The Macquarie Group respects the privacy of the people we deal with, and we uphold high standards of privacy practice and security. This policy explains how we handle personal information and how we interact with you online.
Whenever we handle personal information, we take steps to ensure that appropriate standards of privacy practice and security are applied.
The Macquarie Group Privacy Policy sets out why we need to collect personal information, how we collect it, what we do with it, how it is stored and who we might share it with. The Policy also describes how you can access or correct information we hold about you, how you can ask further questions or make a complaint, and information about our websites and online activities.
For most products and services, it is necessary for us to collect 'personal information' such as your name, identity details, photos, contact details and transaction information. We may also need to collect other personal details (such as gender, marital status and financial information) and other information from which you can be identified.
We collect personal information from you if you apply for a job with the Macquarie Group. Please read the Career Privacy Policy for more information.
Our Credit Information Policy sets out details of our collection and other handling of personal credit information, including collection of credit information from credit reporting bodies as well as our disclosure of credit information to credit reporting bodies. This applies mostly to our Australian credit products such as credit cards and loans.
We collect your health information where we offer you products with an insurance component or in assessing certain claims, including hardship. We do not use or share that information for any purpose other than the underwriting or administration of your policy, claim or account, or as otherwise notified to you at the time we collect your information.
Generally, we do not collect sensitive information about you unless required or permitted by law or where you consent for us to do so. Sensitive information will only be collected if it is relevant to your product or the service or function you are engaging us to provide. If applicable, this will be communicated to you. For example, some forms of biometric data are collected, stored, and used to support access and verification procedures as well as fraud prevention.
We will not collect sensitive information about you where this is expressly prohibited by local law.
Sensitive information includes information relating to:
We collect personal information about you which is reasonably necessary to:
Without such information, we may not be able to process your application or provide you with an appropriate level of service. In such circumstances, we will process your application to the extent possible, and provide you with the most appropriate level of service that we can.
We collect personal information about you directly from you — this can be in person, in documents you give us, from telephone calls, emails, competitions you enter, your access to our website or from transactions you make including via mobile banking. We take reasonable steps to be transparent about how and why we collect personal data.
We may also collect your personal information from joint account holder(s) or third parties including public sources, your adviser(s), employer (or its affiliates), agents, introducers, referrers, brokers, our related companies and service providers (including credit reporting bodies, fraud and financial crime information exchanges and other information service providers).
We keep personal information in physical and electronic records, at our premises and the premises of our service providers, which may include processing or storage in the cloud, which may mean in practice that this information is stored outside the country in which it is collected. Where this occurs, we take steps to protect the security and integrity of personal information.
We also keep records of our interactions with you (including by telephone, email and online) and of your transaction history.
We use personal information about you for the purpose for which it was provided to us, including to:
We may also:
While we may sometimes - where it is lawful and with your permission if necessary - share personal information with companies we do business with (e.g., in product development, joint venture arrangements or distribution arrangements), we do not sell personal information for marketing purposes to other organisations or allow such companies to do this.
Subject in all cases to local law, we may share personal information within the Macquarie Group, and may disclose personal information outside the Macquarie Group:
We may also disclose your personal information (on a confidential basis) in connection with our operating business and principal investment activities including, but not limited to:
In some circumstances the parties to whom we disclose personal information may operate outside of Australia or, in the case of data collected within the United Kingdom or European Union, outside the United Kingdom and European Union — this includes locations in the countries listed in the Appendix. Where this occurs, we take steps to protect personal information against misuse or loss and to comply with local law in respect of the transfer of your data from one jurisdiction to another. Those parties, in turn, may make such information available to the governments of such other countries in accordance with local law requirements.
We take reasonable steps to ensure that all information we hold is as accurate as possible. You are able to contact us at any time and ask for its correction if you feel the information we have about you is inaccurate or incomplete.
We use security procedures and technology to protect the information we hold. Access to and use of personal information within Macquarie Group seeks to prevent misuse or unlawful disclosure of the information — this includes internal policies, auditing, training and monitoring of staff.
If other organisations provide support services, we require them to take appropriate technical and organisational measures to secure the privacy of the information provided to them.
You can contact us to request access to or correction of your personal information. In normal circumstances we will give you full access or make the requested corrections to your information. However, there may be some legal or administrative reasons to deny these requests. If your request is denied, we will provide you with the reason why (if we can). Where we decide not to make a requested correction to your personal information and you disagree, you may ask us to make a note of your requested correction with the information.
When you visit Macquarie websites you will generally browse anonymously unless you have logged into a client portal or accessed the website from a personalised communication from Macquarie.
For all visitors to our website, we use cookies and other web browser technologies to collect information such as the server your computer is logged on to, your browser type (for example, Chrome, Safari, Microsoft Edge or Firefox), and your IP address. (An IP address is a number that is assigned to your computer automatically and required for using the Internet). We may also derive the location associated with an IP address.
When you access or use our online or mobile banking services, we may collect information about the electronic devices you use to do so (including their operating systems, browsers, other installed applications, and the device settings) and how you use and interact with them, for the prevention and mitigation of fraud and other financial crimes.
Once you have logged into a Macquarie portal, accessed our website from an e-mail or other personalised communication sent to you, or provided us with personal information by completing a form online, we may be able to identify you and we may combine that with other information in order to provide you with a better online experience. If you would prefer not to be identified, you can delete the cookies and reconfigure the cookie preferences on your internet browser (see below).
A 'cookie' is a packet of information placed on a user's computer by a website for record keeping purposes. We use cookies to enable basic functions and services on our website. These cookies are essential and set automatically. We also set optional cookies to help us improve our website and support our marketing. Where relevant, our third-party providers will help us make use of these optional cookies. You can choose which types you'd like to accept by selecting 'Manage cookie settings’ in the footer of our website.
The types of cookies we use:
You can also configure your browser to accept all cookies, reject all cookies, or notify you when a cookie is sent. Each browser is different, so check the ‘Help’ menu of your browser to learn how to change your cookie preferences.
If you disable the use of cookies when you visit the Macquarie Group website (www.macquarie.com) or at any point on your web browser, or remove or reject specific cookies from Macquarie Group websites or linked sites, then you may not be able to gain access to all of the content and facilities on those websites.
The CDR Policy applies to Macquarie Bank Limited as a ‘data holder’ under the Consumer Data Right (CDR). It explains how Macquarie Bank manages consumer data (which may include personal information) under the CDR regime and summarises customer’s rights. If you have a question about the CDR Policy or your consumer data, please contact us in Australia on 1800 806 310 or email privacy@macquarie.com.
Macquarie has processes in place to investigate data breaches involving personal information and will notify you of a data breach where we are required to do so under local legislation or as is otherwise appropriate in the circumstances. Where notification is required, we will do so promptly and in accordance with the time period for notification provided for under local legislation, for example within 72 hours in jurisdictions governed by the General Data Protection Regulation.
Macquarie delivers training to staff to help ensure that requirements of this policy are addressed and supported.
As provided for in the General Data Protection Regulation, you have the right to access your data; to correct or rectify your data; to delete your data subject to applicable law; to have your data processed only in accordance with applicable law; to have copies of your data moved to another controller; to object to our processing your data otherwise than in accordance with the law; and to withdraw any consent to our processing your data at any time. Please email privacy@macquarie.com to exercise any of those rights.
If you have any questions or complaints regarding privacy or information handling, please write to privacy@macquarie.com specifying in what capacity you are submitting your request (i.e. candidate, former employee or Macquarie banking customer) and what your request pertains to (i.e. access, correction, deletion or banking financial services). Please mark communications to the attention of our Privacy Office. We will respond to let you know who will be handling your matter and when you can expect a further response.
If your concerns are not resolved to your satisfaction, you may be able to escalate your complaint to an external dispute resolution scheme or to a regulatory authority (if you are in the European Union or United Kingdom, you may contact one of the data protection regulators found here: http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080). We can also provide details of the appropriate scheme/regulator for you, as these may vary by jurisdiction or product.
At any time, you can inform us how you would prefer to be contacted. If you are deaf and/or find it hard hearing or speaking with people who use a phone, you can reach us through the National Relay Service (NRS). To use the NRS, you can register by www.accesshub.gov.au/about-the-nrs.
Personal information may be disclosed to Macquarie Group entities and third parties in jurisdictions including: Argentina; Australia; Austria; Bahamas; Belgium; Bermuda Brazil; Bulgaria; Canada; Cayman Islands; Chile; China; Colombia; Curacao; Czech Republic; Denmark; France; Germany; Greece; Guernsey; Hong Kong; Hungary; India; Indonesia; Ireland; Israel; Italy, Japan; Jersey; Luxembourg; Malaysia; Malta; Mauritius; Mexico; Netherlands; New Zealand; Peru; Philippines; Poland; Singapore; South Africa; South Korea; Spain; Sweden; Switzerland; Taiwan; Thailand; United Arab Emirates; United Kingdom; United States of America; Vietnam.