Privacy Policy
1. Purpose
This Privacy Policy explains how Sterling Mason Group Pty Ltd (“Sterling Mason”, “we”, “us”) collects, holds, uses and discloses personal information in connection with this website and our property development and related investment communications.
We are committed to handling personal information in line with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs), where they apply to us.
2. What we collect
Depending on how you interact with us, we may collect:
- Identity and contact details (for example name, email address, phone number, organisation and role).
- Enquiry and communication content you send to us.
- Technical information relating to your visit to this site (for example IP address, browser type, pages viewed, and timestamps), collected through server logs and any cookies or similar technologies described in our Cookie Policy.
3. How we collect
We collect personal information directly from you when you submit forms, send email, call us, or otherwise correspond with us. We may also collect information automatically when you use this website, as described in our Cookie Policy.
4. Why we use and disclose it
We use and disclose personal information for purposes that include:
- responding to enquiries and providing information about our developments and services;
- managing relationships with investors, purchasers, contractors and other counterparties where relevant;
- operating, securing and improving this website;
- complying with law, regulation, or lawful requests from regulators; and
- internal record-keeping, analytics at an aggregated level, and quality assurance.
We do not sell your personal information. We may share information with service providers who assist us (for example hosting, IT support, or professional advisers) under confidentiality and contractual safeguards.
5. Overseas disclosure
Some of our service providers may process data outside Australia. Where we disclose personal information overseas, we take reasonable steps to ensure overseas recipients handle it in accordance with the APPs, where required by law.
6. Security
We maintain reasonable technical and organisational measures designed to protect personal information from misuse, interference, loss, and unauthorised access, modification or disclosure. No online transmission is completely secure; you should use discretion when submitting sensitive information.
7. Access, correction and complaints
You may request access to, or correction of, the personal information we hold about you by contacting us using the details on our Contact page. If you believe we have mishandled your personal information, please contact us first. You may also complain to the Office of the Australian Information Commissioner (OAIC).
8. Retention
We retain personal information only for as long as needed for the purposes above, unless a longer period is required or permitted by law.
9. Changes
We may update this Privacy Policy from time to time. The revised version will be posted on this page with an updated “Last updated” date.
Sensitive information
We do not routinely collect sensitive information (as defined in the Privacy Act 1988 (Cth)) through this website. If you voluntarily provide sensitive information in an enquiry, we will only use it for the purpose for which it was provided or with your consent, unless another permitted general situation applies under the APPs.
Direct marketing
We will not use your personal information for direct marketing unless permitted by the APPs (for example, where you would reasonably expect us to use your information for that purpose, you have not opted out, or you have consented). You may opt out of marketing communications at any time using the contact details on our Contact page.
Notifiable data breaches
If we become aware of unauthorised access, disclosure, or loss of personal information that is likely to result in serious harm, we will assess the incident under the Notifiable Data Breaches scheme and, where required, notify affected individuals and the OAIC in accordance with statutory timeframes.
Website analytics and identifiers
Where analytics tools assign pseudonymous identifiers to browsers or devices, we treat those identifiers as personal information if they can reasonably be linked to an individual, and we configure such tools to avoid collecting free-text fields that unintentionally capture special categories of data.
Contractors and subprocessors
Our website and mailbox infrastructure may be operated with the assistance of IT service providers bound by confidentiality and data processing terms. Those providers may access personal information only to perform services for us and must not use it for their own marketing.
Contact
For privacy questions, use the contact pathways listed on Contact, including Email for written enquiries.