• Home
  • Privacy statement

Privacy statement

The Queensland Productivity Commission (QPC) manages personal information in accordance with the Information Privacy Act 2009 (IP Act).

We collect, store, use, disclose and manage your personal information in a manner consistent with the IP Act and the Queensland Privacy Principles in the IP Act. 'Personal information' may include your name, address, phone number, email address, age, your employer, and your position title.

Information we may collect and use; and disclosure of personal information

We may ask you to provide personal information through this site or through other engagements with you (e.g. in-person consultation or over the phone).

We will only collect, use and disclose your information:

  • to meet your needs (e.g. answer your questions)
  • if you have consented to such collection e.g. by making a submission in response to public consultation that incudes your personal information,
  • if you would reasonably expect us to collect or use your personal information in this way, e.g. where you provide a submission in response to public consultation where we explained how your personal information might be collected or used if provided in a submission or
  • if it is necessary for a specific purpose, such as the investigation of a privacy complaint
  • if authorised or required by law, e.g. if we are legally required to disclose your personal information in response to a subpoena issued by a court of competent jurisdiction.
  • if it will prevent or lessen a serious and imminent threat to somebody's life or health, or
  • if it is reasonably necessary for the enforcement of the criminal law or of a law imposing a pecuniary penalty, or for the protection of public revenue.

We will not add you to a mailing list or give your personal information to third parties without your consent, unless required by law.

In some instances, we may use personal information, such as contact details that the Commission has obtained from another government agency, to contact members of the public to participate in inquiries, studies or related activity.

Emails

The QPPs apply to emails as well.

Our internet service provider or information technology staff may monitor email traffic for system trouble shooting and maintenance purposes only.

Website analytics

We use Google Analytics on our website to gather anonymous information about visitors to our website. When you visit our web pages, your browser automatically sends anonymous information to Google. Examples of the information include the web address of the page that you're visiting, your IP address and demographic information. Google may also use cookies.

We use this data to analyse the pages that are visited, to improve your experience and make sure our website is useful.

You can read more about how Google uses data. You can choose not to allow Google to collect your information by opting out of Google Analytics or specifically opt out of Google Analytics display advertiser features.

Security

Parts of this site transmit information securely across the internet. However, this is not always feasible. We recognise that there may be risks transmitting information across the internet. We will notify you where personal information is not transmitted securely.

Where this site contains links to other Queensland Government agencies' websites, the privacy or security terms set out there will apply to the material on the websites.

Where this site contains links to non-Queensland Government websites, the QPC is not responsible for the privacy or security practices or the content of any such websites.

Access to personal information

The RTI Act provides an individual with a right to access documents in the possession or control of the QPC containing that individual's personal information unless, on balance, it is contrary to the public interest.

You may apply for access to documents containing your personal information by sending an email to enquiry@qpc.qld.gov.au

Amendment of personal information

The RTI Act provides an individual with a right to apply for an amendment to a document that contains that individual's personal information if that document contains information that is inaccurate, incomplete, out of date or misleading.

You may apply to amend your personal information by downloading the Information Privacy Personal Information Amendment Application and sending the completed form via email to enquiry@qpc.qld.gov.au

Fees

No fees are payable to apply for access to documents containing your personal information or an amendment to your personal information contained in a document.

Privacy complaints

You can lodge an information privacy complaint if you believe that the QPC has breached its obligations under the IP Act to comply with the Queensland privacy principles. If you are concerned about our handling of your personal information, you may make your complaint via email to enquiry@qpc.qld.gov.au

Please mark your email complaint as "Private and Confidential".

Your privacy complaint should:

  • be in writing
  • include a contact address so that we can reply (an email address is sufficient)
  • be about your personal information (not someone else)
  • provide certified identification (such certification is to have been obtained within the last 12 months)
  • give specific details about your concerns/issues with how the QPC has handled your personal information
  • be sent to us within 12 months of you becoming aware of the matter you are making the complaint about

In order to properly and efficiently respond to your privacy complaint you should ensure that your complaint contains sufficient information to enable the QPC to understand the nature of your complaint, the impact it has had on you, and what outcome you are seeking.

Please attach copies of any documents you consider may assist in investigating your privacy complaint.

In the course of conducting the investigation, it may be necessary to disclose the nature of your privacy complaint and your identity to relevant business areas within the QPC and third parties. You can advise us that you do not wish for the QPC to do this, however, please be aware that this may mean that the QPC cannot properly investigate and resolve the privacy complaint.

We will acknowledge your complaint in writing within 10 business days. We will investigate your complaint and will advise you of the outcome of the investigation, including any remedies that are considered appropriate to resolve the complaint within 45 business days from the date your complaint is received.

You may request an internal review of your complaint within 20 business days of receiving your decision. We will acknowledge a request for internal review within 5 business days and decide the matter within 20 business days from the date the request is received.

Privacy complaints to the Office of the Information Commissioner Queensland

If you are not satisfied with the QPC's response, you may refer your complaint to the Privacy Commissioner, Office of the Information Commissioner Queensland. You cannot refer the matter to the Privacy Commissioner until after 45 days has passed since first making your complaint. The OIC does not have an investigative or determination role in privacy complaints. Rather, it provides a mediation service to the parties to the complaint.

For more information

If you have any queries about our handling of your personal information, please contact enquiry@qpc.qld.gov.au

For more general queries on the operation and application of the IP Act, please contact the Office of the Information Commissioner enquiry service:

Telephone: (07) 3234 7373
Email: enquiries@oic.qld.gov.au
Website: www.oic.qld.gov.au/about/privacy/privacy-complaints

Data Breach and Mandatory Notification

A data breach occurs when unauthorised access, unauthorised disclosure or loss of the personal information we hold has occurred.

Where the QPC identifies or reasonably suspects a data breach has occurred, we will:

  • immediately contain the breach and continue to reasonably do this
  • mitigate the harm caused by the data breach
  • assess whether the data breach is an eligible data breach and notify the Information Commission if it is deemed to be an eligible breach. However, if we are uncertain about whether the data breach is eligible, we will assess (within 30 days) whether there are reasonable grounds to believe the data breach is an eligible data breach of the Commission.
  • notify the affected individuals where there is a risk of harm
  • investigate the circumstances in which the breach occurred, and the types and amount of information involved
  • take appropriate steps to prevent further breaches.

Do you have a right to anonymity or pseudo-anonymity?

You may be able to engage with the QPC on an anonymous or pseudo-anonymous basis if you would prefer to do so. For example, this will be possible in circumstances such as if you are making a general enquiry or making a complaint.

This option will not be available if:

  • we are required or authorised by law to deal with individuals who have identified themselves
  • it is impracticable for us to deal with people who have not identified themselves or who have used a pseudonym.

For example, it will not be available if we need to know who you are to provide you with a service or process a claim.

If you engage with us on an anonymous or pseudo-anonymous basis, there may be potential negative consequences for you. For example, we may be unable to follow up with you about the outcome of your complaint or enquiry where it is made anonymously.