The Australian Privacy Commissioner has required that privacy policies be simple and easy to read.
You’ll see there are some prompts in the document which require your confirmation or input.
(a) the kinds of personal information that the entity collects and holds;
(b) how the entity collects and holds personal information;
(c) the purposes for which the entity collects, holds, uses and discloses personal information;
(d) how an individual may access personal information about the individual that is held by the entity and seek the correction of such information;
(e) how an individual may complain about a breach of the Australian Privacy Principles, or a registered APP code (if any) that binds the entity, and how the entity will deal with such a complaint;
(f) whether the entity is likely to disclose personal information to overseas recipients;
(g) if the entity is likely to disclose personal information to overseas recipients—the countries in which such recipients are likely to be located if it is practicable to specify those countries in the policy.”
The policy we now deals with each of those matters.
APP 1.5 requires that an entity must take such steps as are reasonable in the circumstances to make its policy available:
(a) free of charge; and
(b) in such form as appropriate.