Home » Student Resources » Forms and Policies » APP Policy
TRAINIX is committed to maintaining the privacy and confidentiality of its RTO personnel and participant records. TRAINIX complies with the Privacy Act 1988 including the 13 Australian Privacy Principles (APPs) as outlined in the Privacy Amendment (Enhancing Privacy Protection) Act 2012.
As a component of our risk management practices, TRAINIX has conducted a Privacy Impact Assessment for all operations. Mitigation actions from this risk assessment have been implemented for the management of privacy risks at each stage of the information lifecycle, including collection, use, disclosure, storage, destruction, and de-identification.
Providing an overall framework for our privacy practices, TRAINIX has developed and implemented this APP Privacy Policy.
TRAINIX manages personal information in an open and transparent way. This is evident in the implementation of practices, procedures and system we outline in this policy, that ensure our compliance with the APPs and any binding registered APP code and provide suitable procedures for TRAINIX personnel to be able to deal with related inquiries and complaints that may be received from time to time.
The following sections of this policy outline how we manage personal information.
Purposes for information collection, retention, use and disclosure
TRAINIX retains a record of personal information about all individuals with whom we undertake any form of business activity. TRAINIX must collect, hold, use and disclose information from our clients and stakeholders for a range of purposes, including but not limited to:
As a government registered training organisation, regulated by the Australian Skills Quality Authority, TRAINIX is required to collect, hold, use and disclose a wide range of personal and sensitive information on participants in nationally recognised training programs. This information requirement is outlined in the National Vocational Education and Training Regulator Act 2011 and associated legislative instruments. In particular, the legislative instruments:
It is noted that TRAINIX is also bound by various State Government Acts requiring similar information collection, use and disclosure (particularly Education Act(s), Vocational Education & Training Act(s) and Traineeship & Apprenticeships Act(s) relevant to state jurisdictions of TRAINIX operations).
Individuals are advised that due to these legal requirements, TRAINIX discloses information held on individuals for valid purposes to a range of entities including but not limited to:
Kinds of personal information collected and held
The following types of personal information are generally collected, depending on the need for service delivery:
The following types of sensitive information may also be collected and held:
How personal information is collected
TRAINIX’s usual approach to collecting personal information is to collect any required information directly from the individuals concerned. This may include the use of forms (such as enrolment forms or service delivery records) and the use of web-based systems (such as online enquiry or enrolment forms, web portals or internal operating systems).
TRAINIX does receive solicited and unsolicited information from third party sources in undertaking service delivery activities. This may include information from such entities as:
How personal information is held
TRAINIX’s usual approach to holding personal information includes robust storage and security measures at all times. Information on collection is:
Only authorised personnel are provided with login information to our student management system, with system access limited to only those relevant to their specific role. For more information please go to the student management system (aXcelerate) information security policy page.
Destruction of paper-based records occurs as soon as practicable, through the use of secure shredding and destruction services at all TRAINIX sites.
Our RTO records, in the event of our organisation ceasing to operate the required personal information on record for individuals undertaking nationally recognised training with us would be transferred to the Australian Skills Quality Authority, as required by law.
Accessing and seeking correction of personal information
TRAINIX confirms all individuals have a right to request access to their personal information held and to request its correction at any time. In order to request access to personal records, individuals are to make contact with:
A number of third parties, other than the individual, may request access to an individual’s personal information. Such third parties may include employers, Governments (Commonwealth, State or Local) and various other stakeholders.
In all cases where access is requested, TRAINIX will ensure that:
Complaints about a breach of the APPs or a binding registered APP code
If an individual feels that TRAINIX may have breached one of the APPs or a binding registered APP Privacy Complaints Procedure below for further information.
Making our APP Privacy Policy available
TRAINIX provides our APP Privacy Policy available free of charge, with all information being publicly available from the Privacy link on our website at www.trainix.com.au. This website information is designed to be accessible as per web publishing accessibility guidelines, to ensure access is available to individuals with special needs (such as individuals with a vision impairment).
In addition, this APP Privacy Policy is:
If, in the unlikely event the APP Privacy Policy is not able to be provided in a particular format requested by an individual, we will explain the circumstances around this issue with the requester and seek to ensure that another appropriate method is provided.
Review and Update of this APP Privacy Policy
TRAINIX reviews this APP Privacy Policy:
Where this policy is updated, changes to the policy are widely communicated to stakeholders through internal personnel communications, meetings, training and documentation, and externally through publishing of the policy on TRAINIX’s website and other relevant documentation (such as our Student Handbook) for clients.
Individuals may deal with us by using a name, term or descriptor that is different to the individual’s actual name wherever possible. This includes using generic email addresses that does not contain an individual’s actual name, when individuals may access a public component of our website or enquiry forms.
Requiring identification
TRAINIX must require and confirm identification however in-service delivery to individuals for nationally recognised course programs (Forklift & Order Picker training & Assessment).
We are authorised by Australian law to deal only with individuals who have appropriately identified themselves. That is, it is a Condition of Registration for all RTOs under the National Vocational Education and Training Regulator Act 2011 and WorkSafe Victoria Conditions of Authorisation for Registered Training Organisations that we identify individuals and their specific individual needs on commencement of service delivery, and collect and disclose Australian Vocational Education and Training Management of Information Statistical Standard (AVETMISS) data on all individuals enrolled in nationally recognised training programs.
Other legal requirements, as noted earlier in this policy, also require considerable identification arrangements.
There are also other occasions also within our service delivery where an individual may not have the option of dealing anonymously or by pseudonym, as identification is practically required for us to effectively support an individual’s request or need.
TRAINIX only collects personal information that is reasonably necessary for our business activities.
We only collect sensitive information in cases where the individual consents to the sensitive information being collected, except in cases where we are required to collect this information by law, such as outlined earlier in this policy.
All information we collect is collected only by lawful and fair means.
We only collect solicited information directly from the individual concerned unless it is unreasonable or impracticable for the personal information to only be collected in this manner.
TRAINIX may from time to time receive unsolicited personal information. Where this occurs, we promptly review the information to decide whether or not we could have collected the information for the purpose of our business activities. Where this is the case, we may hold, use and disclose the information appropriately as per the practices outlined in this policy.
Where we could not have collected this information (by law or for a valid business purpose) we immediately destroy or de-identify the information (unless it would be unlawful to do so).
Whenever TRAINIX collects personal information about an individual, we take reasonable steps to notify the individual of the details of the information collection or otherwise ensure the individual is aware of those matters. This notification occurs at or before the time of collection, or as soon as practicable afterwards.
Our notifications to individuals on data collection include:
Where possible, we ensure that the individual confirms their understanding of these details, such as through signed declarations, website form acceptance of details or in person through questioning.
TRAINIX only uses or discloses personal information it holds about an individual for the particular primary purposes for which the information was collected, or secondary purposes in cases where:
Requirement to make a written note of use or disclosure for this secondary purpose
If TRAINIX uses or discloses personal information in accordance with an ‘enforcement related activity’ we will make a written note of the use or disclosure, including the following details:
TRAINIX does not use or disclose the personal information that it holds about an individual for the purpose of direct marketing, unless:
On each of our direct marketing communications, TRAINIX provides a prominent statement that the individual may request to opt out of future communications, and how to do so.
An individual may also request us at any stage not to use or disclose their personal information for the purpose of direct marketing, or to facilitate direct marketing by other organisations. We comply with any request by an individual promptly and undertake any required actions for free.
We also, on request, notify an individual of our source of their personal information used or disclosed for the purpose of direct marketing unless it is unreasonable or impracticable to do so.
Before TRAINIX discloses personal information about an individual to any overseas recipient, we undertake take reasonable steps to ensure that the recipient does not breach any privacy matters in relation to that information.
TRAINIX does not adopt, use or disclose a government related identifier related to an individual except:
TRAINIX takes reasonable steps to ensure that the personal information it collects is accurate, up-to-date and complete. We also take reasonable steps to ensure that the personal information we use or disclose is, having regard to the purpose of the use or disclosure, accurate, up-to-date, complete and relevant. This is particularly important where:
We take steps to ensure personal information is factually correct. In cases of an opinion, we ensure information takes into account competing facts and views and makes an informed assessment, providing it is clear this is an opinion. Information is confirmed up-to-date at the point in time to which the personal information relates.
Quality measures in place supporting these requirements include:
TRAINIX takes active measures to consider whether we are able to retain personal information we hold, and also to ensure the security of personal information we hold. This includes reasonable steps to protect the information from misuse, interference and loss, as well as unauthorised access, modification or disclosure.
We destroy or de-identify personal information held once the information is no longer needed for any purpose for which the information may be legally used or disclosed.
Access to TRAINIX offices and work areas is limited to our personnel only – visitors to our premises must be authorised by relevant personnel and are accompanied at all times. With regard to any information in a paper-based form, we maintain storage of records in an appropriately secure place to which only authorised individuals have access.
We conduct ongoing internal audits (at least annually and as needed) of the adequacy and currency of security and access practices, procedures and systems implemented.
Where TRAINIX holds personal information about an individual, we provide that individual access to the information on their request. In processing requests, we:
TRAINIX takes reasonable steps to correct personal information we hold, to ensure it is accurate, up-to-date, complete, relevant and not misleading, having regard to the purpose for which it is held.
Individual Requests
On an individual’s request, we:
In cases where we refuse to update personal information, we:
Correcting at TRAINIX’s initiative
We take reasonable steps to correct personal information we hold in cases where we are satisfied that the personal information held is inaccurate, out-of-date, incomplete, irrelevant or misleading (that is, the information is faulty). This awareness may occur through collection of updated information, in notification from third parties or through other means.
If an individual feels that TRAINIX has breached its obligations in the handling, use or disclosure of their personal information, they may raise a complaint. We encourage individuals to discuss the situation with their TRAINIX representative in the first instance, before making a complaint.
The complaints handling process is as follows:
Office of the Australian Information Commissioner
When investigating a complaint, the OAIC will initially attempt to conciliate the complaint, before considering the exercise of other complaint resolution powers.
Alternatively, if the complaint relates to a non-privacy matter, or should individuals choose to do so, a complaint may also be lodged with the ASQA complaints handing service for complaints against RTOs:
Trainix acknowledges Aboriginal and Torres Strait Islander People as the Traditional Custodians of this land.
ASQA RTO ID 45470 | RTO & All Individual Assessors are approved by WorkSafe Victoria |A.B.N. 52 992 331 243