This policy explains how Besus Pty Ltd (ABN: 88 608 558 032) operating as CYOS (Create Your Own Supplement) (We or Us) collect, store, use, disclose, maintain and destroy personal information.
We are bound by the Australian Privacy Principles in the Privacy Act 1998 (Cth) as amended (the Act). This policy was last updated 12 March 2014.
What’s the short version?
- We take steps to ensure individuals are aware when We collect their personal information or sensitive information
- We store information securely to prevent interference
- Individuals can access and/or correct personal information We hold about them
- We only disclose personal information to others in the normal course of business
- We may use personal information for direct marketing but We always provide a simple opt-out mechanism
- Individuals can complain to Us or the Office of the Australian Information Commissioner about interferences with their privacy
- Contact details for our privacy officer are at the end of this document
What is covered?
The information We collect and hold includes, but is not limited to, personal information and sensitive information about:
- Customers and potential customers
- Potential employees
- Independent contractors and potential contractors
- Other individuals who come in contact with Us
This policy does not cover employee records (within the meaning of the Act). We do not act as a credit provider.
means information or an opinion about an identified individual, or an individual who is reasonably identifiable whether the information or opinion is true or not, and whether the information or opinion is recorded in a material form or not.
means personal information relating to a person’s racial or ethnic origins, political origins, religion, education, occupation, trade union or other professional or trade association membership, sexual orientation, sexual practices, criminal record; and information about a person’s health or biometrics, or a person’s biometric templates..
How is Information Collected?
We normally collect personal information, including sensitive information, directly from individuals. We may do this by asking the individual to complete a form (e.g. an order form), asking them to respond to a request for information (e.g. a job application) or in the course of discussions with them.
We may also collect personal information automatically when individuals interact with Us. This may include:
- Information collected when an individual visits our website, including information about their web browser, cookies, information about what links are clicked and time spent on the website
- Information collected when an individual telephones Us, including their telephone number where available by caller ID.
We may also receive personal information about individuals from third parties. We will only do so where this is lawful and fair, and where it is not reasonably practicable for Us to acquire that information directly from the individual.
Whose information do We collect?
We do not normally collect personal information about individuals who simply visit our website or make general enquiries by telephone. Individuals are welcome to remain anonymous or use a pseudonym in these circumstances.
We collect personal information and sensitive information about our customers and prospective customers to enable us to deliver services to them and to maintain our relationship with them.
We also collect personal information and sensitive information about contractors, potential contractors and potential employees to enable us to determine whether to engage them, to work with them effectively and to maintain our relationship with them.
We may collect personal information from other individuals, in which case We will take reasonable steps to ensure they are aware of what information is collected and the purpose of collection.
How is information stored?
We may store personal information and sensitive information We collect about individuals in either soft or hard copy, or both. We take reasonable steps to ensure there is no unauthorised access to or interference with this information while We store it.
We store personal information as regular business records. These may be destroyed when no longer required. Records of transactions are normally kept for seven years.
How do We use personal information?
We only use personal information for the purpose for which it is collected or for related purposes. We only use sensitive information for the purpose for which it is collected or for directly related purposes.
We may use some personal information for direct marketing but We will always provide a simple opt-out mechanism and honour an individual’s request to not receive direct marketing materials from us.
When do We disclose personal information to others?
We will only disclose personal information to others for the purpose for which it is provided or a related purpose (for example, information may be given to a contractor to enable a payment to be processed or an order to be delivered).
We will not normally disclose personal or sensitive information to anyone overseas. If We disclose personal or sensitive information to an overseas recipient We will take reasonable steps to ensure they comply with the Australian Privacy Principles.
We may disclose personal or sensitive information to others where required or authorised by law, for example in response to a court order or police investigation.
How can an individual access or correct personal information We hold about them?
Individuals can request access to the personal information We hold about them by contacting our privacy officer using the details listed below. There is no fee for requesting access to personal information but We may choose to charge a reasonable fee to provide access to that information.
We will normally permit an individual to access their personal information, however if for some reason We do not We will explain why We have made that decision. We will normally respond to all requests within 30 days.
If an individual wishes to update the information We hold about them they can do so by contacting our privacy officer on the details listed below. There is no fee for requesting correction of personal information but We may choose to charge a reasonable fee to correct that information. We will normally respond to all requests within 30 days.
How can an individual complain about interferences with their privacy?
Individuals concerned about their privacy should contact our privacy officer on the details below. We will investigate all complaints and provide a response within 30 days.
We may indicate in that response that additional time is required to complete the investigation, in which case We will specify a timeframe for further communication.
Individuals may also make complaints about breaches of the Act to the Office of the Australian Information Commissioner. Details are available at
How can We be contacted?
Enquiries about privacy (including complaints) should be directed to:
The Privacy Officer,
Besus Pty Ltd T/A CYOS (Create Your Own Supplement)
Mail: 21/6 Production Road Canning Vale WA 6155 Australia
Phone: 08 625 27436