Educational Assessment Australia (EAA) is a prime provider of quality educational measurement and assessment services in Australia, New Zealand, Asia and the Pacific region. It has been involved in educational measurement in Australia since 1967 and is the largest independent provider of school tests in the region.
EAA is one of the five principal business units within UNSW Global Pty Limited, the international education, training and consultancy arm of the University of New South Wales (UNSW). UNSW Global is a wholly-owned subsidiary of UNSW.
EAA seeks to protect the privacy of individuals through the protection of personal information in accordance with all relevant Privacy Principles.
This policy sets out how EAA collects, uses and discloses personal information, as well as how individuals may access their personal information.
Personal information is information or an opinion (including information or an opinion forming part of a database and whether or not recorded in a material form) about an individual whose identity is apparent or can reasonably be ascertained from the information or opinion.
As a general practice, information regarding students, consultants, contractors, customers or staff is not disclosed to a third party without that individual's consent. In the case of an emergency or in exceptional circumstances such as a legal requirement, the Group Executive or a delegated officer, at his or her discretion, may authorise the release of personal information.
Access to Personal Information
EAA has in place mechanisms and normal administrative practices which allow the routine handling of requests for access to information, such as statements of results or for alterations to information such as changes of address.
An individual may request access to their personal information or for their personal information to be amended so that it is accurate, complete and not misleading.
As EAA is a division of UNSW Global, the Privacy Officer at UNSW Global is the point of contact for requests for access to or alteration of, personal information under the Act.
The Privacy Officer can be contacted by:
- Email: firstname.lastname@example.org
- Telephone: (61 2) 8117 2001 between 9.00 and 5.00 Monday to Friday
- Mail: Privacy Officer, UNSW Global Pty Limited, 12-22 Rothschild Avenue, Rosebery NSW 2013 Australia
A person who has a complaint in relation to a privacy matter is entitled to request UNSW Global to carry out an internal review.
There are no fees for lodging an application but fees may be charged for the conduct of the review.
In most cases the Privacy Officer will conduct an internal review. Another officer of UNSW Global may deal with the review if the Privacy Officer is substantially involved in the matter, or if the subject of the matter would be more appropriately dealt with by someone other than the Privacy Officer. Internal reviews will be completed as soon as is reasonably practicable and within 60 days of the application being received by the Privacy Officer. Applicants will be advised of the finding of the internal review within 14 days of completion of the internal review.
The Privacy Commissioner will be notified by the UNSW Global Privacy Officer within 14 days of receiving an application for internal review and will be kept informed of the progress of the review through an interim briefing 30 days after the internal review has commenced. A summary of findings, which may include proposed actions, will also be provided to the Commissioner within 14 days of the completion of the internal review.
Result of a Review
As a result of the internal review, UNSW Global may do one or more of the following:
- Take no further action on the matter;
- Make a formal apology;
- Take such remedial action as it thinks appropriate;
- Provide undertakings that the conduct will not occur again;
- Implement administrative measures to ensure that the conduct will not occur again.
The Privacy Commissioner
Complaints can also be made directly to the Privacy Commissioner. However, individuals are encouraged to make a complaint to UNSW Global in the first instance. This gives UNSW Global the opportunity to resolve the complaint and be made aware of matters sooner that may need to be addressed within UNSW Global.
EAA will only collect personal information directly from the individual reasonably necessary for the purpose it is being collected. The method of information collection will be lawful, fair and not unreasonably intrusive.
The individual will be informed as to why their personal information is being collected, what will be done with it, the consequences of not supplying it (if any) and their right of access to, and correction of, the information.
Use and Disclosure
EAA will not use personal information for any purpose (the secondary purpose) other than the primary purpose of collection, unless it could be reasonably expected to be used for the secondary purpose, the individual has consented, there is an opt out option (applies to direct marketing), it is necessary for health research, there is a threat to life or health, it is required or authorised by law, or it is reasonably necessary for law enforcement.
EAA will take reasonable steps to ensure personal information is accurate, complete and up-to-date.
EAA will take reasonable steps to protect personal information from misuse, loss or unauthorised access, modification or disclosure. Personal Information will be disposed of securely when it is no longer of use.
Access and Correction
An individual has the right of access to their personal information, unless there is a threat to life or health or other people's privacy, the request is frivolous or vexatious, there are legal proceedings in train, negotiations would be prejudiced, access is unlawful, denying access is required or authorised by law, it would prejudice investigation of an unlawful activity or law enforcement or for national security reasons.If access is denied then a reason will be given.
Government identifiers such as Medicare numbers or Tax File numbers will not be used as an EAA identification number.
Where lawful and practicable, EAA will not require personal information. For example, EAA will not require a person visiting our website to provide us with personal information, unless they make a request which requires personal information to be disclosed in order to meet that request.
Trans-border data flows
EAA will not send personal information out of the country, unless the recipient is subject to information privacy laws substantially the same, the individual consents, it is necessary to perform the contract between the individual and the organisation or reasonable steps have been taken to ensure the recipient will deal with the information in line with policies in Australia.
EAA can only collect sensitive information if the individual has consented, collection is required by law, there is a threat to life or health or in relation to legal proceedings. Sensitive information is information about an individual's racial or ethnic origin, political opinions, membership of a political associations, religious beliefs or affiliations, philosophical beliefs, membership of a professional or trade association, membership of a trade union, sexual preferences or practices, criminal record or health information.
While users of the EAA website are covered by the same privacy principles, EAA will take the following further steps to protect personal information:
- We will destroy all identifying credit card numbers and expiry dates after the transaction has been completed.
- We will not use credit card details for any other purpose. However, we do retain your name and address to ensure all transactions are processed correctly and the appropriate service is delivered. From time to time we may use the name and address to inform you of new publications or information.