Privacy Policy

Purpose and scope

The Refugee Advice & Casework Service (RACS) ABN 46 008 173 978 values your privacy.

In the course of our activities, the Refugee Advice & Casework Service (“RACS”, “we”, “us” and “our”) collects personal information in relation to our clients, staff, volunteers, Board members, supporters (including non-financial supporters), donors and others associated with RACS. RACS respects the privacy of these stakeholders and we are committed to complying with our obligations in connection with the collection, storage and use of personal information under relevant privacy legislation, namely:

  • The Privacy Act 1988 (Commonwealth) and, in particular the Australian Privacy Principles;

  • The Health Records and Information Privacy Act 2002 (NSW); and

  • The Legal Profession Uniform Law Australian Solicitors’ Conduct Rules 2015 (NSW); and

  • The Migration Agents Regulations 1998.

Privacy management is a continuous and evolving process and we will regularly update our policy for changes in our activities, legislation and technology. Our use of information is subject to the terms of the privacy policy in effect at the time the information was collected. RACS encourages individuals to check our website periodically to ensure that they are aware of our current privacy policy.

Why we collect and hold personal information

We collect personal information that is necessary to enable us to perform our functions and activities.

The types of personal information we collect will depend on your dealings with us.

Clients
The information we collect will be restricted to what is relevant and necessary for the proper discharge of our professional obligations and our clients’ welfare and support.

Volunteers and Board members
The information collected will be used for the purposes of administering an individual’s contribution to the work of RACS, for insurance purposes and in order to send updates about our work, events and appeals.

Donors, Supporters and others
The information collected will be used to process donations, issue tax receipts, manage event registrations, set up online fundraising pages, and send updates about our work, events and appeals.

This information helps us provide updates on our work, manage donor relationships, understand what motivates people to donate and understand which areas of our work people visiting the website, or reading emails, are interested in.

Recipients of our communications can choose to have their names and addresses removed from our distribution lists by contacting us at any time. They can also manage their cookie preferences (see below).

Types of personal information we collect and hold

Clients
We collect clients’ personal information in the course of our work, including each client’s name, address, telephone number, email address, employment history, next of kin, date of birth, health and welfare information, as well as information associated with their immigration history and legal problem.

Staff
Employee records may include personal information about staff members including name; address; telephone number; email address; date of birth; next of kin; employment history; qualifications and experience; details of employment contract; visa status; driving licence; current NSW Working With Children Check clearance results; and relevant banking and financial details.

Volunteers
Information we may collect in relation to our volunteers include name; address; telephone number; email address; date of birth; qualifications; employment history; interests, skills and hobbies; previous voluntary work; current NSW Working With Children Check clearance results; driving licence; and contact details of referees and next of kin.

Management Committee members
Information we may collect in relation to Management Committee members includes name; address; telephone number; email address; date of birth; qualifications; police checks; current NSW Working With Children Check clearance results; and employment experience.

Donors and supporters
Information we may collect in relation to our donors and supporters include names; addresses; email addresses; dates of birth; telephone numbers; bank account and credit card detail; details of donations, communications preferences and records of any contact or correspondence you have with us.

People who interact with us online via our website or social media
Information we may collect in relation to online interaction may include name, email address, phone number, demographics, online behaviour, communications preferences, any opinions you provide and details about the information you access. By accepting the use of cookies on our website, users are providing permission for RACS to use any data collected for purposes related to the work of RACS.. 

People who sign up to receive our email updates
Information we may collect in relation to people who sign up to receive our email updates includes name, email address, phone number, demographics, communications preferences, any opinions you provide and details about the information you access.

People who attend a RACS event
Information we may collect in relation to people who register for a RACS event includes name, email address, phone number, communications preferences, company name and any opinions or information you provide

Types of sensitive information we collect and hold

We may collect and hold sensitive information (such as the health, medical or other personal information) of clients, staff and volunteers which is necessary to perform our activities. We will only collect sensitive information directly and with your consent, or as otherwise authorised by law.

How we collect information

  • We collect personal information directly from clients and stakeholders, except where it is impracticable or illegal to do so.

  • We may collect information from third parties, such as under child protection legislation.

  • We collect information when you correspond with us through email, telephone, letter or fax.

  • We collect information through social media and our website, for example if you choose to make a donation, subscribe for updates or visit specific pages.

  • We collect information through people who register for our events.

How we use and disclose personal information

When people come to us for legal advice

We will:

  • Treat personal information as confidential and will only use or disclose it for the primary purpose for which it was collected or for a directly related purpose;

  • Release personal information to a third party where the person to whom the information relates requests us to do so;

  • Not disclose personal information to other service providers or individuals without the express consent or instructions of the individual to whom it relates. Consent will usually be obtained by asking the individual to sign a release form. There are two exceptions to this:

  • We may disclose personal information when we are required to do so by law. This could be in response to a warrant, subpoena, or other court order, the purposes of worker’s compensation or in response to legislative requirements (e.g. under child protection laws);

  • We may disclose personal information to a third party if we believe on reasonable grounds that the disclosure is necessary to prevent or lessen a serious and imminent threat to the life or health of a stakeholder or that of another person;

We will not disclose personal information to third parties, except those parties that facilitate our work. These include our contractors, service providers, employees and volunteers. Such disclosure may include disclosure to contractors and services providers located outside of Australia, including in the United States of America and Japan.

In our fundraising and marketing duties

  • People who engage with our website or email newsletter, and those on our donor lists, will only be contacted by RACS for purposes related to the work of RACS. 

  • RACS will store this information securely, and will not share, rent or sell it to any other organization for their marketing purposes.

  • RACS may use the information provided to communicate via social media 

  • RACS may share the information provided with our procured service providers to carry out communications and marketing on behalf of RACS, or to complete donation transactions

  • Through the use of data, such as email address, RACS may deliver targeted messages on social media platforms and identify other people on the Internet who are most likely to support RACS’ work. This may require uploading a list of email addresses to social media platforms of service providers such as Facebook. These lists become encrypted upon upload and this data is not stored or reused by service providers.

Cookies

By accepting the use of cookies on our website, users are providing permission for RACS to use any data collected for purposes related to the work of RACS.. 

Cookies are small files placed on your computer or device by a website or mobile application when you access a website.

RACS’ website may use cookies to collect information to monitor website performance, such as visitor traffic. We may also use it to provide targeted and tailored content both on the website and elsewhere, such as social media.

Information from cookies help us monitor the user experience of our website and helps us engage with people once they have left our website.

This information also enables us to target social media messages to people who engage with us through our website, social media channels and email list. Using this information, we can also target people who are most likely to support RACS work.

Opting out

If you prefer not to allow cookies, you can adjust your browser to turn off use of “cookies” or notify you when they are being used.  You can also manage your cookie preferences in Facebook see here.

Every email we send has an unsubscribe button at the bottom. If you would like to opt out of any other communications including telephone marketing, texts and hard copy post, please email us at fundraising@racs.org.au.

Please note, if you disable cookies, you may not be able to access certain areas or take advantage of certain features of our website.

If you opt out of receiving targeted Facebook advertising, you may still see non-targeted online adverts from us, if your ‘interests’ settings on Facebook are aligned to an audience segment (pre-defined by Facebook) that we are associated with. The display of such ads is controlled by Facebook.

Third party cookies

Some of the cookies you may receive when visiting the RACS website may not be related to RACS. This may include sections of the RACS website that contain embedded content such as a social media plugin. You may receive cookies delivered from these websites.

Third-party cookies may also be used to provide targeted advertising services and for tracking our website awareness-raising and communications performance.

RACS does not govern the settings or use of these third-party cookies and cannot be held responsible for the privacy of data collected by websites that it does not own or manage, even if these websites link to the RACS website. 

As mentioned above, cookies can be managed, or turned off on an individual’s browser.

Maintenance of personal information

We will take reasonable steps to ensure that personal information we collect, hold, use or disclose is accurate, complete and up-to-date.

Security and retention of personal information

We will:

  • Take reasonable steps to store personal information securely (whether it is held in paper, electronic or any other form), protecting it from unauthorised access;

  • Take reasonable steps to safeguard personal information collected from misuse, loss and modification;

  • Destroy personal information in accordance with our professional obligations.

Confidentiality of personal information

All employees, contractors, and volunteers at RACS are bound by:

  • RACS’s Privacy Policy

  • by state and federal privacy legislation

  • by any agreement they sign with the RACS (including any Contract of Employment; Volunteer Agreement; and/ or Confidentiality Agreement)

Our employees, contractors and volunteers are required not to provide information that can identify clients other than with their consent or on their instructions. This information must be kept confidential and not released into the public domain.

The obligations of staff and volunteers in relation to the confidential information survive after they cease working with RACS and their obligations in relation to the confidential information shall be enforceable at any time at law or in equity and shall continue to the benefit of and be enforceable by RACS.

We will ensure individuals have a right to seek access to information held about them and to correct such information if it is inaccurate, incomplete, misleading or not up-to-date, subject to exceptions permitted by law.

Some relevant exceptions are:

  • If providing access to the information would pose a serious and imminent threat to the life or health of any individual;

  • If providing access would have an unreasonable impact upon the privacy of other individuals; or

  • If providing access would be unlawful.

As the accuracy of information held depends largely on the information provided to us, we recommend that you:

  • Advise RACS if there are any errors in your personal information; and

  • Keep RACS up-to-date with changes to your personal information, such as name and address details.

Anonymity

We will give stakeholders the option of not identifying themselves when completing evaluation forms or feedback surveys where it is reasonably practicable to do so.

Access to our privacy policy

We will:

  • Take reasonable steps to ensure that stakeholders are aware of our Privacy Policy and its purposes;

  • Make the policy freely available in relevant publications and on RACS’s website.

Email disclaimer/policy

All email communications, excluding our newsletter updates and any attachments, are confidential and may be privileged between RACS and the addressee only. If you are not the intended recipient of an email from RACS, any use of such a communication is strictly prohibited. Confidentiality and privilege is not waived, and we request that you delete the email and notify us. RACS does not warrant and/or guarantee that the integrity of email communications has been maintained or that it is free of any virus, interception or interference. Any opinion expressed in it is not the opinion of RACS unless that is stated or apparent from its terms.

Complaints process

At RACS, we are committed to fostering a culture that is respectful of the privacy of individuals.

If you believe your privacy has been breached by us, or need to correct the personal information held by us, please contact the RACS Centre Director on 02 8317 6500 or via email to admin@racs.org.au. Alternatively you can write to us at Refugee Advice & Casework Service, 30 Botany Street, Randwick NSW 2031. We will promptly acknowledge and investigate any complaint we receive and respond in a reasonable period of time.

If you are not satisfied with our response, you may take your privacy complaint to the Office of the Australian Information Commissioner (OAIC). To make a complaint to the OAIC, please visit the OAIC’s website or phone 1300 363 992.