Thank you for applying for a credit account with EPH Group.
This online application service has been provided so we can process your application as quickly as possible.
To complete your application, we will ask for the following information to be provided:
If you require any assistance with your application, please contact our accounts department on 1300 037 437
CreditorWatch is a provider of credit reporting services.
The Service involves the storage of Data about a company or individual. That Data can include personal information. “Personal information” is information about an identifiable individual, and may include information such as the individual’s name, email address, telephone number, bank account details, taxation details, and accounting and financial information.
CreditorWatch may collect personal information directly from You when You:
You can always choose not to provide Your personal information to CreditorWatch, but it may mean that we are unable to provide You with the Service.
Through Your use of the Service, CreditorWatch may also collect information from You about someone else. If You provide CreditorWatch with personal information about someone else, You must ensure that You are authorised to disclose that information to CreditorWatch and that, without CreditorWatch taking any further steps required by applicable data protection or privacy laws, CreditorWatch may collect, use and disclose such information for the purposes described in this Policy.
This means that You must take reasonable steps to ensure the individual concerned is aware of and/or consents to the various matters detailed in this Policy, including the fact that their personal information is being collected, the purposes for which that information is being collected, the intended recipients of that information, the individual’s right to obtain access to that information, CreditorWatch’s identity, and how to contact CreditorWatch.
Where requested to do so by CreditorWatch, You must also assist CreditorWatch with any requests by the individual to access or update the personal information You have collected from them and entered into the Service.
CreditorWatch collects Your personal information so that we can provide You with the Service and any related services You may request. In doing so, CreditorWatch may use the personal information we have collected from You for purposes related to the Services including to:
By using the Service, You consent to Your personal information being collected, held and used in this way and for any other use You authorise. CreditorWatch will only use Your personal information for the purposes described in this Policy or with Your express permission.
It is Your responsibility to keep Your password to the Service safe. You should notify us as soon as possible if You become aware of any misuse of Your password, and immediately change your password within the Service or via the forgot password process.
By using the Service, You agree that CreditorWatch can access, aggregate and use non-personally identifiable data CreditorWatch has collected from You. This data will in no way identify You or any other individual.
CreditorWatch may use this aggregated non-personally identifiable data to:
All Data, including personal and non-personal information, that is entered into the Service by You, or automatically imported on Your instruction, is transferred to CreditorWatch’s servers as a function of transmission across the Internet. By using the Service, You consent to Your personal information being transferred to our servers as set out in this Policy.
Currently our servers are located in Australia, primarily by Global Switch Pty Ltd. (Global Switch), and Your personal information will be routed through, and stored on, those servers as part of the Service. Global Switch complies with relevant aspects of the U.S.-EU Safe Harbor Framework and has certified that it adheres to relevant Safe Harbor Privacy Principles. If the location of our servers change in the future, we will update this Policy. You should review our Policy regularly to keep informed of any updates.
By providing Your personal information to CreditorWatch, You consent to CreditorWatch storing Your personal information on servers hosted in Australia. While Your personal information will be stored on servers located in the Australia, it will remain within CreditorWatch’s effective control at all times. The server host’s role is limited to providing a hosting and storage service to CreditorWatch, and we’ve taken steps to ensure that our server hosts do not have access to, and use the necessary level of protection for, Your personal information.
CreditorWatch is committed to protecting the security of Your personal information and we take all reasonable precautions to protect it from unauthorised access, modification or disclosure. Your personal information is stored on secure servers that have SSL Certificates issued by leading certificate authorities Symantec Corporation, and all Data transferred between You and the Service is encrypted.
However, the Internet is not in itself a secure environment and we cannot give an absolute assurance that Your information will be secure at all times. Transmission of personal information over the Internet is at Your own risk and You should only enter, or instruct the entering of, personal information to the Service within a secure environment.
We will advise You at the first reasonable opportunity upon discovering or being advised of a security breach where Your personal information is lost, stolen, accessed, used, disclosed, copied, modified, or disposed of by any unauthorised persons or in any unauthorised manner.
CreditorWatch will only disclose the personal information You have provided to us to entities outside the CreditorWatch group of companies if it is necessary and appropriate to facilitate the purpose for which Your personal information was collected pursuant to this Policy, including the provision of the Service.
CreditorWatch will not otherwise disclose Your personal information to a third party unless You have provided Your express consent. However, You should be aware that CreditorWatch may be required to disclose Your personal information without Your consent in order to comply with any court orders, subpoenas, or other legal process or investigation including by tax authorities, if such disclosure is required by law. Where possible and appropriate, we will notify You if we are required by law to disclose Your personal information.
The third parties who host our servers do not control, and are not permitted to access or use Your personal information except for the limited purpose of storing the information. This means that, for the purposes of Australian privacy legislation and Australian users of the Service, CreditorWatch does not currently “disclose” personal information to third parties located overseas.
If you choose to pay for the Service by credit card, Your credit card details are not stored by the Service and cannot be accessed by CreditorWatch staff. Your credit card details are encrypted and securely stored by Data Vault provided by Commonwealth Bank Of Australia to enable CreditorWatch to automatically bill your credit card on a recurring basis. You should review Data Vault by Commonwealth Bank of Australia to ensure you are happy with it.
It is Your responsibility to ensure that the personal information You provide to us is accurate, complete and up-to-date. You may request access to the information we hold about You, or request that we update or correct any personal information we hold about You, by setting out Your request in writing and sending it to us at firstname.lastname@example.org
CreditorWatch will process Your request as soon as reasonably practicable, provided we are not otherwise prevented from doing so on legal grounds. If we are unable to meet Your request, we will let you know why. For example, it may be necessary for us to deny Your request if it would have an unreasonable impact on the privacy or affairs of other individuals, or if it is not reasonable and practicable for us to process Your request in the manner You have requested. In some circumstances, it may be necessary for us to seek to arrange access to Your personal information through a mutually agreed intermediary (for example, the Subscriber).
We’ll only keep Your personal information for as long as we require it for the purposes of providing You with the Service. However, we may also be required to keep some of Your personal information for specified periods of time, for example under certain laws relating to corporations, money laundering, and financial reporting legislation.
In providing the Service, CreditorWatch utilises "cookies". A cookie is a small text file that is stored on Your computer for record-keeping purposes. A cookie does not identify You personally or contain any other information about You but it does identify Your computer.
We and some of our affiliates and third-party service providers may use a combination of “persistent cookies” (cookies that remain on Your hard drive for an extended period of time) and “session ID cookies” (cookies that expire when You close Your browser) on the Website to, for example, track overall site usage, and track and report on Your use and interaction with ad impressions and ad services.
You can set your browser to notify You when You receive a cookie so that You will have an opportunity to either accept or reject it in each instance. However, You should note that refusing cookies may have a negative impact on the functionality and usability of the Website.
We do not respond to or honour “Do Not Track” requests at this time.
CreditorWatch sends billing information, product information, Service updates and Service notifications to You via email. Our emails will contain clear and obvious instructions describing how You can choose to be removed from any mailing list not essential to the Service. CreditorWatch will remove You at Your request.
If You wish to complain about how we have handled Your personal information, please provide our Privacy Officer with full details of Your complaint and any supporting documentation:
Our Privacy Officer will endeavour to:
CreditorWatch reserves the right to change this Policy at any time, and any amended Policy is effective upon posting to this Website. CreditorWatch will make every effort to communicate any significant changes to You via email or notification via the Service. Your continued use of the Service will be deemed acceptance of any amended Policy.
We are committed to protecting your privacy and Personal Information when you deal with us and ensuring that it collects, stores and deals with your Personal Information appropriately and lawfully, including in accordance with the relevant privacy legislation.
• what types of Personal Information we collect and hold;
• the purposes for which we collect, hold, use and disclose Personal Information;
• how we collect and hold Personal Information;
• how and under what circumstances we disclose Personal Information;
• the measures we take to safeguard your Personal Information;
• your rights in relation to your Personal Information, including how you may access, update, and/or complain in relation to the Personal Information that we hold in relation to you and seek any correction to that information;
• how the we collect, use, store and disclose credit information and commercial credit eligibility information; and
• disclosure of Personal Information to overseas recipients.
This policy was last updated on 12 November 2018.
3. DEFINITION OF PERSONAL INFORMATION
“Personal Information” means any information or opinion (whether true or not) relating to a natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, or an online identifier.
4. PURPOSE OF COLLECTING, HOLDING OR USING PERSONAL INFORMATION
We collect, hold, disclose and use your Personal Information where it is reasonably necessary for us to carry out our business functions and activities and as necessary to provide our services to you. We also collect, hold, use and disclose your Personal Information for related purposes that you would reasonably expect.
For example, we may use your Personal Information to:
• provide you with booking services;
• administer the EPH Group relationship with you including responding to queries;
• internal administrative purposes, such as but not limited to procedural assessment, credit approval, risk management, staff training, accounting, billing, product and service reviews;
• determine the provision of credit in accordance with the terms of the EPH Group Application For Commercial Credit;
• assess or exchange information relating to your creditworthiness, credit history or credit capacity in accordance with the terms of the EPH Group Application For Commercial Credit;
• assist in the collection of overdue payments;
• comply with legislative requirements such as under the Personal Property and Securities Act 2009 (Cth);
• monitor activity on our website(s);
• identify and inform you about other products or services that may be of interest to you;
• provide you with information about products, services and offerings that may be of interest to you; and
• distribute our newsletters and other communications either directly or with the assistance of third party services providers.
We may also use your Personal Information for purposes which are required by law such as sharing your Personal Information in order to comply with legal obligations to which we are subject.
If we do not collect, hold, use or disclose your Personal Information, or if you do not consent, then we may not be able to assist you or provide our services to you to the best of our ability.
5 TYPES OF PERSONAL INFORMATION THE EPH GROUP COLLECT AND HOLD
The types of Personal Information we may collect from you and hold include (without limitation):
• your name, gender, date of birth, contact details, image, drivers licence, copy signature;
• payment details (such as credit/debit card number and expiry date) provided in connection with the purchase of our products and services;
• insurance provider’s details,
• company details, company contact details, business premises details;
• your trade references;
• financial details including annual earnings, bank account details
• details of the products and service provided;
• credit history information;
• information about any application for commercial credit you make with us including the amount of commercial credit you apply for;
• commercial credit reporting information about you from a credit reporting body; and
• any other information you provide to us via our website, by email, over the phone or otherwise.
6. HOW THE EPH GROUP COLLECTS PERSONAL INFORMATION
Information collected directly from you
We may collect Personal Information from you or about you when you use our services or purchase our goods, make or update a booking to use our services, register to receive the EPH Group newsletters or other communications, visit the our websites, our Facebook page or other multimedia platform or otherwise interact with the EPH Group.
Information we collect automatically
We may automatically collect information from you and your devices when you use our websites or online services. This may include your IP address, the type of browser and device you use to access the websites, the web page you visited before coming to our websites, and other identifiers associated with the device you used to access our websites.
We note that our websites are not designed to respond to “do not track” signals received from browsers.
Information we collect from third parties
As well as collecting information directly from you, there may be occasions when we collect information about you from a third party. These third parties may include:
• third parties making bookings on your behalf, or who otherwise interact with us on your behalf, including when you make an inquiry with a representative agent but do not proceed to a booking;
• other related entities to the EPH Group;
• credit providers and credit reporting bodies; and
• publicly available sources of information.
We use technologies like cookies, pixel tags and web beacons to recognise you when you to visit our website or use our online services and to provide, improve, protect and promote our services and products.
What are cookies?
A “cookie” is a small text file which is placed on your computer or device by our webpage servers when you access our websites or online services. The purpose of a cookie is to help analyse web traffic and to allow our services to respond to you when you return to our services. Cookies are also used to enhance the secure use of our services.
Cookies are frequently used and in themselves do not identify the user, just the computer used.
When you browse our website or use our online services, we may record geographical tagging, cookies and statistical data. This may include your IP address, date and time of your visit, operating system, language preferences, device characteristics, pages visited, information downloaded and type of browser used to access the Services.
Cookies help us:
• recognise your device when you use our websites or online services;
• manage and improve our websites and online services;
• operate, evaluate and improve our business;
• analyse your use of our services;
• help diagnose technical and service problems; and
• gather demographic information about our users.
We also may use “web beacons” on our websites. These web beacons enable our service providers to compile anonymous information about your browsing activity.
You can choose if and how a cookie will be accepted by configuring your preferences and options in your browser. However, if you decide not to display cookies you may not experience optimum performance of our websites or online services.
8. AD NETWORKS
We may use your information to offer you products and services that we think may be of interest to you, unless you have opted out of marketing communications.
We will never provide your information to third parties for marketing purposes without receiving your consent.
10. LAWFUL BASIS FOR PROCESSING YOUR INFORMATION
We normally collect or use Personal Information from you where we have your consent to do so, where we need the information to perform a contract with you or to provide our services or products to you upon your request, or where the processing is in our legitimate interests and not overridden by your data protection interests or rights and freedoms.
11. HOW THE EPH GROUP HOLD INFORMATION AND KEEP IT SECURE
We hold your Personal Information in a combination of hard copy and electronic files.
We have physical, electronic and procedural safeguards in place for personal information and take reasonable steps to ensure that your Personal Information is protected from misuse, interference and loss, and from unauthorised access, modification and disclosure.
The steps we take to protect your Personal Information include the following:
• data held and stored on paper is stored in lockable offices and in secure premises;
• data held and stored electronically is protected by internal and external firewalls, limited access via file passwords, and files designated read-only or no access;
• when transferring information to others, we ensure that appropriate and suitable safeguards and data protection measures are in place to protect your personal information;
• the use of firewalls, anti-virus software and ongoing internal monitoring;
• where we disclose personal information to third parties our contractual arrangements with them include specific privacy requirements;
• only authorised personnel will have access to personal information; and
• our staff receive training on privacy procedures.
Whilst we cannot ensure or guarantee that loss, misuse or alteration of information will never occur, we use all reasonable efforts to prevent it.
You should bear in mind that submission of information over the internet is never entirely secure. We cannot guarantee the security of information you submit via our website whilst it is in transit over the internet and any such submission is at your own risk.
12. USE AND DISCLOSURE
We understand the importance of keeping Personal Information confidential, and will only disclose such information to others in limited circumstances.
Information shared to third parties
Third parties to which we may disclose Personal Information include:
• credit providers and credit reporting bodies in accordance with the terms of the EPH Group’s Application For Commercial Credit;
• the EPH Group’s professional advisers;
• government and regulatory authorities;
• the EPH Group’s related entities;
• Credit Risk Insurers;
• Trade Credit Insurance Providers;
• Credit Reporting Bodies (default information);
• contractors who provide services to the EPH Group or who manage services provided to an individual on the EPH Group’s behalf (but only to the extent necessary to enable them to provide these services).
Personal Information will generally only be disclosed to third parties in connection with (or for reasons directly related to) any of the purposes set out in this policy or otherwise with your consent. However, we may also be permitted or obligated to disclose Personal Information to other third parties where:
• we reasonably believe that the disclosure is necessary to lessen or prevent a serious threat to the life, health or safety of any individual, or to public health or safety and it is unreasonable or impracticable to obtain your consent to the disclosure;
• there is reason to suspect that unlawful activity, or misconduct of a serious nature, is occurring and that the disclosure is necessary for us to take appropriate action in relation to this matter;
• we are required or authorized to do so by law and/or an enforcement body; or
• as otherwise permitted by relevant privacy laws.
In the event that we undergo reorganisation or entities of the EPH Group are sold to a third party, any Personal Information we hold about you may be transferred to that re-organised entity or third party in compliance with applicable law.
13. DISCLOSURE TO OVERSEAS RECIPIENTS
We shall not directly disclose your Personal Information to overseas recipients without your prior consent.
14. RETENTION AND DESTRUCTION OF PERSONAL INFORMATION
We will only retain your Personal Information for as long as is reasonably necessary in relation to the purposes for which it was collected. We will also retain Personal Information to ensure compliance with any applicable statutory or regulatory obligations imposed on us in relation to the retention of records.
Where you have requested we stop processing your Personal Information for marketing purposes, we may retain a record of your request to ensure we abide by your request in the future.
When your Personal Information is no longer needed, or if you request that we delete any Personal Information which we hold about you, we will use secure methods to destroy or to permanently de-identify your Personal Information when it is no longer needed. For example, paper records are shredded or destroyed securely and any electronic records are deleted from all locations, to the best of our ability, or permanently de-identified.
15. SENSITIVE INFORMATION
Sensitive Information includes information or an opinion about a person’s racial or ethnic origin, political opinions, philosophical or religious beliefs or affiliations, membership of a political, trade or professional association or trade union, sexual preferences or practices, criminal record, health or genetic information, biometric information that is used for the purpose of biometric verification or identification, or biometric templates. We will only collect, hold or disclose Sensitive Information if you have consented or the collection is required or authorized by or under law or a court/tribunal order.
16. CREDIT INFORMATION & COMMERCIAL CREDIT ELIGIBILITY INFORMATION
We collect credit information about you which includes, but is not limited to, your identification information and information about any application for commercial credit you make with us.
We also collect and hold commercial credit eligibility information about you which includes, but not limited to, commercial credit reporting information that we receive about you from a credit reporting body – i.e. Australian Securities Investment Commission extracts adverse or default reports, business summaries and profiles, PPSR Registrations, financial performance reports, trade credit reporting information and trade references.
We may also collect Personal Information about any other applicants and/or guarantors included in your application for commercial credit. If you provide Personal Information about any such third party to us, you confirm that you have authority from the applicable individual(s) to your disclosure of their personal information to us and to our use and disclosure of their Personal Information in accordance with this Policy.
So as to assess an application for commercial credit and your commercial credit standing at any time in the future, we may:
• collect your Personal Information (including information about other applicants and any guarantors (if applicable)) from any application for commercial credit you make with us;
• collect Personal Information (including credit information) about you, any other applicants and any guarantors (if applicable) from other sources including, but not limited to, any of the EPH Group related entities, credit reporting bodies and credit or debt collections agencies; and
• obtain commercial credit reporting information from a credit reporting body about you, any other applicants and any guarantors (if applicable).
We may also use your information and, if necessary, disclose it to third party agencies (including, without limitation, the EPH Group’s credit risk insurers) in connection with any credit insurance arrangements that we choose to implement, as well as, to register any security interest granted to us under the terms of any commercial credit contract that we enter into with you.
We may also obtain commercial credit reporting information from time to time during the continuation of any commercial credit contract that we enter into with you.
We may also receive from and/or disclose to any other credit provider or any credit reporting body, personal information relating to your commercial credit worthiness for the purposes of exchange of information, assessing commercial credit worthiness, and/or notification of default at any time whether now or in the future.
Information we disclose to a credit reporting body (including default information) in accordance with this Policy may be held by such credit reporting body on its system and used to provide its credit reporting services (including maintaining its credit information files and disclosing information to its subscribers), in accordance with applicable privacy legislation.
If you default in your payment obligations to us, we may also disclose information relating to that default account to a collections agency for the purpose of receiving any or all of the amounts outstanding.
We may also disclose your personal information, including commercial credit reporting information, to our trade credit insurance providers.
17. YOUR RIGHTS
Under the privacy legislation applicable to you, you may be entitled to exercise some or all of the following rights:
A. Request (i) information as to whether your Personal Information is retained and (ii) access to and/or duplicates of your Personal Information retained, including the purposes of the processing, the categories of personal information concerned, and the data recipients as well as potential retention periods.
B. Request rectification, erasure, removal or restriction of your Personal Information, for example, because (i) it is incomplete or inaccurate, (ii) it is no longer needed for the purposes for which it was collected, or (iii) the consent on which the processing was based has been withdrawn.
C. Refuse to provide us with, or withdraw, your consent to processing of your Personal Information at any time.
D. Object, on grounds relating to your particular situation, that your Personal Information shall be subject to processing. In this case, please provide us with information about your particular situation. After the assessment of the facts presented by you we will either stop processing your Personal Information or present you our compelling legitimate grounds for an ongoing processing.
E. Object to us sending you direct marketing and profiling you for the purpose of direct marketing.
Our services and products are not directed at children under the age of 16.If we learn that we have collected Personal Information of a child under 16years old we will take steps to delete such information as soon as possible unless consent is given or authorised by the holder of parental responsibility over the child. if such consent is provided, the Personal Information will only be collected and used to the exten of the consent given.
19. OUR CONTACT DETAILS
EPH Group358 Whitehorse Road,NUNAWADING VIC 3131Ph: (03) 8878 9111Fax: (03) 8878 9100