PRIVACY POLICY

MCC Group Pty Ltd

This Privacy Policy sets out how MCC Group Pty Ltd ABN 54 619 282 727 (We, us) uses your personal information.

We recognise the importance of your privacy and understand your concerns about its security. We are committed to protecting any personal information about you that we hold in accordance with the Privacy Act 1988 (Cth) (Privacy Act) and the Australian Privacy Principles.

Types of information we collect

We may collect and hold personal information about you that personally identifies you, including:

• your name;
• your Australian Business Number (ABN) and/or Australian Company Number (ACN);
• your address;
• your phone number, including the phone numbers of the key persons within your organisation;
• your email address, including the email addresses of the key persons within your organisation;
• in certain circumstances (for example, if you supply us with services, or if we need to process a refund to you), your bank account details or credit card details;
• details of any licences you hold; and
• other information relevant to providing you with the goods and services you request us to supply.

How we collect personal information

We collect personal information directly from you through the use of our standard forms, over the internet, via email, or via telephone and in person.

How we hold personal information

We store your personal information in electronic form. We take all reasonable measures to ensure that your personal information is stored securely to protect it from unauthorised access, misuse, destruction, modification or disclosure.

We implement various physical and electronic security measures to protect your personal information. For example:

• all personal information obtain by us is stored on Microsoft Azure servers;
• where personal information is stored on accounting and bookkeeping software, access to that information is restricted to certain on those personnel who require the information;
• two-factor authentication is required for any person to access personal information; and
• all of our employees who have access to your personal information have agreed to be bound by obligations of confidentiality.

We do not keep hard copies of any personal information.

Your personal information may be stored by us on servers located overseas. Where your information is stored on servers overseas, we will take all reasonable steps to ensure that the is stored securely to protect it from unauthorised access, misuse, destruction, modification or disclosure

Why we collect personal information

We collect personal information from you for the following purposes:

• to provide goods and services to you;
• to receive goods and services from you; and
• to notify you, via direct marketing, of our product and service offerings from time to time.

How we disclose your personal information

We generally only use or disclose personal information about you for the purposes for which it was collected.

However, we may disclose your personal information:

• to our related entities or professional advisors to facilitate our internal business processes;
• to an insurance provider, where disclosure of that information is required for the purposes of making an insurance claim, or obtaining specific insurance coverage in respect of goods or services provided by us on your behalf; and
• to government departments, for example the Australian Taxation Office, but only where the disclosure of such information is specifically requested by the government department.

We do not ordinarily disclose your personal information to overseas recipients.

Access and correction

You have the right to request access to your personal information by making a written request to us. We will respond to your request within a reasonable period and may charge you a reasonable fee for processing your request.

We reserve the right to decline your request in circumstances permitted by the Privacy Act. If we do, we will provide you with written notice that sets out our reasons for refusal.

If you believe that any personal information we hold about you is not accurate, is incomplete or is out of date, please notify us as soon as possible. We will take all reasonable steps to correct our records so that they are accurate and up to date.

To obtain access to your information or request a correction, please make a request in writing to our Privacy Officer. Our Privacy Officer can be contacted as follows:

Email: privacy@mcc.group

Address: PO Box 949, Emerald, Queensland 4720

Phone: 0402 228 706

Complaints

If you have any complaints about a breach of the Privacy Act, the Australian Privacy Principles or the terms of this privacy policy, please contact our Privacy Officer as follows:

Email: privacy@mcc.group

Address: PO Box 949, Emerald, Queensland 4720

Phone: 0402 228 706

If you are not happy with our response, you may complain directly to the Australian Information Commissioner.