GeoSyntiq Pty Ltd is an Australian consulting business.

Contact: contact@geosyntiq.com
ABN/ACN: [insert details]

Terms used in this privacy statement have the meanings given to them in the Privacy Act 1988 (Cth) unless otherwise stated. Any reference to:

• "we", "us" or "our" should be understood as a reference to GeoSyntiq Pty Ltd; and

• "you" or "your" should be understood as a reference to a data subject whose personal data we process for the purposes described in this privacy statement.

We collect only what we need to operate our business, run this website, respond to enquiries, provide consulting services, manage records, and comply with legal, regulatory, and insurance obligations.

If you only browse our website, Squarespace and related website tools may collect limited technical and usage information. If you contact us or become a client, we may collect the information you provide to us.

We do not sell personal information.

This website may collect personal information to support Squarespace analytics, including:

Information about your browser, network, and device

Web pages you visited prior to coming to this website

Your IP address

This information may also include details about your use of this website, including:

Clicks

Internal links

Pages visited

Scrolling

Searches

Timestamps

We provide this information to Squarespace, our website analytics provider, to learn about site traffic and activity.

We may collect personal data from a range of sources, including:

• directly from you when you contact us, engage us, or otherwise interact with us;

• indirectly from third parties, such as your organisation, your representatives, publicly available sources, and our clients;

• from clients where we process personal data in connection with the services we provide;

• from regulators, public authorities, or professional bodies; and

• from service providers and other organisations that support our business.

Where we ask you to provide personal data directly, it is generally your choice whether to do so. However, if you choose not to provide certain information, this may limit our ability to provide services, respond to you, stay in contact, enter into or perform agreements, involve you in relevant activities, or help you exercise your rights.

If you provide us with personal data about another person, you are responsible for ensuring that you have the right to do so and that you comply with any applicable legal obligations. This includes, where necessary, making sure that the individual understands that their information may be provided to us and shared with our service providers for relevant purposes.

The personal information we collect, the way we use it, and the legal basis on which we rely will depend on your relationship with us and the reason we are handling the information.

We will only use personal information where we are permitted to do so under applicable law. We do not use personal information for purposes that are unrelated to the purpose for which it was collected, unless the further use is permitted by law, you have consented, or another lawful basis or exception applies.

Where the UK GDPR or EU GDPR applies, we may rely on one or more of the following lawful bases:

• Legitimate interests — where processing is necessary for our legitimate interests, or the legitimate interests of a third party, provided those interests are not overridden by your interests, rights or freedoms. This corresponds to Article 6(1)(f) of the EU GDPR, or the equivalent provisions of the UK GDPR.

• Legal or regulatory obligations — where processing is necessary for us to comply with a legal, regulatory or professional obligation. This corresponds to Article 6(1)(c) of the EU GDPR, or the equivalent provisions of the UK GDPR.

• Contractual necessity — where processing is necessary to perform a contract with you, or to take steps at your request before entering into a contract. This corresponds to Article 6(1)(b) of the EU GDPR, or the equivalent provisions of the UK GDPR.

• Consent — where we ask for your consent for a specific activity, such as certain marketing communications or the use of non-essential cookies where consent is required. Where we rely on consent, you may withdraw that consent at any time by contacting us using the details in the Contacting us section.

Under the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles, where they apply, we will generally collect personal information only where it is reasonably necessary for our functions or activities, or where another basis is permitted by law. Sensitive information will generally only be collected with consent, unless an exception applies.

We will take reasonable steps to notify you about the collection of your personal information, including why we collect it, how we use it, who we may disclose it to, and how you can contact us about access, correction or complaints. We will use and disclose personal information for the purpose for which it was collected, or for a related purpose you would reasonably expect, unless you have consented or another permitted exception applies.

We do not sell personal information.

We do not expect to use personal information for automated decision-making that produces legal or similarly significant effects about you. If this changes, we will update this policy and provide any notices required by applicable law.

Where personal information is transferred or disclosed overseas, we will take reasonable steps required by applicable law to protect that information. This may include using reputable service providers, contractual safeguards, technical controls, and other appropriate measures.

To the extent that privacy or data protection laws other than the UK GDPR, EU GDPR or Australian Privacy Act apply, we will handle personal information in accordance with those laws where they apply to our activities.

o the extent that our handling of your personal information is subject to the GDPR, the UK GDPR, the Australian Privacy Act 1988 (Cth), the Australian Privacy Principles or other applicable privacy or data protection laws, you may have rights in relation to that information. These rights vary depending on the law that applies, your location, the nature of the information and the reason we hold it. To exercise any applicable rights, please contact us using the details set out in the Contacting us section.

You may have the right to request access to personal information or personal data we hold about you. This right is subject to applicable law and any relevant exemptions.

You may ask us to correct or complete information that is inaccurate, out of date, incomplete, irrelevant or misleading. Under the Australian Privacy Principles, where they apply, we must take reasonable steps to correct personal information we hold so that it is accurate, up to date, complete, relevant and not misleading.

Where GDPR or UK GDPR applies, you may, in certain circumstances, ask us to delete your personal data. We may not be able to delete information where we are required or permitted to retain it for legal reasons.

Where the GDPR or UK GDPR applies, you may, in certain circumstances, object to our processing of your personal data or ask us to restrict how we use it.

If we rely on your consent to handle your personal information or personal data, you may withdraw that consent at any time.

Where GDPR or UK GDPR applies, you may have the right to receive certain personal data you have provided to us in a structured, commonly used and machine-readable format, where we process that data by automated means and the relevant legal requirements are met.

We aim to respond to legitimate rights requests within the timeframe required by applicable law. Under the Australian Privacy Principles, individuals have rights to access and correct personal information in certain circumstances, including under APP 12 and APP 13. Where UK or EU data protection law applies, we will respond within the relevant statutory time limits, unless an extension is available because the request is complex.

We respect your privacy rights and want you to feel confident about how we handle your personal information. If you have a question, complaint or concern about the way we collect, use, disclose, store or protect your personal information, please contact us using the details below so that we can try to resolve the issue with you. Where the Australian Privacy Act 1988 (Cth) applies, this includes concerns about how we handle personal information in accordance with the Australian Privacy Principles, including access, correction, use, disclosure and security of personal information. You may also have the right to complain to the Office of the Australian Information Commissioner, although the OAIC generally expects you to raise your complaint with us first and give us an opportunity to respond. If UK or EU data protection law applies, you may also have the right to complain to the UK Information Commissioner’s Office, an EU supervisory authority, or another applicable local data protection authority. If you are unsure which privacy or data protection authority applies to you, please contact us and we will try to assist.

How to contact us

If you have any questions about this Privacy Statement, wish to make a privacy complaint, or want to exercise any rights referred to in this Privacy Statement, please contact us at:

Email: contact@geosyntiq.com