1. Purpose of this document
This document describes the policy of Melbourne Institute of Technology Pty Ltd (“MIT”) on how MIT collects, uses, discloses and otherwise handles “personal information”, “health information” and “sensitive information” (collectively “information”) about students, prospective students and former students (“you”). It also details how you may access personal information held by MIT about you and how you can lodge a complaint if you believe the privacy of your personal information has been breached.
Personal information is information or an opinion (including information or an opinion forming part of a database) about an identified individual, or an individual who is reasonably identifiable, whether true or not, and whether recorded in material form or not.
Sensitive information includes information or an opinion about an individual’s racial or ethnic origin, or criminal record, that is also personal information; and, health information about an individual.
Health information includes information or an opinion about the health, including an illness, disability or injury (at any time) of an individual that is also personal information. We ask for information about the status of your health in accordance with the Health Privacy Principles and in consideration of your wellbeing whilst studying at MIT.
3. Australian Privacy Principles
MIT is bound by the Australian Privacy Principles (APPs) in Schedule 1 of the Privacy Act 1988 (Cth) (see http://www.austlii.edu.au/au/legis/cth/consol_act/pa1988108/).The APPs provide standards, rights and obligations in respect of how personal information is handled from collection, to use, disclosure, storage and access. We are also bound by the requirements of the Health Privacy Principles under the Health Records Act 2001 (Vic) and Health Records and Information Privacy Act 2002 (NSW)
4. Collection of information
4.1 What kind of information does MIT collect and why?
MIT collects personal information for the primary purpose of providing its higher education services and for purposes related to the primary purpose to you. This includes:
- providing and administering approved courses, including admission, enrolment, teaching, assessment and payments;
- student services, including welfare programs and counselling services;
- student relations, including alumni;
- conducting surveys;
- compliance with reporting requirements and administration of government programs such as the Higher Education Loan Program;
- compliance with reporting requirements and administration of applicable laws and regulations of international students including under the Education Services for Overseas Students Act 2000, Migration Act 1958 and the Migration Regulations 1994.
- internal planning; and
- marketing the services of MIT and the promotion of MIT.
The personal information typically includes (but is not limited to): your name, age, gender, place of birth, nationality, contact details in Australia and other prescribed details; information about your course, financial arrangements and payments in relation to the course, health insurance, English language proficiency, passport, student visa, breach or suspected breach of visa conditions and academic progress and performance, and, information that MIT is obliged by law to collect or report.
If you do not provide the information as and when requested this may affect your enrolment at MIT.
4.2 How MIT collects information
MIT collects information by lawful and fair means, which are not unreasonably intrusive. MIT collects information that is reasonably necessary to perform its functions and activities or to comply with the law.
MIT generally collects information about you directly from you (eg. forms filled out by you, both paper and on-line or from meetings and interviews with you). MIT maintains records on each student which may include data on attendance, reports, marks and grades. There may also be times when MIT is provided with your personal information from a third party, such as through our partner institutions and from education agents who provide services to us. MIT will take reasonable steps to let you know, generally, what personal information it holds. MIT will seek your consent before collecting sensitive information unless collection is otherwise authorized or required by law.
4.3 Use and disclosure of information
MIT will only use or disclose personal information for the primary purpose for which it was collected, for any related secondary purpose that you would reasonably expect, or with your consent, or as permitted or required by law or as authorised by the APPs. MIT may use or disclose personal information (other than sensitive information) for the purpose of MIT direct marketing, but must only do so in accordance with the APPs. MIT will only disclose health information in accordance with the Health Privacy Principles.
The following are examples where MIT discloses personal information for legitimate purposes:
- acquiring products and services which you authorize us to purchase for you, such as overseas student health care;
- offering and providing student support services (such as welfare related services, emergency and health services and complaints and appeals processes);
- publishing examination and assessment results;
- releasing academic details to another tertiary institution or tertiary admission centre if you apply for a transfer to another higher education institution;
- protecting you or someone else from a serious and imminent threat to life or health;
- disclosure that is reasonably necessary for the enforcement of the criminal law;
- in the event of an emergency, requiring disclosure to police, hospital or medical personnel.
MIT may also disclose personal information to third party service providers that MIT have retained to perform services on our behalf. When we do this, MIT will only provide them with such information as required to perform those services.
MIT may also use and disclose information where required or authorized by law (meaning any Commonwealth, State or Territory law or the common law) or in accordance with the APPs. For example, MIT may be required to disclose personal information about you to the Australian government and designated authorities (such as the Tuition Protection Service Director) if: you become an accepted student; you do not begin a course when expected; you withdraw from the course (before or after the agreed starting day); your studies are terminated before the completion of your course; you breach a prescribed condition of your student visa; or the identity or duration of your course changes.
4.4 Disclosure to overseas recipients
MIT may disclose your personal information to your nominated overseas education agent. These overseas recipients may be located in various countries. MIT shall comply with the APP’s in respect of any disclosure of personal information to overseas recipients.
5. Protection of information
MIT holds personal information which may be stored in electronic and/or hardcopy form. MIT takes reasonable precautions to ensure that information is stored securely, is accurate and protected from misuse, loss, unauthorized access, modification or disclosure. MIT staff are bound by confidentiality on the use of personal information and are required to respect the privacy of individuals and MIT has in place ways to protect personal information including controlling access to MIT premises, security access to MIT’s computer networks and other security technology. MIT may hold information about you while you are a student, and before and after you are a student. Where information is no longer needed and no longer required to be retained under legislation, MIT either destroys records containing personal information by reasonably secure means or de-identifies the personal information.
6. Data quality
MIT takes reasonable steps to confirm the accuracy of information it holds about you. From time to time, MIT asks for updated information including that required by legislation. MIT is not obliged to update information it holds about you after you have ceased your studies.
7. Access to information
You may request access to information that MIT holds about you by lodging a written request with MIT. The request must be made by you personally or by another person that you have authorised to make the request on your behalf. MIT may permit either inspection, note taking, copying or provide a print out of information, as it considers appropriate. Any request for access to personal information will be dealt within a reasonable period after the request is made and MIT may charge a fee for the cost of accessing and supplying the requested information. In limited circumstances MIT may refuse you access (see MIT’s Terms and Conditions of Enrolment, Fee Payment and Refund Policy and as permitted under the APPs). In those cases, you will be notified of the reason MIT is refusing access.
8. Health Information
In handling your health information, MIT is bound by the Health Privacy Principles (HPPs) as set out in Health Records Act 2001 (Victoria) and Health Records and Information Privacy Act 2002 (NSW). MIT’s approach to handling health information is detailed in the Health Privacy Principles Guidelines, annexed to this policy.
9. Queries or concerns and contacting us
Questions or concerns about the privacy of information we hold about you, and requests for access to and correction of personal information, and if you wish to make a complaint about a possible breach of privacy, may be directed to:
Melbourne Institute of Technology
288 La Trobe Street
Melbourne, Victoria 3000
Tel: 03 8600 6700
Fax: 03 9010 0999
Complaints may also be directed to the Office of the Australian Information Commissioner (http://www.oaic.gov.au) if you think that MIT has interfered with your privacy.
Download a copy here.