Woolworths Group (including Woolworths Group Limited ABN 88 000 014 675 and its related bodies corporate) is committed to compliance with privacy laws which apply to its businesses and which set out standards for the management of personal information. This policy outlines our personal information management practices.
There are some matters to which this policy does not apply. These are referred to below (see clause 9 below).
The personal information we collect and hold is what is reasonably necessary for our business functions and activities. When we collect and hold personal information, it is of the following kinds:
Some of our products and services require us to collect health information from you, for example our optical or insurance services. We also collect health information from you for the purpose of determining any public liability issues involving you. This information is only used to provide you with those services or to manage such issues.
Depending on the nature of your dealings with us, we may collect and hold other types of personal information. For example, information collected and held via our secure financial systems about the debit or credit card you might use for your purchases from us.
You generally have the option of not identifying yourself or of using a pseudonym when dealing with us. But not where this is impractical (for example when you shop online with us) or where the law or a court order provides otherwise.
Collection of personal information: When we collect personal information about you, we do so by making a record of it.
We do this when:
We may also collect personal information about you by accessing data from other sources and then analysing that data together with the information we already hold about you in order to learn more about your likely preferences and interests. When you visit our websites, social media pages or mobile applications or click on our advertisements on the online media of other companies, we may collect information about you using technology which is not apparent to you, for example “cookies”.
For information about our use of this technology, click on this link to view our Cookie Statement.
Most of the personal information we collect and hold about you is from your direct dealings with us. We may sometimes collect your personal information other than from you directly. For example from other suppliers who, in common with us, have a relationship with you.
Personal information we hold is generally stored in computer systems. These may be operated by us or by our service providers. In all cases, we have rigorous information security requirements aimed at eliminating risks of unauthorised access to, and loss, misuse or wrongful alteration of, personal information.
When we collect, hold and use your personal information, we do so primarily to sell and promote goods and services to you and to improve on the range of our offerings. For example:
We may collect, hold, use and disclose your personal information for other purposes which are within reasonable expectations or where permitted by law. You may opt out of our direct marketing to you. Our direct marketing materials will tell you how to do this.
We may anonymise and aggregate your personal information. We may do this for use and disclosure of the anonymous data to determine preferences and shopping patterns. We share this anonymised data with our trusted partners to assist them in marketing products and services to you that are likely to be relevant to your interests and preferences.
Access to personal information: We will provide you with access to any of your personal information we hold (except in limited circumstances recognised by law). If you wish to access your personal information or have an enquiry about privacy, please contact our Privacy Officer at: firstname.lastname@example.org or by calling us on 1300 908 631.
Alternatively, you can write to us at:
Woolworths Group Limited
PO Box 8000
BAULKHAM HILLS NSW 2153
Before we provide you with access to your personal information we may require some proof of identity. We may charge a reasonable fee for giving access to your personal information if your request requires substantial effort on our part.
Correction of personal information: If you need to correct your personal information, please contact our Privacy Officer at one of the above contact points.
If you wish to complain about a breach of the privacy rules that bind us, you may contact our Privacy Officer at one of the above contact points. We may ask you to put your complaint in writing and to provide details about it. We may discuss your complaint with our personnel and our service providers and others as appropriate.
Our Privacy Officer will investigate the matter and attempt to resolve it in a timely way. Our Privacy Officer will inform you in writing about the outcome of the investigation. If our Privacy Officer does not resolve your complaint to your satisfaction and no other complaint resolution procedures are agreed or required by law, our Privacy Officer will inform you that your complaint may be referred to the Privacy Commissioner for further investigation and will provide you with the Commissioner’s contact details.
It is our policy to require all of our overseas sharing of personal information to be done in a way which requires observance of strict privacy and security standards, both during transit and at the overseas destination. We may allow your personal information to be shared with those who are in countries other than your own location. We do this:
This is a policy. There may be additional privacy notices and terms relevant to you depending on the nature of your dealings with us and on our particular businesses. There are additional privacy terms in our loyalty program and club membership contracts and for use of our online sites, for example. We have separate charters concerning our employees – this policy does not apply to the personal information of our employees in their capacity as such.
More information about privacy law and privacy principles is available from the Privacy Commissioner. The Privacy Commissioner may be contacted at www.oaic.gov.au (email- email@example.com ) (Australia)
Last update of this policy: January 2018