depend on the circumstances in which we collect it. Whenever practical we endeavour to inform you why we are collecting your personal information, how we intend to use that information and to whom we intend to disclose it at the time we collect your personal information.
4.2 We collect and use personal information about you for the following purposes:
(a) to provide products and services to you through our website, through the Health App (including to link your Health App account to your dispense account at one of our Pharmacies or to create such an account at one of our Pharmacies), or as part of the HBP;
(b) to verify your identity;
(c) to provide a more personalised experience on our website and to improve our products and services and keep you up to date on such improvements;
(d) to administer and operate REWARDS;
(e) to market products and services to you based on your activity;
(f) to assist our Pharmacies or other health professionals to provide you with certain products and services (e.g. health services).
(g) to administer and manage services, including charging, billing and collecting fees;
(h) to analyse customer demographics, health, prescription, adherence, and purchasing trends so that we can tailor our products and services;
(i) to improve the quality of our website, REWARDS portal, the Health App, and social media presence;
(j) to respond to you if you have requested information (including via our websites or via an email or other correspondence you send to us) and to address any issues or complaints that you have regarding our relationship;
(k) to obtain your feedback (directly or through our service providers), to find out your level of satisfaction with our products and services and for other market research activities; and
(l) to contact you regarding the above, including via electronic messaging such as SMS and email, by mail, by phone, by fax or in any other lawful manner.
4.3 We may disclose your personal information to third parties in connection with the purposes described above. This may include sharing your personal information with:
(a) our related companies;
(b) our Pharmacies and other health professionals (such as your doctor, pharmacist or hospital), in connection with providing health-related products and services to you, to confirm your identity when linking your Health App account, or as otherwise required or authorised by law;
(c) specific Third Parties detailed below, to administer and operate our website, REWARDS, the Health App, or the HBP;
(d) other partners that may facilitate the registering of customer to REWARDS, the Health App or the HBP. We may provide to these partners your personal information (excluding your purchases or health information) for reporting and reconciliation purposes; and
(e) other service providers that may provide products and services to us including suppliers, marketing agencies, data analysis specialists, data processing organisations, billing and debt recovery providers, website and data hosting providers, REWARDS administrators and other IT suppliers.
4.4 We may disclose to, and utilise the services of Pharmacies, Intellipharm Pty Ltd, Go Bookings Pty Ltd, 1stGroup Limited, Oracle Corporation Australia Pty Limited, BigCommerce Pty Ltd, Web Active Corporation Pty Ltd, GuildLink Pty Ltd, Microsoft Azure and MedAdvisor International Pty Ltd (Third Parties) to do any of the following in relation to sensitive information collected from the administration and operation of our website, REWARDS, the Health App and the HBP:
(a) To facilitate the provision of products and services to you, including but not limited to fulfilling your orders for medicines, processing payments for your online orders, and to provide you with the functionality associated with the Health App or REWARDS;
(b) collect, store and provide to us or our Pharmacy, your personal information including sensitive information;
(c) analyse customer demographics, health, prescription, adherence, and purchasing trends; and
(d) provide targeted marketing of products and services based on your activity.
4.5 The information collected and stored by our Third Parties may be disclosed back to us and to our Pharmacies that you obtain products and services from.
4.6 We will take reasonable steps to ensure that our Pharmacies, Third Parties, our partners, and other service providers only use your personal information as reasonably required for the purpose we disclosed it to them and in a manner consistent with the Privacy Act and Privacy Principles and where commercially practical include suitable privacy and confidentiality clauses in our agreement with them.
4.7 We will not otherwise disclose your personal information to other companies without your consent.
4.8 If you post information to public parts of our websites or to our social media pages, you acknowledge that such information (including your personal information) may be available to be viewed by the public. You should use discretion in deciding what information you upload to such sites.
5. WHAT HAPPENS IF YOU DON’T PROVIDE PERSONAL INFORMATION?
6. DISCLOSURE OF INFORMATION OUTSIDE THE STATE/TERRITORY OF COLLECTION
6.1 Some of the third parties to whom we disclose personal information may be located outside the state or territory in which the information was collected or outside Australia. The state/territories and countries in which such third parties are located will depend on the circumstances. For example, we may disclose personal information to our related companies overseas and to our overseas service providers.
6.2 In the ordinary course of business, we commonly disclose personal information to third parties (for example, offshore data centres located in New Zealand and USA).
6.3 Except in some cases where we may rely on an exception under the Privacy Act or other law, we will take reasonable steps to ensure that such overseas recipients do not breach the Privacy Principles in relation to such information.
7. HOW DO WE PROTECT PERSONAL INFORMATION?
7.1 TWCM will take reasonable steps to keep any personal information we hold about you secure. Please notify us immediately if you become aware of any breach of security.
7.2 Our website, the REWARDS portal and the Health App are secure and controlled environments whilst you are logged into your account. This includes the use of SSL/https 128-bit encryption whenever sensitive information is transferred across the internet. It also includes minimum requirements for password strength.
8. ACCURACY OF THE PERSONAL INFORMATION WE HOLD
8.1 We try to maintain your personal information as accurately as reasonably possible. We rely on the accuracy of personal information as provided to us both directly (from you) and indirectly.
8.2 You can amend the personal information you have provided through:
(a) Website, by contacting the Helpdesk on 1800 653 662 or via terrywhitechemmart.com.au/contactus;
(b) REWARDS, by contacting the Helpdesk on 1800 653 662 or firstname.lastname@example.org; and
(c) Health App, by emailing email@example.com.
9. LINKS, COOKIES AND USE OF TWCM WEBSITES AND APPLICATIONS
9.1 When you visit our website without an account, we may record anonymous information which tells us about visitors to our website but not the identity of those visitors. For example, we may collect information about the date, time and duration of those visits and which pages of our website are being commonly accessed.
9.3 We use ‘cookies’ and similar technology on its websites and in other technology applications. The use of such technologies is an industry standard and helps us monitor the effectiveness of our advertising and how visitors use our websites/applications. We use such technologies to generate statistics, measure your activity, improve the usefulness of our websites/applications and to enhance the ‘customer’ experience.
9.5 When you visit our website, social media pages or other digital presences, we may track anonymous information which tells us about your online behaviour, but not your identity.
10. HOW CAN YOU ACCESS AND CORRECT PERSONAL INFORMATION WE HOLD ABOUT YOU?
11. QUERIES, COMMENTS AND COMPLAINTS ABOUT OUR HANDLING OF PERSONAL INFORMATION
11.2 When contacting us please provide as much detail as possible in relation to your question, comment or complaint.
11.3 TWCM will take any privacy complaint seriously and any complaint will be assessed by an appropriate person with the aim of resolving any issue in a timely and efficient manner. We request that you cooperate with us during this process and provide us with any relevant information that we may need.
11.4 If you are not satisfied with the outcome of our assessment of your complaint, you may wish to contact the Office of the Australian Information Commissioner (click here for information) or other relevant regulators.
12. HOW CAN YOU CONTACT US?
12.1 Please address all privacy complaints and requests to update or access information to:
Attention: Privacy Officer TW&CM Pty Ltd
Ground Floor, 50 Park Road,
Milton, QLD 4069
12.2 Any requests to access, update or correct your personal information should be made in writing.