Privacy Policy

1. About This Policy

Censeo Consulting Pty Ltd (“Censeo”, “we”, “us”, “our”) is committed to protecting your privacy and managing personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

This Privacy Policy explains:

- what personal information we collect

- how we collect and use it

- who we may disclose it to

- whether it is disclosed overseas

- how we store and protect it

- how you can access or correct it

- how you can make a complaint

As a Trust Mark Member of the Australian Data and Insights Association (ADIA) and a member of The Research Society and Australian Evaluation Society, we also adhere to applicable professional research codes.

2. What Personal Information We Collect

The personal information we collect depends on the nature of the research project. It may include:

- Name and contact details

- Demographic information (e.g., age, gender, occupation)

- Professional or employment information

- Audio or video recordings (where interviews or focus groups are conducted)

- Survey responses, opinions, and feedback

- Other information relevant to research participation

Sensitive Information

Where necessary for research purposes, we may collect sensitive information (for example, health information, political opinions or cultural background). Sensitive information is only collected:

- with your consent, and

- where reasonably necessary for the research being conducted.

You may choose to participate anonymously or use a pseudonym where practicable. However, in some research contexts (such as interviews or where client-provided contact lists are used), this may not be feasible.

3. How We Collect Personal Information

We generally collect personal information:

- Directly from you when you participate in surveys, interviews, workshops or research activities

- Through online research platforms or survey tools

- From clients who provide contact lists for research recruitment

- Through scheduling tools or event participation

- Through our website where you contact us

Where personal information is provided by a third party (for example, a client providing a participant list), we take reasonable steps to ensure individuals have been informed their information may be shared for research purposes.

4. Why We Collect and Use Personal Information

We collect, use and disclose personal information solely for legitimate research, evaluation and related professional purposes, including:

- Conducting market, social or organisational research

- Recruiting participants for research

- Managing research participation

- Analysing research data

- Preparing research reports (typically in de-identified, aggregated form)

- Complying with legal or contractual obligations

We do not use personal information for advertising or direct marketing purposes.

If you decline participation, we may re-contact you only where:

- you were informed this may occur; or

- there is a legitimate research reason requiring follow-up.

5. Disclosure of Personal Information

We do not disclose personally identifiable research information except:

- to service providers who assist us to conduct research

- where you have provided consent

- where required or authorised by law

Research findings are typically reported in aggregate or de-identified form so that individuals are not identifiable.

6. Overseas Disclosure of Personal Information

In delivering our services, we use reputable third-party platforms for

survey hosting, cloud storage, collaboration, transcription, scheduling and virtual meetings.

These providers may store or process personal information in

Australia and overseas, including in the United States and Canada.

Examples of platforms we may use include survey platforms, cloud storage providers, video conferencing software, transcription services, scheduling tools and AI-assisted research tools.

Where personal information is disclosed overseas, we take reasonable steps to ensure recipients handle it in a manner consistent with the Privacy Act, including through contractual protections and supplier due diligence.

7. Use of Technology and AI Tools

We may use secure digital platforms, including AI-assisted tools, to support transcription, data analysis, summarisation and research reporting.

Where personal information is processed through such tools, we

implement reasonable safeguards and use reputable providers with appropriate privacy and security controls.

We do not use personal information to train public AI models.

8. How We Store and Protect Personal Information

We store personal information in secure electronic systems and, where necessary, limited physical records.

We implement reasonable security safeguards including:

- Restricted access on a need-to-know basis

- Secure authentication and password protection

- Role-based access controls

- Encryption where appropriate

- Confidentiality obligations for staff and contractors

- Secure cloud-based platforms

- Supplier contractual protections

While we take reasonable steps to protect personal information, no electronic transmission or storage method is completely secure.

9. Retention and Destruction

We retain personal information only for as long as necessary to fulfil the purpose for which it was collected, or as required by law or contractual obligations.

When personal information is no longer required, it is securely destroyed or de-identified using reasonable and current destruction practices.

10. Access and Correction

You may request access to personal information we hold about you by contacting us (see Section 13).

We will:

- Respond within a reasonable timeframe

- Not charge a fee for making a request

- Inform you in advance if a reasonable fee applies for providing access (e.g., retrieval costs)

If we refuse access or correction, we will provide written reasons and information about how to make a complaint.

If you believe personal information we hold is inaccurate, incomplete or out-of-date, you may request correction.

11. Data Breaches

If we experience an eligible data breach that is likely to result in serious harm, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) in accordance with the Notifiable Data Breaches scheme.

12. Links to Other Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those external sites and encourage you to review their privacy policies.

13. Questions and Complaints

If you have questions about this Privacy Policy, wish to access or correct your information, or wish to make a complaint, please contact:

Privacy Officer
Censeo Consulting Pty Ltd
PO Box 7400, Redland Bay QLD 4165

Email: admin@consultcenseo.com.au

We will respond within a reasonable time. If you are not satisfied with our response, you may contact:

Office of the Australian Information Commissioner (OAIC)
Website: www.oaic.gov.au
Phone: 1300 363 992
Post: GPO Box 5218, Sydney NSW 2001

14. Updates to This Policy

This Policy is effective from February 2026 and may be updated from time to time. The current version will always be available on our website.