On 1 July 2009 the Information Privacy Act 2009 (the IP Act) commenced. The IP Act includes the Information Privacy principles (IPPs), which apply to the University.
IPP 5 – Providing information about documents containing personal information places an obligation to take steps to ensure that people are aware of the types of personal information held by the University, where they are held, and how an individual can access their personal information.
This privacy plan details how the University meets its obligations to manage personal information in accordance with the IP Act generally and with the obligations of IPP 5 specifically.
Types of personal information
In pursuit of the core activities of research, teaching and learning, and through community engagement and carrying out its administrative functions, the University accumulates a large amount of personal information concerning staff, students and other persons and is required to hold certain records of factual information, both for internal use and to meet its statutory obligations.
The University recognises that all students and staff and other persons, both past and present, are entitled to a legitimate expectation that the University will collect, store, manage, use and disclose all personal information held about them in accordance with all relevant legislation guidelines and standards.
The University deals with the following categories of personal information: