SECTION A – INTRODUCTION

1. INTRODUCTION

1.1 The information in this document details how we, Universal Tours & Travels Pty Ltd trading as WePay Nepal (“WePay Nepal”), comply with the requirements of the Privacy Act 1988 (Cth) (“Privacy Act”) and the Australian Privacy Principles in protecting the personal information we hold about you.

1.2 Personal information is any information or opinion about you that is capable, or reasonably capable, of identifying you, whether the information or opinion is true or not and is recorded in material form or not.

1.3 Sensitive information includes such things as your racial or ethnic origin, political opinions, or membership of political associations, religious or philosophical beliefs, membership of a professional or trade association or trade union, sexual orientation or criminal record, that is also personal information. Your health, genetic and biometric information and biometric templates are also sensitive information.

1.4 We will act to protect your personal and sensitive information in accordance with the Australian Privacy Principles and the Privacy Act.

1.5 We collect personal and/or sensitive information to provide you with the products and services you request as well as information on other products and services offered by or through us. The law requires us to collect personal and/or sensitive information

1.6 Your personal and/or sensitive information may be used by us to administer our products and services, for prudential and risk management purposes and, unless you tell us otherwise, to provide you with related marketing information. We also use the information we hold to help detect and prevent illegal activity. We cooperate with police and other enforcement bodies as required or allowed by law

1.7 We disclose relevant personal information to external organisations that help us provide services. These organisations are bound by confidentiality arrangements. They may include overseas organisations.

1.8 You can seek access to the personal information we hold about you. If the information we hold about you is inaccurate, incomplete, or outdated, please inform us so that we can correct it. If we deny access to your personal information, we will let you know why. For example, we may give an explanation of a commercially sensitive decision, or give you access to the information through a mutually agreed intermediary, rather than direct access to evaluative information connected with it.

SECTION B – COLLECTION OF PERSONAL INFORMATION

2. WHY WE COLLECT INFORMATION

2.1 We collect personal information when it is reasonably necessary for one or more of our functions or activities.

2.2 These include:

  • providing customers with the products and services they request and, unless they tell us otherwise, to provide information on products and services offered by us and external product and service providers for us to complete your request of our product or service order . (If you have provided us with your email or mobile phone details, we may provide information to you electronically with respect to those products and services);
  • complying with our legal obligations;
  • monitoring and evaluating products and services;
  • gathering and aggregating information for statistical, prudential, actuarial and research purpose;
  • assisting customers with queries; and
  • taking measures to detect and prevent frauds.
3. INFORMATION WE MAY COLLECT

3.1 The personal and sensitive information we collect generally consists of name, address, date of birth, gender, marital status, occupation, account details, contact details (including telephone, facsimile and e-mail) and financial information.

3.2 We are required by law to identify you if you are opening a new account or adding a new signatory to an existing account. Anti-money laundering laws require us to sight and record details of certain documents (i.e. photographic and non-photographic documents) in order to meet the standards set under those laws.

3.3 Where it is necessary to do so, we may also collect information on individuals such as:

  • trustees;
  • partners;
  • company directors and officers;
  • officers of co-operatives and associations;
  • customer’s agents;
  • beneficial owners of a client; and
  • persons dealing with us on a “one-off” basis.
4. HOW WE COLLECT THE INFORMATION

4.1 We only collect personal information about you directly from you (rather than someone else) unless it is unreasonable or impracticable to do so or you have instructed us to liaise with someone else.

5. INFORMATION COLLECTED FROM SOMEONE ELSE

5.1 If it is impracticable or unreasonable for us to collect the personal information directly from you, we may collect such information from agents, or from your family members or friends. If you are not aware that we have collected the personal information, we will notify you of collection and the circumstances of collection, if we consider it is reasonable to do so.

5.2 The Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth) and Anti-Money Laundering and Counter-Terrorism Financing Rules Instrument 2007 (No. 1) require us to collect certain identification information about you. We will collect personal information from third parties in respect of AML/CTF checks which are required to be carried out, under AML/CTF Legislation.

6. INCOMPLETE OR INACCURATE INFORMATION

6.1 We may not be able to provide you with the products or services you are seeking if you provide incomplete or inaccurate information.

7. CONSENT

7.1 In most cases, before or at the time of collecting your personal information, we will obtain your consent to the purposes for which we intend to use and disclose your personal information.

7.2 If you don’t give us consent, we may not be able to provide you with the products or services you want. This is because we are required to collect this information to provide you advice.

8. WITHDRAWING CONSENT

8.1 Having provided consent, you are able to withdraw it at any time. To withdraw consent, please contact our office. Please note that withdrawing your consent may lead to us no longer being able to provide you with the product or service you enjoy given that, as mentioned above, it is impracticable for us to treat some customers differently.

9. SENSITIVE INFORMATION

9.1 In addition to the above conditions of collecting personal information, we will only collect sensitive information about you if we obtain prior consent to the collection of the information or if the collection is required or authorised by law.

SECTION C – INTEGRITY OF YOUR PERSONAL INFORMATION

10. QUALITY OF PERSONAL INFORMATION

10.1 We are committed to ensure that we protect any personal information we hold from misuse, interference, loss, unauthorised access, modification and disclosure.

10.2 Please contact us if any of the details you have provided to us change or if you believe that the information, we have about you is not accurate or up to date.

10.3 We may also take steps to update personal information we hold, for example, an address, by collecting personal information from publicly available sources such as telephone directories or electoral rolls.

11. SECURITY OF PERSONAL INFORMATION

11.1 We are committed to ensure that we protect any personal information we hold from misuse, interference, loss, unauthorised access, modification and disclosure.

11.2 For this purpose, we have a range of practices and policies in place to provide a robust security environment. We ensure the on-going adequacy of these measures by regularly reviewing them.

11.3 Our security measures include, but are not limited to:

  • educating our staff as to their obligations with regard to your personal information;
  • requiring our staff to use passwords when accessing our systems;
  • encrypting data sent from your computer to our systems during Internet transactions and customer access codes transmitted across networks;
  • employing firewalls, intrusion detection systems and virus scanning tools to protect against unauthorised persons and viruses from entering our systems;
  • using dedicated secure networks or encryption when we transmit electronic data for purposes of outsourcing;

11.4 Where information we hold is identified as no longer needed for any purpose, we ensure it is effectively and securely destroyed, and other means in the case of electronic records and equipment.

11.5 We cannot provide a guarantee regarding the security of information transmitted to or received from us. While implement to prevent unauthorised disclosures, we cannot guarantee that the personal information we collect will not be disclosed in a manner inconsistent with this Privacy Policy.

SECTION D – USE OR DISCLOSURE OF PERSONAL INFORMATION

12. USE OR DISCLOSURE

12.1 If we hold personal information about you that was collected for a particular purpose (“the primary purpose”), we will not use or disclose the information for another purpose (“the secondary purpose”) unless:

  • We have obtained your consent to use or disclose the information; or
  • you would reasonably expect us to use or disclose the information for the secondary purpose and the secondary purpose is:
    (i) if the information is sensitive – directly related to the primary purpose; or
    (ii) if the information is not sensitive – related to the primary purpose;
  • the use or disclosure of the information is required or authorised by or under an Australian law or a court/tribunal order; or
  • a permitted general situation exists in relation to the use or disclosure of the information by us; or
  • a permitted health situation exists in relation to the use or disclosure of the information by us, in which case we will de-identify the information before disclosing it; or
  • we reasonably believe that the use or disclosure of the information is reasonably necessary for one or more enforcement related activities conducted by, or on behalf of, an enforcement body; or

12.2 Where we use or disclose personal information in accordance with section 13(1)(e) we will keep a copy of this disclosure (e.g.: the email or letter used to do so).

13. WHO WE MAY COMMUNICATE WITH

13.1 Depending on the product or service we have, the entities we exchange your information with include but are not limited to:

  • brokers and agents who refer your business to us;
  • affiliated product and service providers and external product and service providers for whom we act as agent (so that they may provide you with the product or service you seek or in which you have expressed an interest);
  • auditors we appoint to ensure the integrity of our operations;
  • any person acting on your behalf, including your solicitor, settlement agent, accountant, executor, administrator, trustee, guardian or attorney;
  • your referee (to confirm details about you);
  • if required or authorised to do so, regulatory bodies and government agencies;
  • credit reporting agencies;
  • other organisations who in conjunction with us provide products and services (so that they may provide their products and services to you); and
  • professional associations or organisations with whom we conduct an affinity relationship (to verify your membership of those associations or organisations).

13.2 Our use or disclosure of personal information may not be limited to the examples above.

14. OUTSOURCING

14.1 We disclose personal information when we outsource certain functions, including bulk mailing, and information technology support. We also seek expert help from time to time to help us improve our systems, products and services.

14.2 We use banking partners to help provide you with better services. These partners may collect personal information on our behalf.

14.3 In all circumstances where personal information may become known to our contractors, agents and outsourced service providers, there are confidentiality arrangements in place. Contractors, agents and outsourced service providers are not able to use or disclose personal information for any purposes other than our own.

14.4 We take our obligations to protect customer information very seriously we make every effort to deal only with parties who share and demonstrate the same attitude.

15. DISCLOSURE REQUIRED BY LAW

15.1 We may be required to disclose customer information by law e.g. under Court Orders or Statutory Notices pursuant to taxation or social security laws or under laws relating to sanctions, anti-money laundering or counter terrorism financing.

SECTION E – DIRECT MARKETING

16. DIRECT MARKETING

16.1 We will only use or disclose the personal information we hold about you for the purpose of direct marketing if we have received the information from you and you have not requested to receive such information

16.2 Direct marketing means that we should use your personal information to provide you with information on our products and services that may interest you.

16.3 If you wish to opt-out of receiving marketing information altogether, you can:

16.4 We take our obligations to protect customer information very seriously we make every effort to deal only with parties who share and demonstrate the same attitude.

  • call us on [+61 415 140 890]; or
  • write to us at [support@wepaynepal.com].

SECTION F – ACCESS TO PERSONAL INFORMATION

17. ACCESS

17.1 You can request us to provide you with access to the personal information we hold about you.

17.2 Requests for access to limited amounts of personal information, such as checking to see what address or telephone number we have recorded, can generally be handled over the telephone.

17.3 If you would like to request access to more substantial amounts of personal information such as details of what is recorded in your account file, we will require you to complete and sign a “Request for Access to Personal Information” form.

17.4 Following receipt of your request, we will provide you with an estimate of the access charge and confirm that you want to proceed.

17.5 We will not charge you for making the request for access, however access charges may apply to cover our costs in locating, collating and explaining the information you request. The charges are based on a rate of [100 dollars per hour].

17.6 We will respond to your request as soon as possible and in the manner requested by you. We will endeavour to comply with your request within 14 days of its receipt but, if that deadline cannot be met owing to exceptional circumstances, your request will be dealt with within 30 days. It will help us provide access if you can tell us what you are looking for.

17.7 Your identity will be confirmed before access is provided.

18. EXCEPTIONS

18.1 In particular circumstances we are permitted by law to deny your request for access or limit the access we provide. We will let you know why your request is denied or limited if this is the case. For example, we may give an explanation of a commercially sensitive decision rather than direct access to evaluative information connected with it.

19. REFUSAL TO GIVE ACCESS AND OTHER MEANS OF ACCESS

19.1 If we refuse to give access to the personal information or to give access in the manner requested by you, we will give you a written notice setting out the reasons for the refusal, the mechanisms available to complain and any other relevant matter.

19.2 Additionally, we will endeavour to give access in a way that meets both yours and our needs.

SECTION G – CONTACT US AND COMPLAINTS PROCEDURES

20. CONTACT

20.1 If you have any questions or would like further information about our privacy and information handling practices, please contact us by:

  • Email: [support@wepaynepal.com]; or
  • Phone: [+61 415 140 890]; or
  • Post: [Universal Tour and Travel Pty Ltd,6 327 Pitt St Sydney NSW 2000].
21. MAKING A PRIVACY COMPLAINT

21.1 We offer a free internal complaint resolution scheme to all of our customers. Should you have a privacy complaint, please contact us to discuss your concerns.

21.2 You will also have free access to an external dispute resolution scheme in which we are member.

21.3 To assist us in helping you, we ask you to follow a simple three-step process:

  • Gather all supporting documents relating to the complaint.
  • Contact us and we will review your situation and if possible, resolve your complaint immediately.
  • If the matter is not resolved to your satisfaction, please contact our Complaints Officer on [+61 415 140 890] or put your complaint in writing and send it to WePay Nepal [Universal Tour and Travel Pty Ltd,6 327 Pitt St Sydney NSW 2000c].

21.1 If you are still not satisfied, you have the right to contact the Office of the Australian Information Commissioner (“OAIC”). You can contact the OAIC to make a query concerning your privacy rights, or to lodge a complaint with the OAIC about how we have handled your personal information.

Office of the Australian Information Commissioner
Address: Universal Tour and Travel Pty Ltd,6 327 Pitt St Sydney NSW 2000
Phone: +61 415 140 890
Email: support@wepaynepal.com