Privacy Policy

This privacy policy sets out how GoCatch uses and protects any information that you give us when you use the GoCatch application.

GoCatch is committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using our application then you can be assured that it will only be used in accordance with this privacy statement.

GoCatch may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes. This policy is effective from 14th June 2011.

What we collect

We may collect the following information:

Personal Information. “Personal Information” is the personally identifying information that you send or receive when you use GoCatch. Personal information may identify you or your friends and includes information such as your name, emails, addresses, websites, telephone numbers and photographs or whatever information you transmit or receive using GoCatch.

Session and Usage Data. “Session and Usage Data” is collected anonymously and may include without limitation, all connection and service-related data submitted through your use of GoCatch relating to the connection request, server communication and data sharing, including network measurements, quality of service, date, time and location. Session and Usage Data does not include Personal Information or Content you may share through GoCatch (Photos, Contacts, Calendar Appointments, etc.). We use Session and Usage data to improve the functionality and features of GoCatch. We also may aggregate Session and Usage data as described in Aggregate Information below.

We also collect personal information if you provide it to us via e-mail or other means. We may collect information that identifies you personally when you send us comments, questions or suggestions. Also, we automatically receive certain types of information whenever you interact with us or use GoCatch or our Site. For example, our systems may automatically collect your IP address and the type of browser or operating system you use (“Log Data”). We use Log Data to monitor the use of GoCatch, and for technical administration.

Aggregate Information. “Aggregate Information” is data we collect about a group or category of services or Users from which individual User identities have been removed. In other words, information on how you use the Application may be collected and combined with information about how others use the Application, but no personal information will be included in the resulting data. Aggregate data helps us understand trends in our Users’ needs so that we can better consider new features or otherwise tailor the Application. We may share aggregate information about our Users with third parties for various purposes, including to help us better understand and improve our services, and for advertising and marketing purposes.

Security

GoCatch is very concerned about safeguarding the confidentiality of your Personal Information. We limit access to Personal Information to employees or contractors who we believe reasonably need to come into contact with that information to provide products or services to you or in order to do their jobs. We employ administrative, physical and electronic measures designed to protect your information from unauthorised access. Please be aware that no security measures that we take to protect your information is perfect or impenetrable.

In addition, we cannot control the actions of other Users with whom you share your information. We cannot ensure that information you share with other Users using the Application will not become publicly available. We are not responsible for third party circumvention of our security measures. You can reduce these risks by using common sense security practices such as refraining from sharing your information with people you don’t know and limiting the information that you choose to share using the Application.

How we use your information

For our internal business operations. In general, we use Session and Usage Data internally to serve our Users and enable them to take maximum advantage of GoCatch. We also store Personal Information to improve the functionality of GoCatch. All information collected is stored in our database and may be archived elsewhere. Access to your Personal Information other than Session and Usage Data will be limited to our employees, contractors and certain trusted third parties.

We may also combine information about you that we have with information we obtain from business partners or other companies. For example, Personal Information may be used to conduct marketing analysis, to create an individual profile and provide personalised services, to provide services or complete transactions you have requested, to anticipate and resolve problems with the application, to respond to customer support inquiries, and to create and inform you of new products and services from us that better meet your needs. By requesting a service or clicking on an ad, you give consent for us or our marketing partners to communicate with you at any of the contact points you provide to us for any of the aforementioned purposes.

If you use features of GoCatch to tell your friends about GoCatch, your friends may receive an invitation to use GoCatch and/or download the application.

We may use information about you for our own internal purposes, such as to estimate our user base, measure aggregate traffic patterns as well as to understand demographic, customer interest, and other trends among our Users.

We may engage certain trusted third parties to perform functions and provide services to us, including, without limitation, hosting and maintenance, customer relationship, database storage and management, and direct marketing campaigns. We will share your Personal Information with these third parties, but only to the extent necessary or useful to perform these functions and provide such services, and only pursuant to binding contractual obligations requiring such third parties to maintain the privacy and security of your data.

Some of our trusted third party service providers are located in the Philippines and in order to receive those services it is likely that we may need to occasionally transfer personal information to these service providers. By providing your personal information to us you consent to our disclosure of your personal information to service providers in that country.

Information about our Users, including Personal Information, will be disclosed as part of any merger or acquisition, creation of a separate business to provide the Site or the Application, or fulfil products, sale or pledge of company assets as well as in the event of an insolvency, bankruptcy or receivership in which Personal Information would be transferred as one of the business assets of the company.

For marketing purposes. We do not disclose your Personal Information (other than Aggregate Information) to third parties for the third parties’ direct marketing purposes, unless you first affirmatively agree to that disclosure.

We do not rent, sell, or share Personal Information about you with other people or non-affiliated companies except to provide products or services you’ve requested, when we have your permission, or under the following circumstances: (i) as may be necessary to perform internal analyses and business functions; (ii) as part of a business transfer; or (iii) when required by law or permitted to protect our rights, property, or safety.

If you use GoCatch, you consent to our collection of your Session and Usage Data. We may use this information for internal analyses and external marketing purposes as described in this Policy.

We may display targeted advertisements based on Personal Information. Advertisers (including ad serving companies) may assume that people who interact with, view, or click targeted ads meet the targeting criteria for example, women ages 18-24 from a particular geographic area. We do not provide any Personal Information to the advertiser when you interact with or view a targeted ad. However, by interacting with or viewing an ad you are consenting to the possibility that the advertiser will assume that you meet the targeting criteria used to display the ad.

For legal enforcement. We may release your Personal Information in the good faith belief that release is appropriate and necessary to comply with legal process or authority (e.g., a lawful subpoena, warrant or court order); to enforce or apply our policies; to initiate, render, bill, and collect for amounts owed to us; to protect our rights, property, or personal safety, our Users, our employees, or the public; or if we reasonably believe that an emergency involving immediate danger of death or serious physical injury to any person requires disclosure of communications or justifies disclosure of records without delay. This may include sharing information with other companies, lawyers, courts or other government entities.

We may disclose information pursuant to subpoenas, court orders, or other requests (including criminal and civil matters) if we have a good faith belief that the response is required by law. This may include respecting requests from jurisdictions outside of where we have a good faith belief that the response is required by law under the local laws in that jurisdiction, apply to Users from that jurisdiction, and are consistent with generally accepted international standards.

Third-party sites

In general, GoCatch accesses third party information (such as your Facebook account information) through application interfaces. However, please be aware that we may provide links to third-party Web sites, such as Facebook, as a service to our Users. When you click on links of third parties on GoCatch or the Site, you may leave the GoCatch application or Site. Some of these third party sites may be co-branded with our name/logo or our affiliated entity’s name/logo, even though they are not operated or maintained by us. The Site may also carry advertisements from other companies. We are not responsible for the privacy practices of Web sites operated by third parties that are linked to the Site or for the privacy practices of third party or national Internet advertising companies, which differ from ours. You are solely responsible for reading and accepting their privacy and related policies.

Security

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect.

Controlling your personal information

We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting if you tell us that you wish this to happen.

You may request details of personal information which we hold about you. A small fee may be payable. If you would like a copy of the information held, you may contact support@gocatchapp.com

If you believe that any information we are holding on you is incorrect or incomplete, please contact us at the above address. We will promptly correct any information found to be incorrect.

Our policy on your privacy in detail including background screening checks required for drivers in a territory

At Taxi Apps Pty Ltd trading as GoCatch (‘GoCatch’) we are highly committed to respecting the privacy of our customers, suppliers, visitors, applicants or anyone who engages with GoCatch and protecting their personal information.

It’s important that you feel secure whenever you deal with us, so you’ll be happy to know that GoCatch puts information security and privacy at the forefront of everything it does. The GoCatch platform has built in privacy by design and privacy by default.

However, it’s important that you understand not only how we protect your privacy but also how, when and where we may use and store your details. This is detailed in this Privacy Policy.

GoCatch complies with the relevant privacy legislation and principles in Australia and New Zealand which set out requirements for the gathering, handling, use, disclosure, storage, destruction or de-identification of personal information. We also satisfy the General Data Protection Regulation for EU customers that come into effect on 25 May 2018, although you should be aware that our website uses cookies. Additional details are below on our use of cookies.

This Privacy Policy relates to personal information that we collect and handle about you as a customer, supplier, visitor to our site, a job applicant or as someone who engages with us through social media, other digital services, correspondence or in person as a member of the public.

Our present and former staff should contact our legal team for details about how we maintain the privacy of their personal information.

What GoCatch does

While we collect information about passengers to enable them to take a trip, it is recommended or required by various regulatory agencies that we conduct background screening checks about drivers for public safety reasons. These obligations vary state by state and by country.

The process of obtaining a background screening check for a driver necessarily involves multiple exchanges of personal information. Typically:

As an online portal, we need to create personal information (User ID), link it to more personal information (email address) and allow you to create more personal information (password), just to set up an account;

We need to collect personal information (names, date of birth, address history) from you to order a check;

We need to collect further personal information (ID documents) to confirm that the person making the application and giving consent and the identity of the person the subject of the check are the same;

We need to pass personal information to a source (in the case of an Australian police check, the Australian Criminal Intelligence Commission), who may pass it on to multiple other sources (in the case of a police check, police agencies in different jurisdictions);

Those sources will need to pass back (again, possibly through the multiple sources) in the check result more personal information (e.g. criminal history or a reference) from their own records (or in the case of a referee, their opinion);

We may then need to share check results with a potential employer (as well as you, the applicant);

Operating in a regulated environment means that we are compelled to keep certain records for certain periods of time (e.g. for 12 months in the case of a request for an Australian national police check) or to maintain an audit trail. Being an online portal to meet our regulatory obligations and for the effective management of the business (including for customer experience improvements) requires that we track and record, in some form, the multiple “journeys” through our platform, which requires cookies (see the section “cookies”, below).

What personal information do we collect?

Personal information means any information or opinion about an identified individual, or an individual who is reasonably identifiable.

In all cases, the personal information that we collect will depend on the nature of your interaction with us and we will only collect information necessary so that we can provide our services to you or for completing our interaction with you. Information will only be collected lawfully, fairly and not in an intrusive way.

If you are a customer, the personal information we may collect about you might include, for example, your name, contact details and date of birth, as well as copies of your identity documents. Personal information may also include information such as current or previous addresses, or information within checks ordered through GoCatch both before and after any information has been verified by GoCatch.

Where it is reasonable and practicable to do so, we collect your personal information directly from you when you sign on as a user, order checks, enter into arrangements with us, correspond with us or provide feedback to us. We will record, collect and hold information in relation to your transactions with us.

We may also collect other information, some of which may be personal information, including information about your order history with GoCatch, which areas of our website you visited (see the section “cookies”, below) and records of your communications and interactions with us. We may monitor and record your communications with us (including email and telephone) for security, dispute resolution and training purposes.

Depending on the products or services being provided or the reason for your interaction with GoCatch, we may also collect information about you from others such as third party suppliers including but not limited to providers of criminal checks, law enforcement agencies, regulatory and licensing bodies.

Due to the nature of the products and services GoCatch provides, some of your personal information that we collect will be ‘sensitive’ information. This information will only be obtained with your permission – except where otherwise allowed by law.

We collect, use and exchange your information if we have a valid lawful reason to do so, and so that we can:

Confirm your identity
Assess your application for our products or services
Manage our relationship with you, including being able to provide our products and services
Contact and communicate with you
Improve our service to you and your experience with us
Minimise risks and protect against fraud, misuse or loss of data
Comply with laws, obligations or provide assistance to regulatory, government and law enforcement authorities
Manage our business.

Additionally, we may use your personal information for the following reasons:

Contract: We need to process your information in order to fulfil a contract you have with us, or because you have asked us to take specific steps before entering into a contract.
Legal obligations: We need to process your information for us to comply with the law (including contractual obligations).
Consent: You have given clear consent for us to process your personal information for a specific purpose.
Legitimate interests: We need to process your information for our legitimate interests or the legitimate interests of a third party. This legitimate interest can be overridden where there is a good reason to protect your personal information.

How long will we keep your personal information?

We will keep your information for as long as you are a customer of GoCatch, or pursuant to our legal obligations. For example, Australian criminal history checks are deleted after 12 months and identity documents provided when ordering one of those checks must be kept for 12 months and deleted within 15 months.

We aim to keep your information for only as long as we need it. Factors that may influence how long we may keep your data include:

Fulfilling our legal or regulatory obligations
Internal research and analytics
Responding to a question or complaint or
Being unable to delete the data for technical reasons.

Who do we share your information with?

GoCatch will disclose your information only in accordance with the professional services we provide.

During the process of providing our services and depending on the products or services being provided or the reason for your interaction with GoCatch we may share information about you with third parties. Such as: Third party suppliers including but not limited to providers of criminal checks, law enforcement agencies, regulatory and licensing bodies.

Partner organisations

Government and law enforcement agencies or regulators

GoCatch will only partner with organisations or engage third-party suppliers /businesses that have robust processes and procedures in place for the handling of personal information which is at least equivalent to GoCatch’s practices.

Integral to the GoCatch Platform is that you control who may see your results once products/ services have been provided to you by GoCatch.

As you will appreciate, in certain circumstances we may be compelled by law to disclose your personal information to various authorities.

Keeping your information secure

We store your hard-copy or electronic records in a secure building and systems or using trusted third parties. We also have a layered approach to our security.

Security by Design:

Our systems and processes are engineered to deliver security at all levels.

Management:

Policies and managerial oversight from the executive level down. Our Information Security Committee includes our most senior and experienced staff with a spread of expertise from Information Technology to Legal. The Security Committee sets the security policy framework that defines security measures and responsibilities for GoCatch’s staff and all operational departments.

Staff training:

GoCatch embeds privacy and security in our culture. We train our staff driving awareness and procedural compliance to keep your information safe and secure.

Physical Security:

We control access to sensitive areas, management of physical and electronic documents, and secure document disposal. We use a mix of alarms, cameras, guards and other controls in our buildings to prevent unauthorised access.

Platform security:

Security architecture, designs and implementation of our software and systems. GoCatch’s engineering team designed our online screening platform to ensure security from the ground up. 1) File and database systems are encrypted at rest which means that every piece of data is protected 100% of the time. 2) Our application incorporates role-based and departmental security to segregate data and ensure access to sensitive information is available on a need-to-know basis. 3) All functionality is implemented to support best-practice security defences to thwart scripting attacks and other hacker modalities. – Firewalls and site monitoring block illegal traffic and record user events across the application to a separate audit server. 4) We enforce the use of secure sockets between the user and our servers for all web page views. 5) Our application and operational processes only use secure point to point transport mechanisms to transfer sensitive data or materials. We don’t use unsecured transmission mediums, such as email, to exchange data or provide results with our users. 6) Our engineering teams complete ongoing industry training to maintain their awareness of current commercial security practices and hacker exploits and the engineering techniques that protect against intrusion. 7) Your information is stored using secure AWS data centres located in Australia.

Audits and Testing:

Security assurance through internal audits, review, and regular penetration testing.

Transactional Security:

Secure data transfer technologies and payment gateways. GoCatch enforces secure socket layer (SSL) connections for every page of our website and our application. The use of SSL means that data traffic between your computer and our site is encrypted and protected at all times.

Secure Data Management:

All customer and operational data is held securely in Australian data centres. The GoCatch application architecture includes redundant servers with automatic fail-over and load balancing to ensure high availability, robust performance, fast response times and data preservation in the event of an equipment failure.

Destroying or de-identifying data when no longer required:

We aim to keep personal information only for as long as we need it – for example for business or legal reasons. When we no longer need information, we take reasonable steps to destroy or de-identify it.

Minors and children’s privacy

For some products provided by GoCatch we are required to obtain parental or guardian consent for persons aged under 18 years of age, for example. Australian criminal history checks. Consent of parents or guardians will be obtained in those circumstances.

Access, updating and correcting your personal information

You have a right to access your personal information held by GoCatch. There is no charge to put in a request to see your information and we can easily provide you with general information such as your name, address and contact details. If you believe that this information is incorrect or out of date you may of course ask us to correct it.

We can also provide you with access to most check results on you (except for references given in confidence to a potential employer, or psychometric assessments). Please note that in giving a check result we are verifying an accurate record of what information the source has that corresponds to the information given about you. If you believe that the source has inaccurate, incomplete or misleading information, you may need to take that up with the source.

If we believe the information is correct and does not need correcting, we will let you know why.Please send your requests to:

Privacy Officer

Taxi Apps T/As GoCatch

Level 3/ 55 Pyrmont Bridge Road, NSW 2009

Australia

or send an email to: accounts@gocatch.com

GoCatch’s compliance with GDPR

European Union (EU) based General Data Protection Rules (GDPR) legislation has replaced individual country data privacy laws in the EU, giving more rights to EU citizens (who are resident in the EU) as individuals and more obligations to organisations holding their personal information. GoCatch’s satisfies GDPR requirements and the additional information and your rights for EU citizens are set out in this Policy.

Special Information

The EU GDPR protects your special information. Special information is information about your religion, ethnicity, health or biometrics (for example, your fingerprints). We will only process this type of information if required, and only with your consent or where otherwise lawfully permitted. In addition to the rights detailed above, as an EU citizen you have the following additional rights:

The right to be informed how personal information is processed

You have the right to be informed how your personal information is being collected and used. If we require your consent to process your information you can withdraw consent at any time. If you withdraw consent, we may not be able to provide certain products or services to you. The right to withdraw only applies when the lawful basis of processing is consent.

The right to erasure

You may have the right to ask us to delete your personal information if there is no need for us to keep it. The right to erasure is also known as the right to be forgotten. You can make the request verbally or in writing. There may be legal or other reasons why we need to keep your data and if so we will tell you what these are.

The right to restrict processing

You have the right to ask us to restrict our use of your personal information in some circumstances. We may be able to restrict the use of your data. In this situation we would not use or share your information while it is restricted. This is not an absolute right and only applies in certain circumstances.

The right to data portability

In some circumstances you have the right to request we provide you with a copy of the personal information you have provided to us in a format that can be easily reused. All GoCatch check results are portable in this sense.

Rights in relation to automated decision making and profiling

You have rights over automated decisions. GoCatch does not currently make decisions based on the automated decisioning alone.

What are ‘cookies’ and how do they work?

A cookie is a small text file that is placed on your computer or mobile device when you visit a website. Cookies collect information about users and their visit to the website, such as their Internet protocol (IP) address, how they arrived at the website (for example, through a search engine or a link from another website) and how they navigate within the website. A cookie cannot read data from your hard disk or read cookie files created by other websites.

A cookie is a string of letters and numbers that uniquely identify the computer you are using and the Username and password you may have used to register at the site.

Two types of cookies are used on the GoCatch site:

The first type of cookie tracks the way that visitors use our site. These cookies help us to understand which pages are of the most interest to our users and the way that users move through our site. This type of cookie is anonymised and does not report any information that could personally identify any single user, including you. The result data gives us an aggregated view of the overall behaviour of all visitors but can’t tell us what any single user does.

The second type of cookie exists only for the time you are logged on to our site. These cookies are used by our application to create a secure user session when you login to our site using your username and password so that you can navigate around the secure areas of the site – without the need for you to re–enter information.

Some of the cookies are owned by GoCatch; some are owned by the third-party providers of tools (software) that we use in building, running or monitoring our site. Most browsers can be configured to refuse to accept cookies. You can also delete cookies from your hard drive. However, doing so may hinder your access to valuable areas of information within our site.

Access to other websites

Other websites that may be accessible via hyperlinks from the GoCatch website or through an Automated Platform Interface (API) are owned and operated by third parties and are not subject to GoCatch’s Privacy Policy. GoCatch has no control over the content of those websites. Please review the privacy policy of each individual website you access and assess whether the policy is satisfactory to you before you use the other websites.

Making a privacy complaint

How can you make a complaint? At GoCatch we value our customers. We will always aim to be fair and responsive. If you have a complaint you have the right to expect that we will handle it in a friendly and professional way. When we receive a complaint, we look on it as valuable feedback that may help us to improve the services we offer and to ensure your needs are met in a satisfactory and appropriate manner. If you wish to complain at any time about the handling, use or disclosure of your personal information just write to us at the following address: If you have a complaint you have the right to expect that we will handle it in a friendly and professional way.

When we receive a complaint we look on it as valuable feedback that may help us to improve the services we offer and to ensure your needs are met in a satisfactory and appropriate manner.

If you wish to complain at any time about the handling, use or disclosure of your personal information just write to us at the following address:

Privacy Officer

Taxi Apps Pty Ltd trading as GoCatch

Level 3/ 55 Pyrmont Bridge Road, NSW 2009

Australia

or send an email to: accounts@GoCatch.com

We will make all efforts possible to investigate your complaint and advise you of the outcome as soon as possible.

If the matter is not resolved to your satisfaction you can then refer your complaint to the Office of the Australian Information Commissioner who can be contacted through the following website:

https://www.oaic.gov.au/individuals/how-do-i-make-a-privacy-complaint

How do we manage a complaint?

We will:

Keep a record of your complaint

Respond to the complaint within a few days if we can, or tell you if we need more time to look into it

Keep you updated on what we’re doing to fix the problem

We will make all efforts possible to advise you of the outcome as soon as possible and in any event within 30 days of the complaint. Or if we cannot respond within that timeframe we will let you know why.

What else can you do?

If the matter is not resolved to your satisfaction after you have been through our internal complaints process, there are free and independent dispute resolution services available to you.

In Australia:

Office of the Australian Information Commissioner. GPO Box 5218 Sydney NSW 2001.

Fax: +61 2 9284 9666

Email: enquiries@oaic.gov.au Note that email that is not encrypted and can be copied or tracked.

In New Zealand:

Office of the Australian Information Commissioner. PO Box 10 094 Wellington 6143.

Fax: (04) 474 7595

Email: enquiries@privacy.org.nz Note that email that is not encrypted and can be copied or tracked.

In European Union:

Office of the Australian Information Commissioner. For a list of relevant data protection authorities please refer to the European Commission website

UK authority: Information Commissioner’s Office Wycliffe House Wilmslow Cheshire SK9 5AF UK

Email: https://ico.org.uk/global/contact-us/email Note that email that is not encrypted and can be copied or tracked.