Collection of personal information
The Norman Hotel collects information from patrons, suppliers and employees from various sources including, but not limited to, the following:
- information that you provide when you fill in a form,
- information that you provide when you enter a competition,
- information obtained when you present your personal identification for scanning upon entry to The Norman Hotel.
This information may include your name, e-mail and mailing addresses, contact numbers, license number and date of birth.
Use of personal information
The Norman Hotel uses your personal information for the purpose for which it has been collected, which may include the following:
- to identify patrons of The Norman Hotel, or
- to comply with legal obligations, or
- to accept your application to participate in promotions or competitions run by The Norman Hotel, or
- to assess your application for employment, or
- to provide you with details relating to the products and services offered by The Norman Hotel, in circumstances where you have expressed an interest in receiving such information.
Disclosure of information
We will only disclose your personal information to a third party where we are required or authorised to do so by law.
We do not sell, trade or rent your personal information to third parties.
Accuracy and security of personal information
We take all reasonable steps to ensure the security of the personal information you have provided to us by locking hard copies of such information in a password protected area and securely storing electronic information. We destroy personal information where its storage is no longer necessary.
We take all reasonable steps to ensure that the personal information we hold is accurate and up to date.
Notifiable Data Breaches (NDB)
The NDB scheme applies to all agencies and organisations with existing personal information security obligations under the (Privacy Act) from 22 February 2018.
The NDB scheme introduced an obligation to notify individuals whose personal information is involved in a data breach that is likely to result in serious harm. This notification must include recommendations about the steps individuals should take in response to the breach. The Australian Information Commissioner (Commissioner) must also be notified of eligible data breaches through the Notifiable Data Breach statement — Form.
We will conduct a quick assessment of any suspected data breach to determine whether it is likely to result in serious harm, and as a result require notification.
Further information is available at:
Access to your personal information
If you wish to make a request for access to, or correction of, personal information that we hold about you, or would like further details about how we manage your personal information, please contact our Privacy Officer using the following contact details:
Name of business Privacy Contact