Privacy Statement (including Credit Reporting Policy)
Read about how Telstra collects, secures, uses and discloses
your personal information.
Privacy at Telstra
Our Privacy Commitment
Privacy matters to us and we know it matters to you.
We provide a wide range of products and services and to do this we need to collect, store, use and disclose a wide spectrum of information.
But don’t worry. We are committed to protecting your privacy, keeping your information safe and ensuring the security of your data.
Our Privacy Statement
Our Privacy Statement explains how we collect, use and protect your information. It applies to all the businesses in the Telstra Group including Telstra Corporation Limited. It extends to both our control and processing of personal information. It also incorporates our Credit Reporting Statement.
This current policy came into effect at 1 June 2017. We may need to update it over time but if we do, we’ll post the updated version on our website.
What information do we collect?
The types of information we collect depends on how you use our products and services as well as the relationship we have with you as a customer.
This can include straightforward information like your name, date of birth, contact details (including address, email address, phone number or mobile telephone number), occupation, driver's licence number, Telstra PIN, username or password and financial information (such as credit card or bank account numbers).
We may also collect more in-depth information including:
- Billing and Credit Information related to your financial relationship with us, such as your payment history, your credit history, and your service history. For more details, see the section on Credit Reporting below.
- Information about your products and services including device-specific information such as your hardware model, operating system version, unique device identifiers, device status, serial numbers, settings, configuration and software and mobile network information.
- Information about how you use your products and services such as:
- Your network usage including time and duration of your communications as well as about the operation of the equipment, services and applications you use on our networks
- How you use our internet services, such as information about websites visited
- Your location when you are using our products and services
- Information that allows us to identify you for verification purposes including biometric information like your fingerprints and voice patterns
- Technical Information about your products and services including details about our network performance including information about how you use our networks
Sensitive information includes information about a person's race, ethnic origin, political opinions, health, religious or philosophical beliefs and criminal history. We may collect some forms of Sensitive Information. For example we may collect limited health information to provide priority assistance services or a Centrelink customer reference number to provide you with a pensioner discount. We are subject to strict requirements in relation to sensitive information including to only collect and use sensitive information with consent or otherwise in accordance with applicable law such as the Privacy Act 1988.
You might also need to provide personal information about other individuals to us (e.g. about your authorised representatives). If so, we rely on you to have informed those individuals that you are giving their personal information to us and to have advised them about this statement.
How we collect your information
There are three ways that we can collect your information.
- You give it to us when you or your representatives interact with either us or one of our trusted partners. This might happen when you’re setting up an account with us or using one of our products or services.
- We obtain information from outside sources like credit reports, marketing mailing lists, and public information, (including public posts to social networking sites) and commercially available geographic and demographic information. This can also include information gained from our partners if you’ve interacted with them. These partners include our business and commercial partners, credit reporting bodies and wholesale and other customers.
We understand that you might not want to give us particular information about you. Just know that it may lead to us not being able to provide you with the products or services you need, or the level of service on which we pride ourselves.
How do we keep your information?
We may store your information in hard copy or electronic format, and keep it in storage facilities that we own and operate ourselves, or that are owned and operated by our service providers.
We use a combination of technical solutions, security controls and internal processes to help us protect your information and our network from unauthorised access and disclosure.
How do we use your information?
We may use and disclose the information for a wide range of purposes including:
Administration - Your information helps us to properly manage the products and services we provide to you and to maintain and update our records. For example, we need to be able to verify your identity to detect, prevent and address fraud, security or technical issues. We also use your information for charging and billing.
Communication - We need to be able to communicate with you in order to provide you with our products and services. We might do this on different types of mediums such as email, SMS, social media, search engines and web pages you may visit. This helps us enhance your experience with our products and services.
Improvement - We’re constantly working to not only maintain and improve our products and services but to develop new ones. We use information we hold to help us do this in a number of ways. For example to monitor network use, quality and performance, and to operate, maintain, develop, test and upgrade our systems and infrastructure. We may also combine information from one service with information from one of our partners’ services. For example to monitor network use, quality and performance, and to operate, maintain, develop, test and upgrade our systems and infrastructure. We may also combine information from one service with information from one of our partners’ services.
Development and Analysis - It’s important we understand your information and communication needs. One of the ways we do this is through using analysis business intelligence techniques. This gives us high level insights into things like usage patterns, network performance, demographic trends and other types of behavioural data. In many cases this information is aggregated and de-identified when analysed. We may share these anonymised insights with select partners. In some cases we may create insights with your information on an identified basis but in those cases we would need to do so with your consent or otherwise comply with privacy laws.
Direct Marketing - We want to make sure that you know about all our products, services and special offers that are relevant and are of interest to you. So sometimes we may use the information we hold to market and promote them directly to you. This also may include products, services and offers provided by one of our trusted partners. In some cases this marketing activity can continue after you’ve stopped using our products or services, and until you opt-out. You can stop us using your information for direct marketing by calling us on 1800 039 059 or updating your preference by logging into your 'My Account' online.
Compliance - There are a number of circumstances where we are required or authorised by law to collect, use or disclose information. These include:
- As required or authorised by legislation (for example under the Telecommunications Act 1997 (Cth) and the Telecommunications (Interception and Access) Act 1979 (Cth) including the data retention provisions).
- To produce and distribute an alphabetical public number directory (known as the White Pages) in compliance with our Carrier Licence Conditions.
- As required by or in accordance with any industry code or industry standard registered under the Telecommunications Act 1997 (Cth).
- When we need to undertake identity checks for pre-paid public mobile telecommunications services under the Telecommunications (Service Provider-Identity Checks for Prepaid Mobile Carriage Services) Determination 2013.
When do we share your information?
We may share your information with third parties who provide services to us, including organisations and contractors that assist us with providing our products and services. These services include:
- customer enquiries and support services
- installation, maintenance and repair services
- mailing operations, billing and debt-recovery functions
- information technology and network services
- market research, marketing, telemarketing and door-knocking services
- development, analysis and business intelligence functions.
We may also disclose your information to:
- your authorised representatives or advisers, or when you ask us to do so
- credit-reporting bodies (for more information see the Credit Reporting section below) and fraud-checking agencies for identity checking and credit related purposes such as credit-worthiness, credit rating, default listing, credit provision and financing. These include:
- Veda Advantage Information Services and Solutions Limited
- Dun and Bradstreet (Australia) Pty Ltd
- Experian Australia Credit Services Pty Ltd
- our dealers, our related entities or our business or commercial partners and other businesses we work with
- other telecommunication and information service providers or to our wholesale and other customers from or through whom you may acquire products or services
- the manager of the Integrated Public Number Database (IPND), and other organisations as required or authorised by law (please see www.acma.gov.au for more information),
- the Government’s National Document Verification Service, to verify the validity of any Government issued documentation you provide as proof of identity ie: to check a Drivers Licence, Medicare, Passport etc.
- law enforcement and national security agencies, and other government and regulatory authorities as required or authorised by law
- third parties who assist us in managing or developing our business and corporate strategies and functions, including our corporate risk or funding functions
- our contractor, Sensis, to enable us to meet our Carrier Licence Conditions to produce and distribute an alphabetical public number directory (known as the White Pages). Note, if you have requested a silent line number your number won't be published in the White Pages.
- third parties as required by or in accordance with any industry code or industry standard registered under the Telecommunication Act 1997 (Cth)
- government agencies for purposes associated with connecting new services to the National Broadband Network
- and for the purposes of facilitating or implementing a transfer/sale of all or part of our assets or business.
In some cases, the organisations that we may disclose your information to may be based outside Australia. For example, we may share your information with our third parties in Canada, Chile, China, Hong Kong, countries within the European Union, India, Japan, Malaysia, New Zealand, Philippines, Russia, Singapore, South Africa, South Korea, Sri Lanka, Taiwan and the United States of America.
Sometimes, such as when we’re checking your credit worthiness or assessing your credit situation, we might collect information from or give information to credit reporting bodies. This information can include:
- identification information
- details about information requests made about you to credit reporting bodies
- current and historical details about credit applications you have made and credit arrangements you have entered into
- information about overdue payments, default listings and about serious credit infringements and information about payments or subsequent arrangements in relation to either of these
- various publicly available information like bankruptcy and credit-related court judgments; and
- credit scores or risk assessments indicating an assessment of your credit worthiness.
This information relates primarily to your dealings with other credit providers (for example, banks, other financial institutions, or other organisations that may provide you with credit in connection with their products or services). It may also include certain credit worthiness information that we derive from the data that we receive from a credit reporting body. Sometimes we may collect this information about you from other credit providers.
We may disclose your credit information to credit reporting bodies. They in turn may include it in credit reporting information they provide to other credit providers to assist them to assess your credit worthiness.
We may use or disclose such information for purposes such as:
- processing credit-related applications and managing credit that we provide
- assisting you to avoid defaults
- collecting amounts you may owe us in relation to such credit and dealing with serious credit infringements
- assigning our debts
- participating in the credit reporting system
- dealing with complaints or regulatory matters relating to credit or credit reporting
- when required or authorised by another law.
You have the right to request credit reporting bodies not to:
- use your credit eligibility information to determine your eligibility to received direct marketing from credit providers; and
- use or disclose your credit eligibility information if you have been or are likely to be a victim of fraud.
How you can access or correct your personal information?
To ensure that we’re able to provide you with the best products and services possible, it’s important that you make sure the personal information we hold for you is accurate, up-to-date and complete. If any of your details change you can contact us using the contact details below (find them in the how to contact us section) so that we can consider and respond to your request. There is no charge to submit a request or to correct information, however we may apply an administrative charge for providing access to your personal information on request.
How you can make a privacy complaint?
You can also use our contact details to notify us of any privacy complaint you have against us. We are committed to acknowledging your complaint in a prompt manner and will give you an estimated timeframe for when we will respond to your complaint.
If your complaint is in relation to a credit reporting issue we will acknowledge your complaint in writing as soon as practicable within 7 days. We’ll aim to investigate and resolve your complaint within 30 days of receiving it. If we need more time, we will notify you about the reasons for the delay and indicate a new estimate time frame. We may need to consult with a credit reporting body or another credit provider to investigate your complaint.
While we hope that we will be able to resolve any complaints you may have without needing to involve third parties, you may also be able to lodge a complaint with a relevant regulator such as the Australian Information Commissioner or the Telecommunications Industry Ombudsman.
How to contact us
If you have any questions in relation to this Privacy Statement, our management of your information or you would like a copy of this statement sent to you, please call us on 1800 039 059 or email us at email@example.com.
If you’d like this statement on CD or in Braille please call Telstra's Disability Enquiry Hotline on 1800 068 424. The office hours are Monday-Friday 8 am-5 pm EST. You can also download a pdf copy of this statement on our website, at www.telstra.com/privacy/privacy-statement.