SafetyCulture Care
  3. Privacy Policy

Privacy Policy

This Privacy Policy sets out how SafetyCulture Care* collects, stores, uses, and discloses personal information.

Where required by law, we’ll provide you with privacy information (in the form of a Privacy Notice or other privacy disclosure documentation) which is specific to the products or services you want to obtain from us, or specific to your dealings with us.

Our Privacy Policy explains:

  • What information we collect and why we collect it.
  • How we use that information.
  • The choices we offer, including how to access and update information.

We’ve tried to keep it as simple as possible, but if you’re not familiar with terms like cookies, IP addresses and browsers, then read about these key terms first. Your privacy matters to us, so if you have any questions, contact us.

What is personal information?

Personal information is information or an opinion about an identified individual, or an individual who is reasonably identifiable:

  • whether the information or opinion is true or not; and
  • whether the information or opinion is recorded in a material form or not.

Transparency and choice

People have different privacy concerns. Our goal is to be clear about what information we collect, so that you can make meaningful choices about how it is used and control who you share information with. By providing personal information to us, you consent to us collecting, holding, using and disclosing your personal information in accordance with this Privacy Policy. You do not have to provide personal information to us, however, if you do not, it may affect your use of this Site or the products and/or services offered on or through it.

You may also set your browser to block all cookies, including cookies associated with our services, or to indicate when a cookie is being set by us. However, it’s important to remember that many of our services may not function properly if your cookies are disabled.

Information we collect

We collect information to provide better services to all of our customers and partners – from figuring out basic stuff like your name and contact details (including your address), to more complex things like details of any property or business being insured.

For some policies or as part of our claims handling process, we may also collect and maintain sensitive information about you. This may include information about your professional associations and any criminal convictions you may have.

There are some circumstances where you can deal with us anonymously, such as when you are only looking for general information about one of our products or services. We collect information in the following ways:

  • Information you give us. We collect information about you and your company as you register for an account with us, create or modify your profile, use, access, or interact with our services or our websites. For example, many of our services require you to sign up for an account with us. When you do, we’ll ask for personal information, like your name, email address, telephone number or credit card. We may present your name, email address or image to other users in your organisation, or otherwise associated with your account in order to assist in sharing or recommendations.
  • Information others give us. In some circumstances, we may also collect information from:
    • your agents or representatives, for example, your insurance broker, your legal advisers, or your family member who applies for a policy that covers you or is instructed by you to deal with us;
    • insurers and insurance reference bureaus;
    • people who are involved in a claim or who assist us in investigating or processing claims, including third parties claiming under your policy, witnesses, medical service providers, or other professional experts, external claims data collectors and verifiers, and your employer;
    • third parties or service providers who may be arranging insurance cover for a group that you are a part of;
    • our related entities, and their agents, distributors and service providers (which may also include overseas service providers) and agents or subcontractors of any of those providers;
    • statutory authorities, law enforcement bodies, dispute resolution bodies and government departments;
    • marketing lists and industry databases; and
  • publicly available sources. Information we get from your use of our services. We may collect information about the services that you use and how you use them, like when you visit a website that uses our services or you view and interact with our content. This information includes:
    • Device information – We may collect device-specific information (such as your hardware model, operating system version, unique device identifiers, and mobile network information including phone number). We may associate your device identifiers or phone number with your account.
    • Log information – When you use our services or view content provided by us, we may automatically collect and store certain information in server logs. This may include:
      • details of how you used our service, such as your search queries;
      • telephony log information like your phone number, calling-party number, forwarding numbers, time and date of calls, duration of calls, SMS routing information and types of calls;
      • Internet Protocol address;
      • device event information such as crashes, system activity, hardware settings, browser type, browser language, the date and time of your request and referral URL; and
      • cookies that may uniquely identify your browser or your account.
    • Local storage – We may collect and store information (including personal information) locally on your device using mechanisms such as browser web storage (including HTML 5) and application data caches.
    • Cookies and anonymous identifiers – We use various technologies to collect and store information when you visit our services, and this may include sending one or more cookies or anonymous identifiers to your device. We also use cookies and anonymous identifiers when you interact with services we offer to our partners, such as advertising services or SafetyCulture Care features that may appear on other sites.

Unless we are required or permitted by law to collect sensitive information about you, we will only do so by obtaining your consent.

If you nominate individuals to be covered by your insurance policy, you should direct them to this Privacy Policy and make them aware of the content of any privacy notice we provide you.

If you start an online quote or application form and you cancel prior to submitting the online quote or application, the information you have entered up to that point may be retained on our systems for a reasonable period of time.

How we use information we collect

We may use the information we collect, including your personal information and transaction information, from all of our services in any one or more of the locations that SafetyCulture Care has operations or service providers (these locations currently being Australia, the Netherlands, Germany, the United States, the United Kingdom. India and the Philippines) for the following purposes:

  • for internal and service-related purposes, such as to provide, maintain, protect, improve, and personalise our services, to develop new ones and to protect the rights, property, or safety of SafetyCulture Care and our customers;
  • to manage our insurance business offering including dealing with enquiries, providing products to you, assessing risks and underwriting insurance, issuing, renewing, or amending policies, pricing policies, processing and settling claims (including managing workers compensation claims), handling disputes, training our employees and monitoring for quality assurance purposes;
  • to communicate with you in order to provide you with information we think may be useful or relevant to you;
  • to promote our services and related services, including services of our related companies, brokers, intermediaries, business partners and others that SafetyCulture Care has an association with that may interest you;
  • to analyse information in order to offer aggregated anonymised data products to third parties;
  • to facilitate the sharing of aggregated and anonymised information with third parties, including transaction data;
  • to enforce the Privacy Policy and our terms and conditions for use of our products, services and websites;
  • to monitor and analyse trends, usage, and activities in connection with our products and services and for marketing or advertising purposes or to offer you tailored content;
  • to investigate and prevent fraudulent transactions, unauthorised access to or use of our services, and other illegal or unusual activities;
  • to use the name you provide for your SafetyCulture Care profile across all of the services we offer that require a SafetyCulture account. In addition, we may replace past names associated with your SafetyCulture account so that you are represented consistently across all our services;
  • when you contact us, to keep a record of your communication to help solve any issues you might be facing. We may use your email address to inform you about our services, such as letting you know about upcoming changes or improvements;
  • from cookies and other technologies, to improve your user experience and the overall quality of our services;
  • to combine information from one service, including personal information, into other SafetyCulture services – for example to make it easier to share things with people you know;
  • to comply with law, such as Anti-Money Laundering and Counter-Terrorism Financing Act 2006, Autonomous Sanctions Act 2011, Corporations Act 2001, Australian Securities and Investments Commission Act 2001, Personal Property Securities Act 2009, Income Tax Assessment Act 1997, and A New Tax System (Goods and Services Act) 1999;
  • as otherwise stated in this Privacy Policy.

You can choose not to receive product or service offerings from SafetyCulture Care (including product or service offerings from us on behalf of our brokers, intermediaries and/or our business partners) or our related companies by calling SafetyCulture Care on 1-866-575-0650, CST 9am to 5pm Monday to Friday.

If you do not provide your personal information required by SafetyCulture Care, we may not be able to provide you with our services, including settlement of claims.

Retention of Personal Data 

We will retain your personal information for the time necessary to provide the services we perform for you, or to achieve other purposes outlined in this Privacy Policy, and you can always request that we stop processing or delete your personal information.

We’re required to keep some of your information for certain periods of time under law. When we no longer require your information, we’ll ensure that your information is destroyed or de-identified.

We may need to retain certain personal information after we cease providing you with products or services to enforce our terms, for fraud prevention, to identify, issue or resolve legal claims and/or for proper record keeping.

Disclosure of personal information outside the country where you live

SafetyCulture Care processes personal information on our servers in many countries around the world. We may process your personal information on a server located outside the country where you live.

We may disclose personal information outside of the country where you live to third parties for the purposes outlined in this Privacy Policy.

By providing us with personal information, you consent to the disclosure of your personal information to third parties who reside outside the country where you live. Where we disclose your personal information to third parties, we will take reasonable steps to ensure that any overseas recipient will deal with such information in a way that is consistent with the Australian Privacy Principles.

Information you share

Many of our services let you share information with others. Remember that when you share information publicly, it may be indexable by search engines. Our services provide you with different options on sharing and removing your content.

Information we share

We do not share personal information with third parties unless one of the following circumstances apply:

  • With your consent
    We will share personal information with companies, organizations or individuals outside of SafetyCulture Care when we have your consent to do so.
  • With Third Party Service Providers
    We may disclose personal information to:

    • third party service providers for the purpose of enabling them to provide their services, including (without limitation) IT service providers, data storage or management, web-hosting and server providers, debt collectors, maintenance or problem-solving providers, marketing or advertising providers, customer lifecycle management providers, data analytics or reporting providers, finance systems, cyber security providers, project management or collaboration providers, testing, research and alert tools, email service providers and payment systems operators;
    • business partners who are involved in offering SafetyCulture Care products and services to you, including distributors or agents, insurers, intermediaries, reinsurers, insurance reference bureaus, related companies, loss adjustors, advisers, persons involved in claims, investigators, external claims data collectors, verifiers and parties that SafetyCulture Care has an insurance scheme in place with under which you purchased your policy (such as an industry association);
    • our related bodies corporate and existing or potential agents or business partners;
    • credit reporting agencies and insurance reference bureaus;
    • your employer or your co-insureds to confirm if full disclosure has been made to us;
    • third parties, including agents or sub-contractors, who assist us in providing information, products, services or direct marketing to you; and
    • other parties as required by law.
  • To address fraud, security or technical issues
    We will share your personal information with trusted third parties where necessary to detect, prevent or otherwise address fraud, security or technical issues.
  • For legal reasons
    We may disclose your information if required by applicable law, regulation, external complaints process, or as part of any actual or prospective legal process. If we receive a request from a regulatory body or law enforcement agency, and if permitted by law, we may disclose certain information to such bodies or agencies.
  • Merger or acquisition
    If we merge with or are acquired by another business, we may share your personal information with the new owners of the business and their advisors. We will continue to ensure the confidentiality of any personal information and give affected users notice (for example, via a message to the email address associated with your account) before personal information is transferred or becomes subject to a different privacy policy.

We may share aggregated, non-personally identifiable information publicly and with our partners – like publishers, advertisers or connected sites. For example, we may share information publicly to show trends about the general use of our services. This could also include government bodies, industry groups, insurers and educational/training facilities.

Information security

We have put in place robust measures regarding the security of the information we collect and store about you (including through the use of network and database security measures) and will use our reasonable endeavours to protect your personal data from unauthorised access to or unauthorised alteration, disclosure or destruction. In particular:

  • We encrypt many of our services using Secure Sockets Layer (SSL) or Transport Layer Security (TLS).
  • We review our information collection, storage and processing practices, including physical security measures, to guard against unauthorised access to systems.
  • We restrict access to personal information to our employees, contractors and agents who need to know that information in order to process it for us, and who are subject to strict contractual confidentiality obligations and may be disciplined or terminated if they fail to meet these obligations.
  • We have multiple authentication and access control measures to ensure data is only accessed by authorised personnel.
  • We may enforce strong encryption of all data at rest through the use of the Advanced Encryption Standard (AES-256).

The transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our servers via third party networks; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.

Application

Our Privacy Policy applies to all of the services offered by SafetyCulture Care and its affiliates, including services offered on other sites, but excludes services that have separate privacy policies that do not incorporate this Privacy Policy.
Our Privacy Policy does not apply to services offered by other companies or individuals, including products or sites that may be displayed to you in search results, sites that may include SafetyCulture Care services, or other sites linked from our services. Our Privacy Policy does not cover the information practices of other companies and organisations who advertise our services.

Enforcement

We regularly review our compliance with our Privacy Policy. We also adhere to several self regulatory frameworks. When we receive formal written complaints, we will contact the person who made the complaint to follow up. We work with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of personal data that we cannot resolve with our users directly.

Restrict

You may choose to restrict the collection or use of your personal information. If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by contacting us using the details below.

Access

You may request details of the personal information that we hold about you. In certain circumstances, as set out in the Privacy Act 1988 (Cth), we may refuse to provide you with personal information that we hold about you.

Correction

If you believe that any information we hold about you is inaccurate, out of date, incomplete, irrelevant or misleading, please contact us using the details below. We will take reasonable steps to correct any information found to be inaccurate, incomplete, misleading or out of date.

Complaints

If you believe that we have breached the Australian Privacy Principles and wish to make a complaint, please contact us using the details below and provide us with full details of the alleged breach. We will promptly investigate your complaint and respond to you, in writing, setting out the outcome of our investigation and the steps we will take to deal with your complaint.

Telephone call recording

SafetyCulture Care may record incoming and/or outgoing telephone calls for claims, training or verification purposes. Where SafetyCulture Care has recorded a telephone call, they can provide you with a copy at your request, where it is reasonable to do so.

Other Websites

Please note that clicking on links and banner advertisements on our websites can result in your browser accessing a third party website, where data privacy practices are different to that of SafetyCulture Care.

We are not responsible for, and have no control over, information that is submitted to or collected by these third parties and you should consult their privacy policies.

Changes

We may revise this Privacy Policy from time to time and will post the most current version on our website. If a revision meaningfully reduces your rights or involves a material change to our processing of your personal information, we will notify you.

Contact

If you have any enquiries or if you would like to contact us about our processing of your personal information, please contact us by any of the methods below. When you contact us, we will ask you to verify your identity.

Contact name: Geoff Cutting, Privacy Officer
Email: [email protected]
Telephone: 1-866-575-0650
Post:
The Privacy Officer
c/o Boardroom
2114 Central St. Suite 600
Kansas City, MO 64108
United States
SafetyCulture Care means SafetyCulture Care Australia Pty Ltd ABN 54 662 653 303 and SafetyCulture Care Insurance Services, Inc. (as applicable)

Addendum 1: Additional Privacy Terms for SafetyCulture Care Insurance Services, Inc.

As an affiliate of SafetyCulture Care Australia Pty Ltd, SafetyCulture Care Insurance Services, Inc. (“SafetyCulture Care IS”) wishes to make you aware of how your information may be collected and used as a United States-based web visitor or as our customer. We generally follow many of the same privacy practices and accompanying disclosures as outlined in this Policy. However, as U.S. law will apply, there may be differences in process or practice depending on the state or U.S. territory in which you are located that may grant you different rights. To the extent that this Policy differs from any right granted to you under state law, we will follow state law.

In addition, specific privacy notices may be given to you during or after the purchase of a product from us and may be delivered through our website, our services, regular printed correspondence, or through other means as may be available. Third parties who underwrite or service the products you purchase through us have their own privacy notices or policies, and you should review their product materials and/or website(s) in detail.

(a) General Notice

Similar to other companies under the umbrella of SafetyCulture Care and using the methods detailed in this Policy, we collect and use your information:

  • When you provide your information as part of the purchase of products or services available through SafetyCulture Cares IS or its partners;
  • When we obtain it from from certain third parties, such as insurance services providers; and
  • When you access or use any of the SafetyCulture Care IS websites or services to visit or conduct business with us;
  • When we market our products or services or respond to your requests; and
  • As permitted or required by law.

You may have additional rights under the Fair Credit Reporting Act (“FCRA”), the Gramm Leach Bliley Act (“GLBA”), the Health Insurance Portability and Accountability Act (“HIPAA”), and the Health Information Technology for Economic and Clinical Health Act (“HITECH Act”), among others.

(b) California Consumer Privacy Act (“CCPA”)

The CCPA grants California residents certain additional rights regarding the personal information
that SafetyCulture Care IS may collect, disclose or sell. For purposes of this section, “Personal Information” means anything that identifies, relates to, describes, is reasonably capable of being associated with, or could be reasonably linked, directly or indirectly, with a particular California consumer or household. We do not collect, use or sell Personal Information of children age 16 or under.

Individuals with disabilities may access this policy in an alternative format by sending an email to: [email protected].

Your CCPA Disclosure Rights

As provided in this Privacy Policy:

  • SafetyCulture Care IS may collect personal information from you as provided in the “Information we collect” section in this Policy.
  • SafetyCulture Care IS may share your information with third parties as provided in the “Information we share” section above.
  • SafetyCulture Care IS does not sell (as such term is defined in the CCPA) the personal information that we may collect from you.

CCPA Requests

The CCPA also provides California residents with the right to request additional details about the personal information we collect (including how we use and disclose this information and whether it is sold) and, if necessary, the right to delete your personal information.

California residents may make a request pursuant to your rights under the CCPA by contacting us at: [email protected]. To ensure that the request is coming from you and to protect the security of your Personal Information, we will verify your request using 2 out of the following 4 data points to verify your identify: (1) email address; (2) telephone number; (3) description of the product or service you purchased or inquired about, and (4) the security code from your credit card. If you are requesting to delete sensitive information, you must provide us with 3 out of the following 4 data points described above to verify your identity. Government identification may be required.

Non-discrimination

We also commit to not discriminate against you as a California consumer because of the exercise of any of your rights. You have the right to receive our products and services on equal terms regardless of whether or not you exercise your rights under the CCPA.

To read more about the CCPA please visit California Legislative Information.