Privacy Notice: Secure Processing of Identity Information
Effective Date: 21/4//2025
Last Updated: 21/4/2025
Special Technology Services is committed to protecting your personal information and ensuring it is handled with the highest standards of privacy and security in accordance with Australian privacy law(including the Privacy Act 1988 (Cth) and the Australian Privacy Principles), as well as applicable international data protection laws, including the General Data Protection Regulation (GDPR) where relevant.
⸻
1. Purpose of Collection
We collect and process identity information strictly for the following lawful purposes:
• To verify your identity before providing services;
• To prevent fraud, identity misuse, and cyberstalking;
• To meet legal obligations and contractual requirements;
• To ensure the secure delivery of privacy consulting services.
⸻
2. Types of Identity Information Collected
We may collect the following forms of identity information:
• Full name, date of birth, and contact details;
• Government-issued identification documents (e.g. passport, driver licence);
• Biometric data (e.g. facial recognition, fingerprint) for verification purposes only;
• Proof of address or residency;
• Unique identifiers for MFA (multi-factor authentication) and encrypted access.
⸻
3. How Your Information Is Protected
All identity data is handled using strong privacy and security controls:
• AES-256 encryption is used for storing and transmitting sensitive information.
• Multi-factor authentication (MFA), biometric verification, and physical security keys are implemented for access control.
• Access is strictly limited to authorised personnel on a need-to-know basis.
• Data is stored in secure environments compliant with Australian and international security standards.
⸻
4. Legal Basis for Processing
Our legal basis for collecting and processing identity information includes:
• Consent – where required, you will be asked to give explicit permission;
• Contractual necessity – to provide services you have requested;
• Legal obligations – for compliance with regulations;
• Legitimate interests – such as fraud prevention and identity protection.
⸻
5. Disclosure of Personal Information
We do not sell or rent your identity data. Your information may only be shared:
• With identity verification providers under strict contractual safeguards;
• With legal authorities if required by law;
• With your explicit consent.
All third-party providers are required to adhere to data protection standards equivalent to the Australian Privacy Principles or the GDPR.
⸻
6. Your Rights
You have the right to:
• Access your personal information;
• Request corrections or deletions;
• Withdraw consent at any time (where processing is based on consent);
• Lodge a complaint with the Office of the Australian Information Commissioner (OAIC) or relevant international authority.
⸻
7. Data Retention
Identity information is retained only as long as necessary to fulfill the purpose of collection, comply with legal requirements, or as specified in our service agreement. After this, the data is securely destroyed or anonymised.
⸻
8. Contact Us
For any questions or to exercise your rights, please contact:
Special Technology Services
+61 432 342 584