Our Privacy Policy

The types of personal information that we collect and hold about you will depend on the circumstances for which the information is being collected, including whether we collect the information from you as a customer, prospective customer, non-customer, job applicant or in some other capacity.

Below we have described the types of personal information we generally collect.

1.1 Information about customers

We collect and hold a range of personal information that is reasonably necessary for the purpose of supplying our business customers (or individuals who are customers of the third parties to whom we provide services, like electricity retailers) (customers) with services and products (directly or, where applicable, on behalf of third parties). The kinds of personal information we collect for this purpose may include your name, contact information (including your home or business address, postal address, email address and telephone numbers), signature (when you sign a contract with us) and your particular requirements for and use of our services and products.

We also collect information about the nature of your premises, for example whether you are a residential or business customer. In the case of businesses acquiring our products or services, we usually also collect the name, title and contact information of a contact person in the business.

In addition, we collect and store your National Meter Identifier (NMI), NMI address (the meter location which may be the same as your home or business address) and associated GPS coordinates of your meter or other electricity network and related assets located on your premises. A NMI is an identification number that helps us to identify your particular connection points and related electricity meters.

We do all that we reasonably can to ensure that the personal information we collect is accurate, up-to-date and complete.

Generally, it is necessary for us to collect your personal details so that we can provide you with our products or services.

1.2 Information about our third-party service providers, suppliers and other stakeholders

We may collect your personal information when we do business with you (for example, if you work for one of our third-party service providers, suppliers, or other stakeholders).

The type of personal information that we collect will vary depending on the circumstances of collection and the purpose for which we are dealing with you, but will typically include personal details such as your name, title, email address, postal address and other business contact details (such as your LinkedIn profile) or your bank account details where payments are made from you to us (or from us to you); information about your employer or an organisation you represent; your professional details (such as your job title); any additional personal information you provide to us, or authorise us to collect, as part of your interaction with us; and other contact details regarding our interactions and transactions with you and the organisation you represent.

1.3 Metering data and asset records

We collect (where you are a business customer of ours, or where we are appointed by your electricity network or retailer to do so) regulated and unregulated data from the meter at your home or business premises (Metering Data). For these purposes, regulated data is data that is governed by the National Electricity Rules, while unregulated data is not (but it may be subject to other laws, such as the Privacy Act).

Metering Data is collected via the meter at your home or business premises, to record your electricity use, and the status and the quality of electricity service. Metering Data information is handled in accordance with the National Electricity Rules and the Market Operations Rules where they apply, as well as in accordance with the Privacy Act.

We may also take and store photographic records of your electricity-related assets (such as your meter, meter box, service wires or connection box) for our own internal purposes, including safety, compliance and investigatory purposes.

1.4 Projects and customer surveys

As part of our commitment to develop new products and services to meet the needs of our customers, we may undertake projects and pilot studies relating to our services and activities. From time to time we may also undertake customer surveys to collect statistics about our customers for research and product development purposes. The kinds of personal information we collect will include personal information you provide to us or to our third party service providers or consultants, and personal information which you authorise us to collect, as part of your interaction with us. This may include the personal information which is contained in any response to a customer survey that you complete or otherwise provide to us or any other information that you provide via our website or other communications with us.

1.5 Sensitive information

Generally, we will not collect ‘sensitive information’ (as defined in the Privacy Act) about you, such as details of your race, political beliefs, religion or health. However, we do collect sensitive information in certain circumstances, including:

• if you notify us that you use particular health-related appliances in your household that rely on uninterrupted electricity supply;
• to ensure the safety and wellbeing of any individuals working on site (including to record details of any health or safety incidents or accidents).
We will only collect and use sensitive information where you have provided your consent, or as otherwise permitted or required by law.

1.6 Other information

Sometimes, we need to collect personal information about individuals who are not customers, third party service providers, suppliers or other stakeholders.

We may also collect CCTV footage from time to time, for detecting and determining criminal behaviour in or around our sites, conducting incident investigations, and for monitoring the safety and security of our personnel, contractors, community and our sites.

We may also collect your credit card details when you are making payments to us. If we are required to make a payment to you, we may need to collect your bank account details.

1.7 Website information

When you visit our website, we collect information about your use of our website, some of which may identify you. We may have access to information about your internet browser (including browser type and version), device, operating system, the address of the referring site, your internet protocol (IP) address, the number of visitors to our website at a given time, how long you spend on each page, your geographic location (to city level only), and clickstream information (that is, your usage of our website). If you are logged into your Google Account while browsing our website, and depending on your Google Account settings, we may also collect demographic information on your age and gender.

The main ways in which we collect your personal information are as described below.

2.1 Direct collection of personal information

We generally collect your personal information directly from you. For example, we may collect personal information about you when you deal with us over the telephone, send us correspondence (whether by letter, fax, message, text or email), have contact with us in person, through social media or when you complete a form we or our service providers send you or when you use our website. If we do not obtain the information requested, we may not be able to assist you or provide you with the products or services requested or fulfil another applicable purpose of collection.

2.2 Indirect collection of personal information

There may be occasions when we obtain personal information about you from your electricity retailer, electricity network provider, or another customer of ours. For example, where your electricity retailer appoints us to install metering equipment at your premises or appoints us to provide Metering Data as required or otherwise permitted under laws and regulations. If you work for one of our third-party service providers, suppliers, business customers or other stakeholders, we may need to obtain your contact details from them.
We may also collect your personal information through our recruitment processes. We may also collect relevant information from sources such as LinkedIn and other professional websites or through social media.

In some circumstances, we may also need to obtain information relating to you from a credit reporting agency, or from a publicly maintained record. If we collect personal information about you in these ways, we will take reasonable steps to make you aware of the relevant matters set out in this policy. Finally, where a third-party service provider, supplier or other stakeholder provides us with information we have not asked for, we will destroy or de-identify the information unless we would have been entitled to collect or retain such information under or in accordance with the APPs.

If you provide personal information to us about someone else (such as one of your employees if you are one of our service providers or a business customer, or a member of your household or someone with whom you have dealings) you must have that person’s consent or otherwise be entitled to disclose that information to us. You should let the person know that they can access this policy via our website or by calling us using the contact details set out in section 7 below. If the information you provide is sensitive information, then you will need to obtain the consent of the person to whom it relates before you provide it to us.

2.3 Storage of personal information

We take reasonable steps to ensure that personal information held by us is secure from risks such as loss and interference, or unauthorised access, destruction, use, modification or disclosure. Our IT systems require user authentication and we use firewalls and encryption (security measures for the internet). We also maintain physical security over our paper files, data stores and premises, including locks and security systems at our premises. Access to personal information is restricted to our authorised personnel, who need to access those records as part of their job.

We may engage third party data storage providers to store and secure our data, including personal information of our customers, suppliers and other stakeholders on the basis that the information is properly secured and protected.

2.4 Retention and destruction of personal information

We take reasonable steps to destroy or de-identify personal information that we will no longer need for a permitted purpose under privacy law, unless we are required or permitted by law or a court/tribunal order to retain the information.

We collect, hold, use and disclose personal information for the purpose of providing you with products or services (or seeking to improve them), or with other information you have requested, and for purposes related to this. To carry out those purposes, we may need to use and disclose personal information to establish and maintain any necessary accounts or records, credit checks, invoicing and billing systems, debt recovery and market research, and to develop new and better products and services. We will use your personal information only for the purpose for which it was collected, unless we have your consent or the different use is permitted under the APPs.

From time to time we may undertake customer surveys to collect statistics for research and product development purposes or undertake projects and pilot studies relating to our services and activities (including energy efficiency, demand management, smart electricity grid initiatives or community activities). This collection of personal information is part of our commitment to develop new products and services to meet the needs of our customers.

Metering Data is collected to record your electricity use and for other network or metering related purposes, such as trials or more formal arrangements which involve the collection, disclosure and use of Metering Data.

3.1 Direct marketing

We may also collect, hold, use and disclose personal information for the purpose of telling you from time to time about our services, products or promotions. If at any time you no longer wish to be told about our new services, products or promotions, please contact us on 1300 760 626 or online here.

You may also unsubscribe via the unsubscribe facility (if provided) in any electronic message we send to you. If you opt-out of receiving marketing material from us, we may still contact you in relation to our ongoing relationship with you (including in relation to the products and services we are providing to you).

3.2 Will we give your personal information to anyone else?

We do not sell your personal information to third parties (except for Metering Data in limited circumstances where this is not prohibited by law). However, in the circumstances described below, we may disclose your personal information to other people or entities. We only make such additional disclosures where you provide consent or where such disclosures are otherwise required or permitted by law.

(a) Outsourcing and advice

We may disclose personal information to third parties to which we contract out specialised functions, such as mailing houses, printing companies, data storage companies, metering service providers, information technology providers, research companies, mercantile agents, and legal and accounting services. If we do disclose personal information to third party contractors or advisers under outsourcing or contracting arrangements, we do all we reasonably can to maintain tight control over their use of such information so that those contractors:

• are required to comply with the APPs when they handle your personal information; and
• are only authorised to use personal information to provide the services or to perform the functions required by us.

(b) Research and surveys

We may disclose personal information to third parties (such as government agencies and research partners) for reporting purposes in connection with the projects, trials or customer satisfaction surveys we conduct from time to time, subject to and in accordance with applicable laws. Your personal information is de-identified where possible prior to disclosure. For example, we may provide your Metering Data to the Australian Bureau of Statistics where directed to do so, for census and other research purposes, and we will take reasonable efforts to minimise disclosure of your personal information.

(c) Disclosures required by law

For legal reasons, and in special circumstances, we may need to make disclosures of your personal information. For example, this may occur where we are directed to do so under arrangements in place to make sure that customers continue to receive electricity supply in the event of retailer failure. We may also be required to disclose your personal information to law enforcement agencies, government agencies, courts or external advisors. For example, we may be asked to disclose certain personal information about an individual to assist the police with an investigation into criminal activities. Our policy is to make such disclosures only in accordance with the Privacy Act.

We may also be required to disclose certain information under other legislative requirements, including energy industry laws and rules.

We take all reasonable steps to host personal information within Australia. However, we may disclose your personal information to overseas recipients, including to third party service providers or research organisations located outside of Australia, or engage third party data storage providers located offshore to store and secure our data, including our customer information, where permitted by laws, regulations or authorisations binding on us. Those locations include the USA, Philippines, India and New Zealand. We may also disclose your personal information such as your credit card details outside Australia if you use a payment method (including a credit card issued overseas), which requires us to communicate information about you internationally (for example, to your bank if it is outside Australia).

We only ever disclose your personal information offshore in accordance with the Privacy Act and the APPs. Generally, this means we will take reasonable steps to ensure your personal information is treated securely and in accordance with the Privacy Act.

Other circumstances where we may disclose your personal information to an overseas recipient (or allow them access to it) include where you have provided your consent to the disclosure or where we are otherwise required or permitted to do so under the Privacy Act.