1.0 In collecting personal information, Cyber-Tech Institute of Australia (CTIA) complies with the requirements set out in the Privacy Act 1988, including Australian Privacy Principles 3 and 5 (in accordance with the National VET Provider Collection Data Requirements Policy clause 4.4) and the relevant privacy legislation and regulations of the states/territories in which CTIA operates.
2.0 Personal information, including sensitive information, is collected from individuals in order that CTIA can carry out its business functions. CTIA only collects and stores information that is directly related to it’s business purposes and legal requirements of providing nationally recognised training and assessment.
3.0 Sensitive information is only collected by CTIA if a permitted general or health situation applies in accordance with the Privacy Act (16A, 16B) such as, if:
3.1 The collection of the information is required or authorised by, or under, an Australian law or a court/tribunal order.
3.2 It is unreasonable or impracticable to obtain the individual’s consent to the collection, use or disclosure.
3.3 It genuinely and reasonably believes that:
3.3.1 The collection, use or disclosure is necessary to lessen or prevent a serious threat to the life, health or safety of any individual, or to public health or safety.
3.3.2 Unlawful activity, or misconduct of a serious nature, that relates to CTIA’s functions or activities has been, is being or may be engaged in, and the collection, use or disclosure is necessary in order for the entity to take appropriate action in relation to the matter.
3.3.3 The collection, use or disclosure is reasonably necessary to assist any APP entity, body or person to locate a person who has been reported as missing.
3.3.4 The collection, use or disclosure is reasonably necessary for the establishment, exercise or defense of a legal or equitable claim.
4.0 CTIA ensures each individual:
4.1 Knows why their information is being collected, how it will be used and who it will be disclosed to.
4.2 Is made aware of any legal requirement for CTIA to collect the information.
4.3 Is able to access their personal information upon request.
4.4 Does not receive unwanted direct marketing.
4.5 Can ask for personal information that is incorrect to be corrected.
4.6 Can make a complaint about CTIA if they consider that their personal information has been mishandled.
4.7 Is made aware of any consequences for not providing the information requested.
4.8 Whether the information is likely to be disclosed to overseas recipients, and if so, which countries such recipients are likely to be located in.
5.0 CTIA retains evidence that that the student has acknowledged the following Privacy Notice and Student Declaration as part of their enrolment process: https://www.employment.gov.au/privacy-notice
1.0 Under the Data Provision Requirements 2012, CTIA is required to collect personal information about students undertaking nationally recognised training and disclose that personal information to the National Centre for Vocational Education Research Ltd (NCVER). NCVER will collect, hold, use and disclose personal information in accordance with the Privacy Act 1988 (Cth), the VET Data Policy and all NCVER policies and protocols (including those published on NCVER’s website at www.ncver.edu.au).
2.0 In general, personal information will be collected through course application and/or enrolment forms, training records, assessment records and online forms and submissions.
3.0 The types of personal information collected include:
3.1 personal and contact details
3.2 employment information, where relevant
3.3 academic history
3.4 background information collected for statistical purposes about prior education, schooling, place of birth, disabilities and so on
3.5 training, participation and assessment information
3.6 fees and payment information
3.7 information required for the issuance of a USI
3.8 For international students:
3.8.1 current course information including CRICOS code, agreed starting date, expected completion date if the student did not start on the agreed date
3.8.2 Information about any terminations for change to identity and duration of the course
3.8.3 English language proficiency including the name of the test and the score received
3.8.4 visa information, including the DIBP office where the visa application was made and current local DIBP office
3.8.5 passport information including whether the student was in Australia when they became an accepted student
1.0 All students participating in nationally recognised training from 1 January 2015 are required to have a Unique Student Identifier (USI) and provide it to CTIA upon enrolment. Alternatively, CTIA can apply for a USI on behalf of an individual.
2.0 The Student Identifiers Act 2014 authorises the Australian Government’s Student Identifiers Registrar to collect information about USI applicants. When CTIA applies for a USI on behalf of a student who has authorised us to do so, we need to collect personal information about the student which will be passed on to the Student Identifiers Registrar. This will include:
2.1 name, including first or given name(s), middle name(s) and surname or family name
2.2 date of birth
2.3 city or town of birth
2.4 country of birth
2.6 contact details, so the Student Identifiers Registrar can provide individuals with their USI and explain how to activate their USI account.
3.0 In order to create a USI on behalf of a student, CTIA will be required to verify the identity of the individual by receiving a copy of an accepted identification document. This document will only be used for the purposes of generating the USI and confirming the identity of the individual with the Registrar. Once the USI has been generated and validated, the identity documents used or collected
for this purpose will be securely destroyed.
4.0 The information provided by an individual in connection with their application for a USI:
4.1 is collected by the Registrar as authorised by the Student Identifiers Act 2014.
4.2 is collected by the Registrar for the purposes of:
4.2.1 applying for, verifying and giving a USI
4.2.2 resolving problems with a USI
4.2.3 creating authenticated vocational education and training (VET) transcripts
4.3 may be disclosed to:
4.3.1 Commonwealth and State/Territory government departments and agencies and statutory bodies performing functions relating to VET for:
22.214.171.124 the purposes of administering and auditing VET, VET providers and VET programs
126.96.36.199 education related policy and research purposes
188.8.131.52 to assist in determining eligibility for training subsidies
4.3.2 VET Regulators to enable them to perform their VET regulatory functions VET Admission Bodies for the purposes of administering VET and VET programs
4.3.3 current and former Registered Training Organisations to enable them to deliver VET courses to the individual, meet their reporting obligations under the VET standards and government contracts and assist in determining eligibility for training subsidies
4.3.4 schools for the purposes of delivering VET courses to the individual and reporting on these courses
4.3.5 the National Centre for Vocational Education Research for the purpose of creating authenticated VET transcripts, resolving problems with USIs and for the collection, preparation and auditing of national VET statistics
4.3.6 researchers for education and training related research purposes any other person or agency that may be authorised or required by law to access the information
4.3.7 any entity contractually engaged by the Student Identifiers Registrar to assist in the performance of his or her functions in the administration of the USI system
4.3.8 will not otherwise be disclosed without the student’s consent unless authorised or required by or under law
5.0 The consequences to the student of not providing the Registrar with some or all of their personal information are that the Registrar will not be able to issue the student with a USI, and therefore CTIA will be unable to issue a qualification or statement of attainment.
1.0 CTIA will store all records containing personal information securely and take all reasonable security measures to protect the information collected from unauthorised access, misuse or disclosure. Personal information will be stored in paper-based files that are kept in a secure location (locked filing cabinets/locked compactor) and electronically in a secure environment to which only authorised staff have access.
2.0 The personal information held about individuals will only be used by CTIA to enable efficient student administration, report data to provide information about training opportunities, issue statements of attainment and qualifications to eligible students, and to maintain accurate and detailed records of student course participation, progress and outcomes. Information about international students may also be shared to promote compliance with the conditions of student visas and the monitoring and control of visas.
3.0 CTIA may use the personal information provided by an individual to market other internal products and services to them. An individual may opt out of being contacted for marketing purposes at any time by contacting our office. Information will not be passed onto any third party marketing companies without the prior written consent of the individual.
1.0 CTIA will not disclose an individual’s personal information to another person or organisation unless:
1.1 They are aware that information of that kind is usually passed to that person or organisation.
1.2 The individual has given written consent.
1.3 CTIA believes on reasonable grounds that the disclosure is necessary to prevent or lessen a serious threat to the life or health of the individual concerned or another person.
1.4 The disclosure is required or authorised by, or under, law.
1.5 The disclosure is reasonably necessary for the enforcement of the criminal law or of a law imposing a pecuniary penalty, or for the protection of public revenue.
2.0 Any person or organisation to which information is disclosed is not permitted to use or disclose the information for a purpose other than for which the information was supplied to them.
3.0 Personal information may be used or disclosed by CTIA for statistical, regulatory and research purposes. CTIA may disclose personal information for these purposes to third parties, including:
3.1 Schools – for secondary student undertaking VET, including a school-based apprenticeship or traineeship
3.2 Employers – where students are enrolled in training paid for by their employer
3.3 Commonwealth and State or Territory government departments and authorised agencies; such as the Australian Skills Quality Authority (ASQA), Department of Education and Training (DET), the Department of Immigration and Border Protection (DIBP) and the Tuition Protection Service(TPS).
3.5 Organisations conducting student surveys
4.0 Personal information disclosed to NCVER may be used or disclosed for the following purposes:
4.1 Issuing a VET Statement of Attainment or VET Qualification, and populating Authenticated VET Transcripts
4.2 Facilitating statistics and research relating to education, including surveys
4.3 Understanding how the VET market operates, for policy, workforce planning and consumer information
4.4 Administering VET, including program administration, regulation, monitoring and evaluation.
1.0 Individuals have the right to access or obtain a copy of the information that CTIA holds about them including personal details, contact details and information relating to course participation, progress and AQF certification and statements of attainment issued.
2.0 Requests to access or obtain a copy of the records held about an individual must be made by contacting our office using the Request to Access Records Form. The individual must prove their identity to be able to access their records.
3.0 There is no charge for an individual to access the records that CTIA holds about them; however there may be a charge for any copies made. Arrangements will be made within 10 days for the individual to access their records.