Privacy policy

Coeliac Australia Limited (Coeliac Australia, us, we, our) is committed to protecting your privacy and handling your personal information in accordance with the Privacy Act 1988 (Cth) (Privacy Act) and the Australian Privacy Principles (APPs).

This Privacy Policy applies to the collection, storage, use and disclosure of your personal information by us, including information collected via our website, online forms, digital platforms, email communications and other electronic means.

We will only collect, store, use or disclose information that personally identifies you as set out in this Privacy Policy or as permitted by the Privacy Act.

• may collect and hold the following kinds of personal information about members, affiliates and subscribers: name, contact details, date of birth, gender, communications between us, transactional information and payment details, and sensitive information (such as health information relevant to supporting your membership or participation, including coeliac disease diagnosis or medically required gluten free diet and related conditions);
• may collect and hold the following kinds of personal information about contractors, service providers and suppliers: name, job title, business contact details, financial information and banking details;
• in the context of donations, may collect financial details (including banking details);
• in recruitment, may collect: name, contact details, financial details, date of birth, citizenship, employment history, references, criminal record checks, working with children checks, driver’s licence information, education history, professional memberships, and health information where relevant.

You may interact with us anonymously or using a pseudonym where practicable. However, this may not be possible where we are required by law to identify you or where it is impracticable for us to provide services without identification.

We use social media and digital communication platforms such as Facebook, Instagram, LinkedIn and similar services to communicate with the public.

When you interact with us via these platforms, we may collect your personal information. We only use it to communicate with you and the public. The platform provider will also handle your information in accordance with its own privacy policy.

These platforms may store or process information overseas.

• providing membership services;
• maintaining and managing our relationship with you;
• responding to enquiries and feedback;
• maintaining member and affiliate registers;
• statistical research and analysis;
• fundraising and appeals;
• communicating about services, developments and events;
• assessing employment, volunteer and contractor applications;
• managing service provider relationships;
• outsourcing functions to third-party providers (such as mailing, printing, IT, CRM, payment processing and marketing services);
• complying with legal and regulatory obligations; and
• other purposes to which you consent.

• email service providers;
• cloud storage and IT systems;
• website hosting and analytics providers (including Google Analytics);
• social media platforms; and
• digital marketing platforms.
• These providers may store or process data in multiple countries.

We use analytics, cookies and similar technologies, including Google Analytics, to collect information about website usage, improve performance, maintain security and enhance user experience.

This may include information such as IP address, device type, browser type and pages visited.

You may disable cookies through your browser settings. You can also opt out of Google Analytics using the Google Analytics Opt-out Browser Add-on.

We may use your personal information to send you information about our services, events, fundraising activities and updates via post, telephone, email, SMS or other electronic communications.

You may opt out at any time by contacting us. If you opt out of marketing communications, we may still send you essential membership or service-related information.

We take reasonable steps to ensure your personal information is accurate, complete and up to date. Please contact us if you believe any information is incorrect and we will take reasonable steps to correct it.

We take reasonable steps to protect your personal information from misuse, interference, loss and unauthorised access, modification or disclosure.

We use technical, administrative and physical safeguards, including secure storage systems, access controls, encryption where appropriate, and password-protected systems.

We may retain your contact details after your membership ends to keep you informed about our work, research developments and fundraising activities, unless you request otherwise.

We will notify affected individuals and regulators of eligible data breaches in accordance with the Privacy Act and Notifiable Data Breaches scheme.

You have the right to request access to personal information we hold about you and request correction if it is inaccurate, out of date, incomplete, irrelevant or misleading.

We will respond within a reasonable period and provide access where permitted by law. We may charge a reasonable fee for access.

Requests can be made to our Privacy Officer:

Privacy Officer
Coeliac Australia Limited
Suite 903, Level 9/52 Alfred St S
Milsons Point NSW 2061
Email: info@coeliac.org.au
Phone: (02) 9487 5088 or 1300 458 836

If you have a complaint about how we have handled your personal information, please contact us using the details above.

We will assess and investigate your complaint and respond within a reasonable timeframe. Where appropriate, complaints will be escalated to a senior staff member.

We handle privacy complaints in accordance with our internal dispute resolution processes.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

We may update this Privacy Policy from time to time. The current version will always be available on our website.