Respecting your privacy

We respect your personal information, and this Privacy Policy explains how we handle it. The policy covers Mac Group Pty Ltd ACN [insert ACN] (Mac Group, we, our, us). It explains how we collect, use, store, and disclose personal information in line with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

If you are in a country that is a member of the European Economic Area (EEA), the EU General Data Protection Regulation 2016/679 (GDPR) governs how we collect, use, hold, process and disclose your personal information. Under the GDPR, we are a data controller. We make decisions on how and why your personal information is processed.

What personal information do we collect and hold?

General information
The types of information we may collect and hold include:
• identification and contact details such as your name, postal or email address, telephone number
• business information such as company name, role/title, and project details you share with us
• billing details required to process payments and issue invoices
• records of our communications with you (emails, forms, calls)
• website analytics and technical data (pages viewed, referring URLs, device/browser)

When the law authorises or requires us to collect information
We may collect information where required or authorised by law (for example, identity verification or tax record-keeping obligations).

What do we collect via your website activity?

If you use our website or online forms, we may monitor usage to verify your identity where needed, deliver information you request, and identify ways to improve our services.
If you start but don’t submit an online form, we may use the contact details you provided to offer help completing it. Unsubmitted form data is kept temporarily and then deleted.
We may collect information when you engage with us via social channels. For confidential matters, we’ll move the conversation to a secure channel.
To improve our products and services, we sometimes collect de-identified information from web users (for example IP address and general location) to maintain security and performance.

How we collect and hold your information

Where reasonable and practicable, we collect personal information directly from you. This may be when you complete a form, send us an email, call us, meet with us, or use our website. We also use electronic means such as email or SMS to communicate with you and verify details when appropriate.

How we collect your information from other sources

We may collect information about you from other sources as permitted by the Privacy Act, for example:
• public sources (such as public registers or social media) to update contact details
• your representatives (e.g. legal, financial, or other advisers) where relevant to our engagement
• service providers assisting us with operations (e.g. payment processing or analytics)

What if you don’t want to provide personal information?

If you choose not to provide requested information, it may be difficult for us to:
• respond to enquiries or provide services you’ve requested
• verify your identity or protect against fraud
• keep you informed about relevant services

How we store and protect your information

We store information in paper and electronic formats. We take reasonable steps to protect personal information from misuse, interference and loss, and from unauthorised access, modification or disclosure. Measures include access controls, secure passwords, encryption in transit where appropriate, and staff access on a need-to-know basis.
We may store personal information with reputable third-party providers (for example, Google Workspace, Xero, Monday.com, email and CRM tools). We use contractual arrangements and platform settings to help ensure appropriate protections are in place.

What happens when we no longer need your information?

We retain personal information only for as long as needed for our purposes or as required by law. When no longer required, we destroy or de-identify it.

How we use your personal information

Main reasons we collect, hold and use your information include to:
• provide business coaching, consulting, marketing and advisory services
• respond to enquiries, manage projects, and maintain client relationships
• process payments and issue invoices
• improve our website, services and client experience
• meet legal, regulatory and risk-management obligations

Marketing

We may use your personal information to let you know about services or insights that may interest you. You can opt out at any time by using the unsubscribe link in our emails or contacting us.

Other ways we use your information

We may also use information to:
• identify opportunities to improve our services
• run our business efficiently and perform general administration
• prevent and manage fraud, security issues or misconduct
• comply with laws, regulations or codes that apply to us
• any purpose to which you have consented

Who we share your personal information with

We may share your information with:
• your authorised representatives and advisers
• service providers, contractors and partners who assist us (for example hosting, analytics, CRM, email, payment processing, accounting and legal support)
• government and regulatory bodies as required or authorised by law
• any third party to which you have consented us sharing your information

Sharing outside of Australia

Some of our service providers store data in other countries (for example, globally distributed cloud platforms). Where we transfer personal information overseas, we take reasonable steps to ensure an adequate level of protection, such as contractual safeguards.
Because cloud storage can be accessed from various countries via the internet, it may not always be practicable to know in which country your information is held at a particular time.

Accessing your information

You can ask us for access to the personal information we hold about you. We’ll give you access unless a legal reason applies. We’ll provide access in the form you request where reasonable and may charge a small fee for retrieval where applicable (we’ll confirm first). If we refuse access, we’ll provide written reasons and explain how you can complain.

Correcting your information

If you believe information we hold about you is inaccurate, out-of-date, incomplete, irrelevant or misleading, please contact us and we’ll take reasonable steps to correct it. If we have disclosed incorrect information to others, you may ask us to notify them of the correction where it is reasonable and lawful to do so.

Your rights under GDPR

If you reside in the EEA, you may have rights to request access, correction, deletion, restriction or objection to processing, data portability, and to withdraw consent (where processing is based on consent). We may continue to process your information where we have another lawful basis to do so. If we refuse a request, we’ll explain why and how you can complain.

Legal grounds (GDPR)

We rely on one or more of the following grounds: performance of a contract, compliance with a legal obligation, consent, and our legitimate interests (including security, due diligence, business operations and direct marketing).

Anonymity and pseudonyms

For general enquiries, you may interact with us anonymously or using a pseudonym, where lawful and practicable. In many cases we will need your verified identity to provide services.

Government-related identifiers

Where we are required to collect government identifiers (for example, ABN or tax file number details in limited circumstances), we will only use or disclose them as authorised by law.

Complaints

If you have a complaint about how we handle your personal information, please contact us using the details below. We’ll acknowledge your complaint and aim to respond within five business days and resolve it as soon as practicable.
If you are not satisfied with our response, you can contact the Office of the Australian Information Commissioner (OAIC): www.oaic.gov.au, 1300 363 992.

Changes to this Privacy Policy

We may update this Policy from time to time. The latest version will be published on our website and takes effect from the date of posting.

Contact us

Mac Group
Email: Admin@macgroup.com.au
Website: www.macgroup.com.au
Address: Sunshine Coast, QLD, Australia