Privacy Policy

Policy Scope & Context

The purpose of this Privacy Policy is to ensure the IntoWork Group and its subsidiary businesses comply with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs) when handling personal information.
We are committed to protecting the privacy of all workers, clients, contractors, and stakeholders. This policy applies to all businesses within the Group.

The IntoWork Group is a diversified organisation providing services across:

• Employment Services – including apprenticeships, traineeships, disability employment services, and training support.
• Education & Training – delivering nationally recognised qualifications and skills programs.
• Community & Support Services – disability support, community care, and allied workforce services.

This policy applies to:

• All IntoWork Group companies, workers, contractors, volunteers, and board members.
• All personal information collected from workers, clients, host employers, suppliers, and other stakeholders in connection with business operations.
• All physical and digital records maintained by the Group.

Policy Statement

It is recognised that the management of business and personal information includes the collection, maintenance, security, use and disclosure of the information.

IntoWork Australia acknowledges the obligation to protect the privacy and information of our clients and staff in accordance with privacy legislation and the Australian Privacy Principles.
It is the policy of IntoWork Australia and our businesses that:

1. Personal and business information is managed in accordance with the privacy legislation, the Australian Privacy Principles and the IntoWork Information Security Management System
2. Privacy risk is included in the risk register of each business and the risk managed with the implementation of a risk treatment plan to achieve the objectives of this policy
3. A person with appropriate knowledge and experience in the requirements of the Australian Privacy Principles has a defined role to act as the businesses’ Privacy Officer
4. A Privacy Statement is implemented and maintained by businesses to achieve the objective of this policy and the management of personal information specific to their operations
5. The IntoWork Australia Privacy Policy and the Privacy Statement are made available on the business’s website
6. Documented procedures are implemented and maintained by businesses for providing access to an individual’s personal information and for making a privacy inquiry or complaint
7. Management and staff involved in the management of information are provided with appropriate information and instruction for the implementation of the Australian Privacy Principles
8. The personal information management systems are periodically reviewed as a basis for continual improvement of its suitability and effectiveness

Implementation of this policy at each IntoWork Australia business is the responsibility of their senior management. The maintenance and review of this policy is the responsibility of the Group CEO. The review will be conducted in consultation with the senior management of IntoWork Australia businesses.

This policy has been developed in consultation with interested parties and with consideration to access and equity principles and legislative requirements.