We are required to comply with all applicable privacy laws and data collection laws, in all countries we operate in, including the Privacy Act 1988 (Cth) and the Australian Privacy Principles, (“Privacy Laws”).
Privacy Laws generally regulate the collection and use of "personal information", which includes information or an opinion about an identified individual or an individual who is reasonably identifiable.
We collect personal information by various means (including, but not limited to, when you fill in a form, send us an e-mail, enter a competition, order our products, speak to one of our representatives or deal with one of our affiliates, business partners, advertising partners, customers and other third parties). We generally collect personal information directly from you where this is reasonable and practical, but we may also collect personal information from third parties.
This information may include (but is not limited to) your name, e-mail and mailing addresses, contact numbers, date of birth, bank account and credit card details. We also collect information obtained as a result of reference, criminal or credit checks that you authorise us to carry out.
Other than in relation to people who directly work with or for us, we do not generally collect the following categories of sensitive information: information about your race or ethnic background, religion, trade union membership, political opinion, sexual preference or criminal record. We may collect health information about you from time to time. We will only collect sensitive information (including health information) with your prior consent.
We may also collect more information about how you interact with our websites and mobile applications, including (but not limited to) your web browser and version, device type, connection type, IP address, performance metrics and usage information, in order to help us to develop and improve our websites and mobile applications.
If you provide us with certain services, for example as a contractor or consultant, we may collect your personal information and, in some circumstances, sensitive information. Examples of where we collect this information include carrying out safety inductions, where we require you to provide driving records or medical certificates and if we carry out criminal record checks.
We use your personal information for the purpose for which it has been provided, any other purpose you have consented to and any other purpose permitted under the Privacy Laws. This may include using your personal information for the following purposes:
to provide access to, monitor, develop and improve our device-responsive websites and mobile applications, including to make these sites more user-friendly and relevant for your needs.
We may also use your personal information to tell you about the products and services of Coca-Cola Amatil or third parties. From time to time, we and our related entities, affiliates and business partners may contact you by mail, telephone, email or other electronic messaging services (such as text, voice, sound or image messages including using automated calling systems) with information about products and services (including discounts and special offers). If you no longer wish to receive marketing or promotional information from us and our affiliates and partners, you can unsubscribe at any time. Instructions on how to unsubscribe are set out in any marketing communication we send to you, or you can contact us through our Privacy Officer using the contact details below. Please allow a reasonable period of time for us to action any request to unsubscribe. There are certain messages relating to the goods and services we provide to you that cannot be unsubscribed from.
We will not sell any personal information that you give us to any third party.
We may disclose your personal information for the purposes for which we may use your information as described above. This may include such disclosures to:
We will also disclose your personal information where we are required or authorised by law to do so, including to respond to subpoenas, judicial processes or legitimate requests by law enforcement officials or government agencies or departments.
We may disclose your personal information to anyone who is considering acquiring an interest in our assets or businesses (or any part of them) as part of a due diligence or sale process.
We take reasonable steps to secure any personal information which we hold about you and to keep this information accurate and up-to-date. Personal information is stored either electronically or in hard copy and information security measures are in place to protect this information.
Our website does not provide facilities for the secure transmission of information across the internet. Users should be aware that there are inherent risks transmitting information across the internet.
We will take such steps that are reasonable in the circumstances (if any) to destroy or de-identify personal information when it is no longer required for the purpose(s) it was provided.
Many countries and their Privacy Laws have or are starting to establish data breach reporting regimes. We acknowledge the introduction of a mandatory data breach notification scheme which commenced in Australia on 22 February 2018. Where the Australian regime applies, in the event of an ‘eligible data breach’, the Office of the Australian Information Commission and any affected or at-risk individuals will be promptly notified when we have reasonable grounds to believe that there has been unauthorised access or disclosure of personal information, or that the information has been lost in a way that is likely to give rise to unauthorised access or disclosure. Generally speaking, we are only required to make a notification where there is a likely risk of serious harm, as a result of the unauthorised access or disclosure or where we have not been able to take sufficient remedial action before any serious harm results.
If we notify you of a breach, where possible we will provide recommendations as to the steps you should take regarding the breach.
You may request access or changes to your personal information held by us. To do this, please contact us through our Privacy Officer by sending an e-mail to us at email@example.com or call us on the numbers below. Any change relating to credit eligibility information or credit information must be submitted in writing to firstname.lastname@example.org.
There may be situations where we are not required to provide you with access to your personal information, such as where the request relates to an existing or anticipated legal proceeding or if your request is vexatious.
1800 203 526 if in Australia;
0800 262 226 if in New Zealand & Fiji;
(675) 473 8452 if in Papua New Guinea;
0800 100 2653 if in Indonesia
sending an e-mail to email@example.com; or
writing to the following address:
Coca-Cola Amatil Limited
Attention: Privacy Officer
L14, 40 Mount Street
North Sydney, NSW, 2060
Our Privacy Officer is responsible for coordinating the investigation of any complaints and resolving any such issues. The Privacy Officer will manage any complaints received in a timely manner and provide you with a response to your complaint. If you are not satisfied with our response, you may take your complaint to your local privacy regulator. In Australia this is the Office of the Australian Information Commissioner contactable by telephone on 1300 363 992 or by email to firstname.lastname@example.org.