Matthews Group Privacy Policy and Collection Notice
Collection Notice
This collection notice applies to the collection, storage, use and disclosure of personal information by or on behalf of any Matthews Group entity trading as either Feathers Hotel, Buckingham Arms Hotel, Flagstaff Hotel, Mansfield Park Hotel, Maylands Hotel, Eyre Hotel, South Eastern Hotel, Park Hotel, Mt Gambier Hotel, Colhurst House or any other related entity (referred to in this collection notice as “Matthews Group”, “our”, “we” or “us”). Please read it carefully.
Matthews Group collects personal information from our customers (which may include our customers’ personnel). This may include when you communicate with us, when you meet with us, when you purchase or pay for our products or services, and when you visit our premises.
Matthews Group collects personal information from suppliers (or their personnel) that provide goods and services to us. For example, when you correspond with us, provide goods or services to us, and when we meet.
When purchasing products via Matthews Group websites, you agree that Matthews Group may use the personal information that you provide so that we can provide the products to you, manage our relationship with you, manage our corporate functions relevant to the products you order, and meet our legal and regulatory obligations.
We can be contacted at (08) 8130 4500, 71-73 Fullarton Road, Kent Town SA 5067 or privacy@matthewshotels.com.au.
Information collected may include name, position, address, contact details, the organisation you may represent, and other information you provide to us in connection with us supplying our products or services to you. Matthews Group needs and may use that personal information to carry out our functions and activities, including to provide products and services to you or your organisation, to manage our corporate functions, and to meet our legal and regulatory obligations.
We will not usually disclose your personal information to others.
We may use your personal information to inform you about products and services which we offer from time to time, and to keep you informed of news and events. You can ‘opt out’ of receiving such communications at any time by following the procedure detailed in those communications and in our privacy policy.
Our privacy policy available below contains further information about how you can access and correct your personal information, how you can complain about a breach of your privacy, as well as further information about how we will manage your personal information.
Privacy Policy
This privacy policy applies to the collection, storage, use and disclosure of personal information by or on behalf of any Matthews Group entity trading as either Feathers Hotel, Buckingham Arms Hotel, Flagstaff Hotel, Mansfield Park Hotel, Maylands Hotel, Eyre Hotel, South Eastern Hotel, Park Hotel, Mt Gambier Hotel, Colhurst House or any other related entity (referred to in this policy as “Matthews Group”, “our”, “we” or “us”). Please read it carefully.
We are committed to protecting your personal information, and ensuring its privacy, accuracy and security. We handle your personal information in a responsible manner in accordance with the Privacy Act 1988 (Act) and the Australian Privacy Principles (APPs).
You do not have to provide us with your personal information. However, if you do not, we may not be able to conduct business with you.
By using any of our products or services, visiting our websites (www.matthewshotels.com.au and subsites) or giving us your personal information, you agree to your information being collected, stored, used and disclosed as set out in this Privacy Policy.
1. What do we mean by ‘personal information’?
References to ‘personal information’ or ‘sensitive information’ in this Privacy Policy have the following meanings: Personal information means information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether true or not, and whether or not recorded in a material form. Unless a contrary intent appears, in this Privacy Policy ‘personal information’ may also include one or both of the following, as defined in the Act: ‘credit information’ and ‘credit eligibility information’.
Sensitive information (a type of personal information) has the same meaning as in the Act. In summary, it means information or an opinion about an individual’s race or ethnic origins, political opinions and associations, religious beliefs or affiliations, philosophical beliefs, sexual preferences or practices, trade or professional associations and memberships, union membership, criminal record, health or genetic information or biometric information.
2. Collection of personal information
(a) Whose personal information do we collect?
We may collect your personal information from a range of sources, including from you, recruitment agencies, contractors, business partners and government agencies. For example, we may collect your personal information when you:
(i) request or acquire a product or service from us. For example, guests who reserve and acquire hotel accommodation, functions, conference and leisure facilities, and food and beverage products;
(ii) provide a service or product to us;
(iii) apply for employment with us; or
(iv) communicate with us via our website, by e-mail, telephone or in writing. Wherever reasonable and practicable, we collect personal information from the individual to whom the information relates. If you provide personal information about someone other than yourself, you agree that you have that person’s consent to provide the information for the purpose for which you provide it to us. You also agree that you have told the person about this Privacy Policy and where to find it.
We may collect personal information from other people and organisations. For example, if guests reserve accommodation through travel agents and third party owned accommodation websites.
(b) What types of personal information do we collect and hold?
The personal information we collect includes:
(i) names, addresses, e-mail addresses, phone numbers, other contact details, payment details including credit card information, guest identification, occupation, accommodation preferences, and other information to assist us in conducting our business, providing and marketing our products and services. For example, the personal information we collect from our guests who reserve or acquire hotel accommodation, functions, conference, leisure and hospitality facilities, and food and beverage products;
(ii) credit information, including identification information, repayment history information, the type and amount of credit, default information, court proceedings information, personal insolvency information, publicly available information about credit worthiness, opinions about serious credit infringements, and other personal information about an individual’s credit worthiness, such as credit ratings or scores;
(iii) information about staff and directors, as required in the normal course of human resource management and the operation of a business; and
(iv) information about current and previous Matthews Group suppliers and clients with whom Matthews Group has dealings.
We will only collect your sensitive information:
(v) if you have consented to us doing so – for example, as part of information collected about directors and employees for company and human resource management purposes. We may also collect limited health information, such as requirements of guests with dietary requirements or disability; or
(vi) where required or permitted by law.
(c) How do we collect personal information?
We only collect personal information by lawful and fair means. We usually collect personal information from:
(i) guests making hotel accommodation reservations;
(ii) guests booking our functions, conference, leisure and hospitality facilities;
(iii) face-to-face meetings, interviews and telephone calls;
(iv) business cards;
(v) electronic communications – for example, e-mails and attachments;
(vi) forms filled out by people, including as part of acquiring a product or service from us;
(vii) third parties – for example, from recruitment agencies and your representatives or agents; and
(viii) our website, including if you use it to contact us.
(d) Why do we collect personal information?
We collect the personal information:
(i) necessary for us to provide you with the products and services you have requested from us;
(ii) for marketing purposes and to provide you with information about products and services that may be of interest to you;
(iii) to improve the products and services we provide; and
(iv) to enable us to conduct our business, including managing any credit we have provided to you and meeting our legal and regulatory obligations. If you do not provide your personal information, we may not be able to supply the requested product or service, employ you or otherwise deal with you.
(e) How we deal with unsolicited personal information
If we receive personal information about you that we have not requested, and we determine that we could not have lawfully collected that information under the APPs had we asked for it, we will destroy or de-identify the information if it is lawful and reasonable to do so.
(f) Do you have to disclose your identity when dealing with us?
Where lawful and practicable, we will give you the option of interacting with us anonymously or using a pseudonym. It is not practicable for us to offer hotel accommodation to guests on an anonymous basis, and we require identification upon check-in.
3. Use and disclosure of personal information
(a) Use of personal information.
We only use your personal information for the purpose for which it was provided to us, for related purposes (for personal information excluding credit eligibility information), or as required or permitted by law. Such purposes include:
(i) in the ordinary course of conducting our business. For example, supplying or acquiring products and services, responding to your enquiries and feedback, and providing information about our events, news, publications and products and services that may be of interest to you;
(ii) market research and product and service development, so that we are able to better understand our customers’ needs and tailor our future products and services accordingly;
(iii) performing general administration, reporting and management functions. For example, invoicing and account management, payment processing, credit and risk management, training, quality assurance and managing suppliers;
(iv) employment-related purposes, such as recruiting and providing services to staff;
(v) as part of a sale (or proposed sale) of all or part of our business; and
(vi) other purposes related to or in connection with our business, including meeting our legal and contractual obligations to third parties and for internal corporate governance purposes.
(b) Disclosure of personal information.
We may disclose, and you consent to us disclosing, your personal information to third parties:
(i) engaged by us to provide products or services, or to undertake functions or activities, on our behalf. For example, processing payment information, debt recovery, managing databases, marketing, research and advertising;
(ii) that are authorised by you to receive information we hold, including where the third party is considering whether to become a guarantor for you;
(iii) that are our business partners, joint venturers, partners or agents;
(iv) as part of a sale (or proposed sale) of all or part of our business. For example, we may disclose information to our external advisers, to potential and actual bidders and to their external advisors;
(v) such as our external advisers, and government agencies. For example, where disclosure is reasonably required to obtain advice, prepare legal proceedings or investigate suspected unlawful activity or serious misconduct; or
(vi) as required or permitted by law. We may disclose, and you consent to us disclosing, your personal information to any of our related bodies corporate whether located in Australia or overseas. If we disclose your personal information to a related body corporate, your information will be collected, stored, used and disclosed in accordance with this Privacy Policy, the APPs and the Act.
(c) Marketing use and disclosure
We may use and disclose your personal information (other than sensitive information) to provide you with information about our products and services that we consider may be of interest to you. We use a third party service provider to manage our guest email database for marketing purposes, and we disclose guests’ contact details to that third party. You may opt out at any time if you do not, or no longer, wish to receive marketing and promotional material. You may do this by:
(i) contacting us via e-mail or in writing at the address below and requesting that we no longer send you marketing or promotional material; or
(ii) where applicable, clicking the “Unsubscribe” button.
(d) Use or disclosure of sensitive information.
We will only use or disclose your sensitive information for the purpose for which it was initially collected or for a directly related purpose, as required or permitted by law, or where you consent to the use or disclosure.
4. Disclosure of personal information overseas
We do not disclose personal information to third parties outside Australia, unless required or permitted by law.
5. How is my personal information kept secure?
(a) Security.
We take reasonable steps to protect your personal information from misuse, interference, loss and unauthorised access, modification and disclosure. Such steps include:
(i) physical security over paper-based and electronic data storage and premises;
(ii) computer and network security measures, including use of firewalls, password access and secure servers. We store all guest information in our Property Management System which is fully encrypted and secure;
(iii) restricting access to your personal information to employees and those acting on our behalf who are authorised and on a ‘need to know’ basis;
(iv) retaining your personal information for no longer than it is reasonably required, unless we are required by law to retain it for longer; and
(v) entering into confidentiality agreements with staff and third parties.
(b) Destruction and de-identification of personal information
Where we no longer require your personal information, including where we are no longer required by law to keep records relating to you, we will ensure that it is de-identified or destroyed.
6. Data quality, access and correction
(a) Quality
We take reasonable steps to ensure that your personal information is accurate, complete and up-to-date. However, we rely on you to advise us of any changes or corrections to the information we hold about you. If you consider that the information we hold about you is not accurate, complete or up-to-date, or if your information has changed, please let us know as soon as possible.
(b) Access to personal information
You may request access to the personal information we hold about you by contacting us. We will respond to your request within a reasonable time. We will provide you with access to the information we hold about you unless otherwise permitted or required by law. If we deny you access to the information, we will notify you of the basis for the denial unless an exception applies. Where reasonable and practicable, we will provide access to the information we hold about you in the manner you request. No fee applies for requesting access to information we hold about you. However, we reserve the right to charge a reasonable fee where we do provide access.
(c) Correction of personal information
If you believe that personal information we hold about you is incorrect, incomplete or not current, you may request that we update or correct your information by contacting us. We will deal with your request within a reasonable time. If we do not agree with the corrections you have requested (for example, because we consider that the information is already accurate, up to date, complete, relevant and not misleading), we are not required to make the corrections. However, where we refuse to do so, we will give you a written notice setting out the reasons.
7. Identifiers
We do not adopt, use or disclose government related identifiers except as required or permitted by law.
8. Complaints
If you have a complaint in relation to the collection, storage, use or disclosure of your personal information, please contact our Privacy Officer using the details below. You will need to provide us with details of your complaint, as well as any supporting evidence and information. We will review all complaints received and our Privacy Officer will respond to you. If you are not satisfied with our response, you may discuss your concerns with or complain to the Australian Privacy Commissioner via www.oaic.gov.au.
9. Changes to this Privacy Policy
We reserve the right to revise this Privacy Policy or any part of it from time to time. Please review this Policy periodically for changes. Your continued use of our website, products or services, requesting our assistance, or the provision of further personal information to us after this Privacy Policy has been revised, constitutes your acceptance of the revised Privacy Policy.
10. How to contact us
If you have any questions about this Privacy Policy, please contact Matthews Group’s Privacy Officer:
(a) by email to privacy@matthewshotels.com.au;
(b) by writing to:
Matthews Group
Privacy Officer
71-73 Fullarton Road
Kent Town SA 5067
(c) by telephone: (08) 8130 4500
Effective date: December 2015