At www.cirii.net, we understand your concerns about privacy and the security of your personal information. Your privacy is important to us and we are bound by the Privacy Act 1988 (Cth) and the Dutch DPA. We are committed to protecting the personal information that we hold about you.
www.cirii.net collects personal information that is reasonably necessary for us to provide you news, updates and invitations (if you are opted in to receive this information), provide financial products and services and to administer these products. The kind of personal information we collect and hold will depend upon the type of information, products and services that you request from us and may include:
We may disclose your personal information to:
www.cirii.net does not disclose personal information to persons or entities in foreign countries.
In some cases, www.cirii.net may utilise 'Cloud' storage solutions for data storage purposes, and the relevant servers may be located overseas. Please see the 'Storage and security of information' section of this policy for further details.
Likewise, in some cases, personal information may be used (or accessed) by third party service providers located overseas to perform administrative functions in relation to your annuity. This may occur where you have purchased your annuity via a platform provider that is supplying administrative services to www.cirii.net (and the platform provider is using a third party administrator located overseas to perform certain administrative tasks in relation to investors using the platform). In such cases, www.cirii.net will review these arrangements to ensure appropriate security protections are in place to protect the personal information of its annuitants.
We may contract out some of our administrative and support functions such as mailing, settlement services, product administration services, document and data storage, background checking, online identity validation or identity verification services to external service providers from time to time. Only information necessary for the service provider to carry out their function will be provided and will be subject to confidentiality clauses in the relevant services agreement.
Personal information such as your contact details may change from time-to-time and we ask that you keep us informed of any changes by notifying us. Where you have previously provided information about another person related to your investment (such as a beneficial owner, beneficiary or reversionary) and the information is no longer current, you must provide up-to-date information.
Changes to some details, such as a change of name, may require additional documentation to verify the change. Additionally, some changes may be required to be made on a specific form (such as a change of bank account from which direct debits are deducted). www.cirii.net is unable to change any account details through email. To change your contact information please download and complete the Change of details form (or go to 'Our Products' then select 'Forms').
Please see the 'Contacting us' section of this policy if you would like to request an update to the personal information we hold about you or your nominated beneficiary or reversionary.
www.cirii.net stores your personal information in a combination of hard copy and electronic records. These are held on our premises and systems as well as offsite using trusted third parties.
We take reasonable steps to protect personal information from loss, interference or misuse, and unauthorised access, modification, or disclosure, such as:
Training our staff on how to protect your personal information.
When we engage third parties to handle or store data, we put in place arrangements to protect your information.
When you access our login websites, we encrypt data sent from you to our systems to prevent unauthorised access.
We use firewalls, intrusion detection and virus scanning tools to prevent viruses and third parties from accessing our systems.
When we send your electronic data to other organisation, we use secure networks or encryption
We employ physical security measures, such as alarms, cameras, guards and other controls to prevent unauthorised access.
Where personal information is no longer required to be retained, we will take such steps as are reasonable in the circumstances to de-identify the information or put it beyond use.
Generally, www.cirii.net will provide you with access to your personal information that we hold, unless a particular exception applies, such as where:
If a request for access would divulge a commercially sensitive decision-making process, then www.cirii.net may provide an explanation rather than direct access to the information.
Please see the "Contacting us" section if you would like to make an access request to the personal information we hold about you.
If we become aware that the personal information we hold about you is inaccurate, incomplete, misleading or irrelevant, then we will take reasonable steps to amend it. If we receive a request from you to correct your information, then we will seek to correct it within 30 days. If you and www.cirii.net disagree about the accuracy, completeness or currency of our records, then you have the right to request that we note your disagreement on those records.
Please see the 'Contacting us' section of this policy if you would like to request an update to the personal information we hold about you.
www.cirii.net does not use any government-issued identifiers (such as TFNs, Medicare numbers and Drivers Licence numbers) for use as its own identifier for individuals. Instead, www.cirii.net issued numbers such as investor numbers and account numbers are used to identify individuals and the www.cirii.net products and services they obtain.
Given legal requirements on financial institutions to identify their customers, in most situations www.cirii.net is unable to allow you to transact with it on the basis of anonymity (including the use of pseudonym). Access to the www.cirii.net public website and some other interactions with www.cirii.net may be done anonymously, or in the case of general enquiries, using a pseudonym. However, we may not be able to respond to your queries unless you provide us with certain information.
www.cirii.net will not use your personal information for direct marketing purposes unless:
www.cirii.net will not use any sensitive information collected from you for direct marketing purposes. To opt-out of receiving direct marketing, please contact us (see 'Contacting us' section of this policy). If you have purchased your annuity via a platform provider, please refer to the relevant PDS or contact your platform directly to find out how to opt-out.
We will collect some information from you when you visit the www.cirii.net website . Your use of the facilities and services available through the website will determine the amount and type of information that we will collect about you. Some of this information will not be personal information because it will not reveal your identity.
The only personal information which we collect about you when you use the website is what you tell us about yourself; for example, by completing an online form such as an application form, provide account instructions online, change your personal or contact details, within a tool, asking for a Product Disclosure Statement (PDS), signing up for our email communications or sending us an email. When you access a user account for one of our login websites (AdviserOnline or InvestorOnline), we may subsequently collect information about your use of the website. This may be used to 'personalise' your experience on the website by displaying content that is likely to be relevant to you. This information may also be used to help us understand whether you may benefit from additional support (e.g. we may contact you to determine whether you need assistance in finalising or progressing incomplete applications or quotes).
If you access one of our login websites (AdviserOnline and InvestorOnline), cookies may also store information related to your session and visit duration, which can be linked back to your login identification. For more information on cookies, please refer to the 'Cookies' section below.
Because our login sites have access restricted to users with an account, you will be required to use your secure login. Unique identifiers (such as your login identification) are collected from website visitors to verify the user's identity.
Unique identifiers may also be used to store information about preferences, to enable dynamic display of the website according to your preferences when you return.
www.cirii.net uses the data collected for statistical analysis and business purposes. We may also use your personal information to contact you via email or phone to tell you about other products or services that we think may be of interest to you, or seek feedback relating to improving the customer experience. If you do not wish to be contacted for these purposes, you can opt-out by contacting us (see the 'Contacting us' section of this policy). The data is accessible only to authorised www.cirii.net employees. Information which is automatically collected may be published internally as aggregated (de-identified) information to assist with improving the products and services offered by www.cirii.net.
www.cirii.net uses third party tracking tools to collect information on how people use our website and to help us segment customers for certain marketing activities. We also use AppDynamics to monitor system performance and track errors in order to gain accurate browser-user insights to optimise web experiences. Our third party tracking tool providers use "cookies" and in some cases "clear gifs/web beacons" to collect information. Examples of data collected includes page views, button clicks, IP address, ISP, errors, device, device OS and browser. For more information on our third party tracking tool providers, please see Adobe Analytics, AppDynamics, Eloqua, Google Analytics and Sitecore.
www.cirii.net uses the Facebook Pixel and the LinkedIn Insight Tag to enable in-depth campaign reporting and to help us unlock valuable insights about our website visitors. We use both the Facebook Pixel and the LinkedIn Insight Tag to track conversions, retarget website visitors, and unlock additional insights about Facebook and LinkedIn members interacting with our Facebook and LinkedIn adverts. www.cirii.net will only use the Pixel and the Insight Tag to retarget and analyse aggregate data for non-EU residents.
Cookies are pieces of information that are transferred to your computer when you visit a website so that sites can record usage and, in some cases, provide you with tailored content or targeted advertising. Most web browsers are set to accept cookies. You can choose to disallow cookies by changing settings on your web browser. However, if you reject all cookies you may not be able to use some areas of our websites.
Please ensure you read the Privacy section of the relevant www.cirii.net PDS as this will outline specific procedures for how you can access or seek to correct your personal information, as well as how to lodge a complaint if you feel your personal information has been mishandled. It will also explain how you can opt-out of receiving direct marketing in relation to your www.cirii.net annuity.
We are required by the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 to verify your identity before we can provide you with financial products and services. We may need to verify your identity electronically if the copies of the identity documents you provide have not been certified or if we need to perform any additional checks to meet our legal requirements.
To verify your identity electronically, we will pass certain information to official State and Commonwealth record holders via our service provider to electronically match your information with information on their databases. These organisations will compare the information to their records and confirm whether all or some of the information you provided matches their records.
If we need to verify your identity electronically, we will provide the following information to our service provider:
If you are seeking employment or contracting opportunities with www.cirii.net, we will collect personal information from you and, where applicable, from any referees you have provided to us during the recruitment process. We may also collect sensitive information about you as part of our background checking process (with your consent). This information may be disclosed to (and obtained from) third party agencies that we engage to conduct screening checks on our behalf. Personal information gathered during the recruitment process will only be used to assess your suitability for the relevant role, and if you are not the preferred candidate, your information may be retained to assess your suitability for roles offered in the future.
www.cirii.net from time to time transacts with counterparties in the UK or Europe whereby it may obtain personal data (e.g. in connection with reinsurance arrangements). If you would like further information about how www.cirii.net satisfies its obligations under applicable UK/EU privacy laws (e.g. the General Data Protection Regulation, or 'GDPR'), please contact us via one of the means described in Section 22.
If you wish to raise any concerns about any breach or potential breach of your privacy, please contact our Privacy Officer and we will make every effort to resolve your complaint internally. If you wish to raise a concern, you should be aware of the following;
If you have purchased your www.cirii.net annuity via a platform provider, the process for lodging a complaint can be found in the relevant PDS. You should also refer to the "www.cirii.net annuities purchased via platform" section of this policy.
www.cirii.net from time to time transacts with counterparties in the UK or Europe whereby it may obtain personal data (e.g. in connection with reinsurance arrangements). If you would like further information about how www.cirii.net satisfies its obligations under applicable UK/EU privacy laws (e.g. the General Data Protection Regulation, or 'GDPR'), please contact us via one of the means described in Section 17.
www.cirii.net may make changes to this policy from time to time for any reason and we will update the website in a timely manner.
Send an email to: email@example.com
If you have purchased your BIS annuity via a platform provider, please refer to the relevant PDS for the appropriate contact details. You should also refer to the "www.cirii.net annuities purchased via platform" section of this policy.