On this page
About this Policy
In accordance with the Australian Privacy Principles (APP’s) and any relevant state and territory legislation, this Policy outlines why and how we collect and use donors’ personal information and the processes we undertake in the event of questions, concerns, or complaints about the collection and or use of their information.
To whom does the policy apply
All Vision Australia staff, volunteers and third-party suppliers involved in collecting, storing, and using donor information have a responsibility to understand this Policy and actively observe the guiding principles.
Collecting Donor Details
We collect information to process donations and to ensure a complete and accurate record of a donor’s history and engagement with Vision Australia.
Donations can be made in several ways, including online, over the telephone, in person, via direct debit, via BPAY, or by submitting a donation form.
To make a donation with a credit card you must provide Vision Australia details of your credit card, including:
- credit card type;
- name on credit card;
- credit card number;
- expiry date; and
- CCV number (where available).
Vision Australia will not retain your credit card details for single payment donations. When you authorise Vision Australia to process regular (such as monthly) donations, your credit card details for payment processing will be stored in a PCI-DSS Level 1 compliant vault and only tokenized details will be stored in our in-house CRM (Customer Relationship Management).
Vision Australia will also collect and retain other information about donors in order to communicate with them and ensure a complete and accurate record of a donor’s history and engagement with Vision Australia. For example, we require a donor’s name, email address and postal address to provide a tax receipt or send information about the impact of a donation. We may also collect the following types of personal information:
- Personal information including name, pronouns, and date of birth.
- Contact details including postal address, telephone number and email address.
- Transaction details including authorisations and dates and amounts of transactions.
- Sensitive information about your health including details of your eye condition if you choose to provide this to us
- Interests and opinions.
- Activity with our digital services.
- Records of your communication and interaction with us.
- Your support for our work, like signing a petition, hosting an event, or participating in an event.
- Other areas of our work you might be interested in supporting; and
- Details and history of your communication preferences
Typically, we collect this information from donors directly; however, from time-to-time we also collect information in the following ways:
- automatically, for example when a donor clicks on a link of an email, visits a website which displays a Vision Australia advertisement, or engages with us online via social media platforms like Facebook.
- from a Vision Australia supply partner that we engage to assist us in our activities, for example via a telemarketing agency that we engage to make phone calls to donors on our behalf; and
- from an external source, for example via Australia Post to update existing donors mailing addresses, from public directories, or obtaining details for prospective donors from like-minded organisation’s or third-party suppliers.
As noted above, from time-to-time Vision Australia may obtain details for prospective donors from like-minded organisations or third-party suppliers. Prior to acquiring a list of prospective donors’ contact details, Vision Australia enters into an agreement with like-minded organisations or third-party suppliers to confirm that:
- the information on the list was obtained in accordance with the Australian Privacy Principles and/or that the list owner is held responsible if their disclosure of the data to Vision Australia or Vision Australia’s use of the data to contact prospective donors does not comply with the Australian Privacy Principles; and
- the supplier has provided the donors with the opportunity to have their details removed from the list.
Using and Sharing Donor Information
Vision Australia uses donor information to help meet expectations and deliver relevant information. This includes using information for the following purposes:
- To process donation payments.
- To provide refunds.
- To verify identity.
- To respond to enquiries.
- To assist us to better understand our donors; and, based on your anonymised profile, to market to similar people; and
- To keep donors up to date with information that may be of interest to them including via direct mail, email, SMS, Facebook, and other social media platforms.
Sometimes we require external suppliers to assist us in our activities and may provide donor information to them in order to achieve these activities. For example, printing letters to send to donors, processing donation forms, sending electronic communication on our behalf or making phone calls to prospective and current donors, or using your anonymised profile to market to similar people.
From time to time, we may also provide donors’ details to like-minded organisation’s that you may be interested in supporting. You can opt-out of this at any time. If you would prefer that we do not consider you for these kinds of communications, please get in touch with Vision Australia by emailing us at [email protected] or by phoning our National Contact Centre on 1300 84 74 66.
We may monitor and record communications with our donors (including email and telephone) for security, dispute resolution and training purposes. We will always let you know when a telephone conversation is being recorded. Vision Australia may need to store or use your information in a country other than Australia where local services are unavailable or cost prohibitive, for example utilising social media channels to communicate with our donors or when services provided by a third party utilise servers that are hosted overseas.
Securing and Sharing Donor Information
Vision Australia takes the security and confidentiality of donor information very seriously. We have systems and procedures in place to protect information. Vision Australia will take reasonable steps to protect donor information from misuse, interference and loss, unauthorised access, modification, or disclosure. Personal information held by Vision Australia is stored electronically in secure databases. Donor information is maintained in a secure environment, which can be accessed only by authorised personnel. Data transmission over the internet or information stored on servers accessible through the internet cannot be guaranteed to be fully secure.
Vision Australia takes reasonable steps to destroy or de-identify your personal information once we no longer need it or have been directly instructed by you to permanently remove or suppress your personal information.
When a donor contacts Vision Australia, we will ask them to confirm their identity by confirming the details we have on record, such as current address and phone number.
Physical copies of donor information, such as donation forms, are kept securely and destroyed in accordance with legal requirements if not required. Staff and volunteers with access to donor and donor information are required to sign our policies relating to privacy, and all staff and volunteers are required to have regular police checks.
Data Breach Notifications
Vision Australia will notify donors in the event that their personal information is involved in a data breach that is likely to result in serious harm. This notification will include recommendations about the steps a donor should take in response to the breach. Each suspected data breach reported to us will be assessed to determine whether it is likely to result in serious harm, and as a result require notification. We will also notify the Office of the Australian Information Commissioner (OAIC) of any data breach that is notifiable under current legislation, or we deem likely to result in serious harm.
Updating Donor Information and other inquiries
Donors have a right access personal information we hold about them, and a right to request that their personal information be corrected.
If a donor has a question, would like to request access to their information, would like to update/correct their information or inform us of their preferences including opting out of receiving future communication they can contact us:
If a prospective donor contacts Vision Australia to find out how we obtained their details, staff and volunteers are obliged to disclose this information. In particular, if Vision Australia obtained the prospective donor’s details from a list provided by a like-minded organization or a third-party supplier, Vision Australia will let the prospective donor know the name of the list and the supplier. The list supplier will be contacted by Vision Australia and informed of the inquiry. Should the prospective donor not wish to be contacted, a request for the name to be suppressed from future data supply will be submitted by Vision Australia to the list supplier. Vision Australia will also record the prospective donors’ details in a suppression list provided the person consents, to avoid communicating to them in the future. In addition, Vision Australia will provide the donor with the Australian Direct Marketing Association’s (ADMA) Do Not Call Register - contact phone number, which is 1300 792 958.
- Completing the Complaints and Suggestions for Improvement form on the Vision Australia website
- By phoning our National Contact Centre: 1300 84 74 66
- By email: [email protected]
Complaints and feedback will be handled respectfully, confidentially, promptly, and with no adverse consequences for the complainant. Vision Australia will ensure all complaints are investigated fully as part of our commitment to accountability, continuous improvement and transparency. Vision Australia will endeavour to respond to all complaints received within 30 days of receipt.
Complaints must be raised with Vision Australia first. However, if the donor is not satisfied with how Vision Australia has responded to the complaint, the donor may take the complaint to the Office of the Australian Information Commissioner (OAIC). The OAIC’s contact details are as follows:
Telephone: 1300 363 992
Post: GPO Box 5218, Sydney NSW 2001
Data breach: when information held by an organisation is compromised or lost or is accessed or disclosed without authorisation.
Australian Privacy Principles: The principles governing privacy and information management for all entities and organisations covered by the Privacy Act 1988.
Personal information is information or an opinion about you where your identity can be reasonably ascertained. Examples include but are not limited to; name, address, phone number, date of birth, bank account details, signature, email address.
Sensitive information is a subset of personal information that generally has a higher level of privacy protection, examples include but are not limited to; race or ethnic origin, sexual preferences, health information.
Created date: 11 December 2012
Last Review: July 2023
Level: Level 1
Prepared by: Vision Australia Financial Analyst
Approved by: Vision Australia Board of Directors
Next Review: November 2024
|Version||Prepared by||Approved by||Effective date||Reason for changes||Summary of changes|
|1.0||Vision Australia Financial Analyst||Vision Australia Board||Dec 2012|
|2.0||Fundraising and Compliance Teams||Vision Australia Board||May 2022||Full review||In line with APPs (Australian Privacy Principles)|
|3.0||Fundraising & Digital Teams||Leadership Team||July 2023||Partial review||Legal amends to allow for permissable re-targeting use of donor data - audience profiling|