International Study Centre | Lancaster University
Apply

DATE OF ISSUE: April 2024

Australia Privacy Notice

INTO University Partnerships Group

Supplementary Privacy Notice for Users of our Services based in Australia

This supplementary Privacy Notice outlines INTO’s personal information handling practices if you are resident in Australia; these practices apply to the collection, use, disclosure and handling of personal information by the INTO University Partnerships Group.

This Privacy Notice supplements our other Privacy Notice; it is not intended to supersede or override it. In the event of any conflict or inconsistency between the provisions of this supplementary Notice and our other Privacy Notice, the provisions of this supplementary Notice shall prevail.

Introduction

In this notice, the terms "we", "our", and "us" refer to INTO University Partnerships Limited and IUP2 LLP, both of One Gloucester Place, Brighton BN1 4AA (ICO registration numbers Z3504921 and ZA032598 respectively). INTO University Partnerships Limited, its subsidiaries and affiliates (together “INTO”, individually an “INTO Entity”) is committed to protecting your privacy.

This supplementary Privacy Notice covers information collected through our websites:lancaster-isc.com andINTO Study andINTO Global, as well asINTO Partner Portal, and we reserve the right to update this notice at any time by changing it as it applies to your use of our services.

For Residents or Data Subjects in Australia

When we collect and use personal information about you, we may be subject to the applicable laws including the Privacy Act 1988 (the Act) and acknowledge the Australian Privacy Principles (APPs) contained in the Act. Below you will find the additional specific provisions applicable to you as a resident or data subject in Australia.

Collection and use of personal information

INTO only collects personal information which is reasonably necessary, for one or more of our activities or services, and will collect your personal information in several different ways, depending on our relationship and interactions with you. Collection of personal information can include when you submit a completed form or application, make an enquiry, respond to a survey that we are conducting, interact with one of our social media accounts, or when registering to attend an event that we are organising.

For more details, please refer to our Privacy Notice where you will find a description of the various categories of personal information handled by us, and further information about how your personal information is collected, and how your personal information may be used by us.

Sensitive information

If it is necessary for a specific service, we may also collect and use information which is sensitive information under the Act as set out in our Privacy Notice. Under the Act, “sensitive information” includes but is not limited to information or an opinion about an individual’s racial or ethnic origin, religious belief, or criminal record, as well as their health information.

However, we will only collect and use your sensitive information if you agree to provide it to us, or when you authorise us to obtain it from a third party. We will only use sensitive information in accordance with the Act and for the purpose for which it is provided.

Disclosure of personal information to an Overseas Recipient

We may transfer your personal information to selected external third-parties or to INTO entities located outside Australia, as indicated in our Privacy Notice. Please note that some of our third-party service providers may include cloud-based service providers who store or process personal information on our behalf within or outside Australia.

INTO shares your personal information overseas using measures that ensure the strictest privacy and security standards, during transit and at the overseas location. We take reasonable steps to ensure that the overseas recipients of your personal information are bound by a substantially similar or comparable privacy standards.

Information about events and our services

We may contact you via email, SMS or other means to provide you with updated information about events which we believe may be of interest to you or to provide other information about our services. If you do not wish to receive such information, please send us an email to privacy@intoglobal.com or complete our Online Rights Request form

The information we keep about you

You have a right to request access to or correction of your personal information held by us. If you wish to access, correct or update any personal information we may hold about you, please send us an email to privacy@intoglobal.com or complete our Online Rights Request form

We will need to ask for specific information from you to be able to deal with your request. This is a security measure designed to ensure that your personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask for further information in relation to any request you make to speed up our response.

Storage and security of your personal information

INTO will keep your personal data for as long as necessary to fulfil the purposes we collected it for, including satisfying any legal or reporting requirements. We will then destroy personal information in a secure manner or take steps to de-identify the personal information we hold when it is no longer needed, or when we are lawfully authorised or required to do so.

The information security measures that INTO has in place are summarised in our Privacy Notice. We take reasonable steps to protect the security of your personal information from both internal and external threats through access security and monitoring controls.

Notifiable data breaches (NDB) scheme

In the event of any loss, or unauthorised access or disclosure of personal information that is likely to result in serious harm to an individual whose personal information is involved, either INTO will investigate or it may work with its partner university to support investigations. INTO will also notify affected individuals and the Australian Information Commissioner as soon as practicable, in accordance with the requirements of the Act. More information about the NDB scheme can be found here.

Complaints

If you have any questions or concerns about our collection, use or disclosure of your personal information, or if you believe that we have not complied with the Act, please contact us as set out below. Our Data Protection Officer will investigate your complaint and determine whether a breach has occurred and what action, if any, to take. When contacting us, please provide as much detail as possible in relation to the query, issue or complaint.

We will take any privacy complaint seriously and aim to resolve such complaints in a timely and efficient manner; our target response time is 30 days. We request that you cooperate with us during this process and provide us with relevant information we may require.

If you remain dissatisfied, you can also make a formal complaint to the Office of the Australian Information Commissioner (which is the regulator responsible for privacy in Australia). Their contact details can be found here.

Contact us

Please direct any comments or questions about this notice to INTO’s Data Protection Officer by email to privacy@intoglobal.com or in writing to the Data Protection Officer, INTO University Partnerships Limited, One, Gloucester Place, Brighton, East Sussex, BN1 4AA, United Kingdom.

Thank you for taking the time to read this supplementary Privacy Notice.