Privacy Policy

Who we are

We are Barapa Ltd (ABN 2 673 929 390).

References to ‘we’, ‘us’ or ‘our’ in this policy mean Barapa Ltd.

The purpose of this privacy policy

This privacy policy explains why we collect personal information, how we use and protect it, your rights to access and correct your information, and how to make a privacy complaint.

We are bound by laws governing the collection and use of personal information, including the Privacy Act 1988 (Cth) and applicable State and Territory legislation such as the Health Records Act 2001 (Vic), Health Records (Privacy and Access) Act 1997 (ACT), Health Records and Information Privacy Act 2002 (NSW), and the Health Information Privacy Code 1994 (New Zealand) (Privacy Laws).

We aim to be transparent about how we handle personal information. This policy is reviewed annually and updated as required. The most current version is available from us on request.

Personal information and sensitive information

In this policy:

  • Personal information means information that identifies you, or from which you can reasonably be identified.
  • Sensitive information is a subset of personal information and includes information about your health, health services provided to you, and related matters. Sensitive information receives a higher level of protection under Privacy Laws.

Unless stated otherwise, references to personal information include sensitive information.

Who this policy applies to

This privacy policy applies to:

  • individuals who engage with Barapa Ltd and whose personal information we collect;
  • individuals whose personal information is collected in connection with products or services we provide; and
  • service providers, contractors, applicants and prospective employees whose personal information is collected in the course of our activities.

The types of personal information we may collect

The personal information we collect depends on your relationship with us and may include:

  • identifying details such as name, date of birth and employment details;
  • identity verification information (for example, driver’s licence details);
  • contact details such as residential address, phone numbers and email address;
  • government-issued identifiers where required by law;
  • financial information such as bank account or payment details;
  • sensitive information, including health-related information you provide to us;
  • information about your interests, activities or program participation;
  • technical information such as IP address or device identifiers for security, fraud prevention and analytics; and
  • information about your use of our websites or digital services, including through cookies where permitted by your device settings.

You may access some parts of our website without accepting cookies, however functionality may be limited.

Anonymity and identification

Where lawful and practicable, you may deal with us anonymously or using a pseudonym. However, in many circumstances we need to identify you in order to provide services. If you choose not to provide required personal information, we may be unable to provide some or all services. We will tell you which information is mandatory and which is optional.

How we collect personal information

We collect personal information by lawful and fair means, including:

  • when you complete or partially complete application or enquiry forms;
  • when you contact us in person, by phone, email, post or online;
  • when you visit premises we operate from; and
  • when you visit or use our websites or services.

We may also collect information from third parties where appropriate, including employers, government agencies, advisers, service providers, publicly available sources, or where you have consented.

How we hold and protect personal information

We store personal information securely and use physical, technical and administrative safeguards to protect it from misuse, loss or unauthorised access. Our employees and contractors are required to comply with confidentiality and privacy obligations.

We take reasonable steps to ensure personal information is accurate, complete, up to date and relevant.

Retention and disposal of personal information

We retain personal information only for as long as necessary to provide services and meet legal and business obligations. When no longer required, information is securely destroyed or permanently de‑identified. This may mean older records are no longer available upon request.

Accessing your personal information

You may request access to your personal information at any time. We aim to respond within 30 days. Access is generally provided free of charge unless the request is particularly complex, in which case we will advise you of any fee before proceeding.

We may need to verify your identity before providing access and may refuse access where permitted by law.

Why we collect and use personal information

We collect and use personal information to:

  • manage our relationship with you;
  • provide products and services;
  • process payments and transactions;
  • communicate with you;
  • prevent fraud and ensure security;
  • improve our services and operations;
  • conduct analytics and research;
  • meet legal and regulatory obligations; and
  • any other purpose authorised or required by law.

We may use personal information for training and quality assurance unless you request otherwise.

Disclosure of personal information

We may disclose personal information within Australia to:

  • service providers and professional advisers;
  • payment processors and financial institutions;
  • government agencies where required or authorised by law; and
  • other parties where you have consented or where disclosure is permitted by law.

Data breaches

If we become aware of a data breach that is likely to result in serious harm, we will notify affected individuals and regulators in accordance with the Notifiable Data Breaches scheme and take steps to reduce potential harm.

Direct marketing

Where permitted by law, we may use your personal information to send marketing communications. You can opt out at any time by contacting us. Opting out of marketing will not affect service-related communications.

How we communicate with you

We generally communicate by email where an email address has been provided. You may contact us to change your communication preferences.

Complaints and contact details

If you have concerns about how we handle your personal information, please contact our Privacy Officer.

We will acknowledge complaints within 5 business days and aim to resolve them within 30 days. If you are not satisfied, you may lodge a complaint with the Office of the Australian Information Commissioner.

Contact details:

Barapa Ltd
Email: ceo@barapa@org.au
Phone: 0448 013 284

Cookies

Our websites may use cookies to improve functionality and user experience. You can disable cookies via your browser settings, noting that some features may not function correctly.

Accessibility and support

Support services are available for language assistance, hearing or speech impairment and vision impairment through relevant national services.