This Privacy Policy sets out how KPMG in Australia handles personal information. It does not apply to personal information collected by KPMG that is exempted under the Privacy Act, for example employee records.
KPMG may modify this Privacy Policy from time to time to reflect its current privacy practices.
In this Privacy Policy, 'KPMG', 'we', 'us' and 'our' mean the partnership carrying on business under the name KPMG and includes any corporate entity owned or controlled by the KPMG partnership.
The main types of personal information we collect includes names, contact and address details and job titles. In order to provide our services, we may also collect other personal information such as bank account details, shareholdings, details of investments and tax file numbers.
It may be necessary in some circumstances for KPMG to collect sensitive information about you, for example, your professional memberships, criminal record or health information. We will only collect sensitive information as permitted under the Privacy Act.
Generally we collect your personal information from you directly (for example, when we deal with you in person or over the phone, when you send us correspondence or when you subscribe electronically to our publications), although sometimes it may be necessary for us to collect your personal information from a third party.
For example, we may collect your personal information from your personal representative or a publicly available record, amongst other sources. We may also collect personal information about you from your use of our websites and information you provide to us through contact mailboxes or through the registration process on our websites.
If you provide us with someone else's personal information, you should only do so if you have their authority or consent to provide us with their personal information. You should also take reasonable steps to inform them of the matters set out in this Privacy Policy.
KPMG collects personal information for a number of purposes including:
- to provide professional services
- to provide technology services and solutions
- to respond to requests
- to maintain contact with our clients and other contacts (including alumni)
- to keep our clients and other contacts informed of our services, industry developments and to notify of seminars and other events
- for administrative purposes
- for recruitment purposes
- for purposes related to the employment of our personnel, providing internal services to our partners and staff and for matters relating to the partnership
- for the engagement of service providers, contractors or suppliers relating to the operation of our business, or
- for other business related purposes.
KPMG may also use your personal information for the purpose of marketing its services. If you do not want to receive marketing material from us, you can contact us as detailed below or use the unsubscribe function on electronic communications or the notification function on other marketing material.
If you do not provide us with the personal information we have requested, we may not be able to complete or fulfill the purpose for which such information was collected, including providing our clients with the services we were engaged to perform.
KPMG will not disclose your personal information to third parties unless:
- as set out in this Privacy Policy
- permitted by law
- one or some of KPMG's businesses is offered for sale, or
- you consent.
If we do disclose personal information to third parties, we will do so in accordance with the purpose for which the personal information was collected, or a related or ancillary purpose. The types of third parties we may disclose your personal information to include:
- experts or other third parties contracted as part of an engagement
- our service providers
- our professional advisers
- other KPMG firms or KPMG International, or
- if you are an employee, a contractor or supplier of services to a client, then we may disclose your personal information as part of providing services to that client.
We do not disclose personal information to third parties for the purpose of allowing them to send marketing material to you. However, we may share non personal, de-identified or aggregated information to them for research or promotional purposes.
KPMG is a member firm of the KPMG network of independent member firms affiliated with KPMG International Co-operative. We may transfer your personal information to other KPMG member firms or entities overseas to fulfill the purpose of collection of the personal information, or a related or ancillary purpose or otherwise in accordance with the Privacy Act. We may also store, process or back-up your personal information on servers that are located overseas (including through third party service providers).
We take reasonable steps to protect any personal information that we hold from misuse and loss. We also take reasonable steps to protect it from unauthorised access, modification and disclosure.
The security measures we take include physical security measures (including security passes to enter our offices and storage of files in lockable cabinets), technology security measures (including restriction of access, firewalls, the use of encryption, passwords and digital certificates) and our staff and partners are required to undertake privacy and data protection training.
The personal information you provide to us will be retained only for as long as necessary to fulfill the purposes for which the information was collected, as required by law or in accordance with our documentation retention policies.
"Cookies" (i.e. small text files placed on your computer when you first visit the site) are used on some KPMG websites. Most browsers now recognise when a cookie is offered and permit you to refuse or accept it. If you are not sure whether your browser has this capability, you should check with the software manufacturer, your company's technology help desk or your internet service provider.
Cookies are primarily used to enhance your online experience. If you visit our websites to read or download information, such as news stories or articles, much of the information we do collect is statistical only (e.g., the domain from which you access the internet, the date and time you access our site, and the internet address of the website from which you linked directly to our site) and not personally identifiable. We use this information about the number of visitors and their use of the sites in aggregate form to make our sites more useful and attractive to you.
You have several choices regarding your use of KPMG's websites. In general, you are not required to provide personal information when you visit our websites. However, if you apply to receive information about our services, events and industry updates or wish to apply for a job, we may require you to provide certain personal information.
KPMG's websites may contain links to third parties' websites, including sites maintained by other KPMG member firms. Those other websites are not subject to our privacy policies and procedures. You will need to review those websites directly to view a copy of their privacy policies.
KPMG does not endorse, approve or recommend the services or products provided on those third party websites.
We understand the importance of protecting children's privacy, especially in an online environment. In particular, our websites are not intentionally designed for or directed at children under the age of 13. It is our policy to never knowingly collect or maintain information about anyone under the age of 13, except as part of a specific engagement to provide professional services or for the purposes of ensuring compliance with our auditor independence policies.
You can gain access to your personal information from KPMG on request in writing, subject to some limited exceptions permitted or required by law. The factors that affect your right to access your personal information include whether:
- it is a frivolous or vexatious request
- the information relates to a commercially sensitive decision making process
- access would be unlawful
- access would prejudice enforcement activities relating to criminal activities and other breaches of law, or
- denying access is required or authorised by or under law.
If KPMG denies you access, we will let you know the reason why access is denied.
KPMG may charge the reasonable costs of providing you with access to your personal information.
If you believe that any personal information KPMG has collected about you is inaccurate, incomplete or not up-to-date, please contact KPMG and we will take reasonable steps to correct it in accordance with the requirements of the Privacy Act.
If you would like to access your personal information, have a query in relation to this Privacy Policy or would like to make a complaint about KPMG's handling of your personal information, please contact:
National Privacy Officer
KPMG
147 Collins Street
Melbourne VIC 3000
Phone: +61 3 9288 6068
Fax: +61 3 9288 6666
austprivacy@kpmg.com.au
You may like to view a print-friendly version of KPMG's Privacy Policy [PDF 303KB].