Privacy Policy

  1. About this Policy

This is the Privacy Policy of Self Storage Association of Australasia Limited (ACN 050 341 725) (collectively, “SSAA“, “We“, “Our” and/or “Us“).

At SSAA, We are committed to safeguarding Your privacy and protecting Your Personal Information. This Policy contains important information about how We manage Your Personal Information in accordance with our obligations under the Privacy Legislation.

This Policy sets out:

(a) the kinds of Personal Information that We collect and hold;

(b) how We collect and hold Personal Information;

(c)the purposes for which We collect, hold, use and disclose Personal Information;

(d) how You may access Personal Information about You that is held by Us and seek the correction of such information;

(e) how You may complain about a breach of the Privacy Legislation or the way in which We have managed your Personal Information, and how We will handle Your complaint;

(f) whether We are likely to disclose Personal Information to overseas recipients and where such recipients are located; and

(g) Our contact details.

This Policy was last updated on 30 March 2025.

  1. Definitions

In this Policy:

(a) “Account” means a Member’s membership account with Us.

(b) “Affiliates” includes Our Related Bodies Corporate, Our joint venture partners and other companies under a common control.

(c) “Anonymous Data” means data that is not associated with or linked to Personal Information and does not, by itself, permit the identification of individual persons.

(d) “Australian Privacy Principles” means the principles contained in the Australian Privacy Act which govern the handling, use and management of Personal Information.

(e) “Cookies” means small, non-malicious files that are used to improve the Website experience of Users.

(f) “Corporations Act” means the Corporations Act 2001 (Cth) as amended from time to time.

(g) “Contact Person” means an individual whose contact information is provided to Us by a Member in that Member’s membership application, or whose contact information is otherwise provided by the Member for the purposes of SSAA contacting that Member.

(h) “Eligible Data Breach” means, for the purposes of the Notifiable Data Breach Scheme, a data breach that is likely to result in serious harm to any of the individuals to whom the Personal Information relates. An Eligible Data Breach arises when the following three criteria are satisfied:

(1) there is unauthorised access to or unauthorised disclosure of Personal Information, or a loss of Personal Information, that an entity holds;

(2) this is likely to result in serious harm to one or more individuals; and

(3) the entity has not been able to prevent the likely risk of serious harm with remedial action.

(i) “Government Identifiers” means a government-issued identity document, for example, a driver’s licence or passport.

(j) “Information Privacy Principles” means the principles contained in the New Zealand Privacy Act governing the handling, use and management of Personal Information.

(k) “Marketing Material” means free newsletters and communications that We send to you to promote Our services and/or the Website.

(l) “Member” means an individual or entity who has been accepted by Us as a member of SSAA and whose membership remains current.

(m) “Membership Terms” means SSAA’s “Membership Terms and Conditions”, as posted on the Website and amended from time to time.

(n) “Notifiable Data Breach Scheme” refers to the requirements contained in Part IIIC of the Australian Privacy Act for certain entities to notify individuals and the OAIC about Eligible Data Breaches.

(o) “OAIC” means the Office of the Australian Information Commissioner.

(p) “Personal Information” means information or an opinion (including information or an opinion forming part of a database), whether true or not, and whether recorded in a material form or not, about an individual whose identity is apparent, or which can reasonably be ascertained, from the information or opinion, including, names, addresses, telephone numbers, email addresses, as well as any other non-public information that is associated with or linked to any of the foregoing data and “Personal Information” includes Sensitive Information and Government Identifiers.

(q) “Policy” means this privacy policy, as amended from time to time.

(r) “Privacy Act” means:

(1) in respect of Australia, the Privacy Act 1988 (Cth), as amended from time to time; and

(2) in respect of New Zealand, the Privacy Act 1993 (NZ), as amended from time to time.

(s) “Privacy Legislation” means, collectively, the relevant Privacy Act in respect of Australia and New Zealand and any other applicable privacy legislation in Australia and New Zealand, as amended from time to time.

(t) “Privacy Principles” means, as applicable:

(1) in respect of Australia, the Australian Privacy Principles; and

(2) in respect of New Zealand, the Information Privacy Principles.

(u) “Related Bodies Corporate” has the meaning given to such expression in the Corporations Act.

(v) “Sensitive Information” means health or personal information regarding an individual’s racial or ethnic origin, political opinions, membership of a political association, religious beliefs or affiliations, philosophical beliefs, membership of a professional or trade association, membership of a trade union, sexual preferences or practices or criminal record.

(w) “SSAA“, “We“, “Us” and/or “Our” means Self Storage Association of Australasia Limited (ACN 050 341 725).

(x) “StorerCheck Database” means SSAA’s internal credit and behaviour database.

(y) “Unsolicited Information” means Personal Information which has been provided to Us without being requested by Us.

(z) “User“, “You” and/or “Your” means a Member, a Contact Person, and anyone accessing or using the Website for any reason.

(aa) “Website” means the website www.selfstorage.org.au.

  1. Changes to this Policy

We may, from time to time, update this Policy to take into account new laws and regulations and technological developments. We encourage You to check the Website regularly for any updates.

By submitting Personal Information to Us, or permitting a Member to submit Your Personal Information to Us, You agree to the most recent version of this Policy as posted on the Website and You expressly consent to the collection, use and disclosure of Your Personal Information in accordance with this Policy.

If We make any material changes in the way We use Your Personal Information, We will notify You by sending You an email to the last email address You provided to Us, and/or by posting notice of the changes on the Website.

  1. How We collect Personal Information

4.1 Personal Information You provide to Us

If You are a Member, or a Contact Person, We will collect Personal Information directly from You when You apply to be a Member and when We interact with You. This information will include:

(a) first and last name,

(b) residential address;

(c) telephone number(s),

(d) email address,

(e) financial information (including bank account and/or credit card details); and

(f) other application and facility information for verification purposes.

If We collect Unsolicited Information, We will hold, use and or disclose the Unsolicited Information in accordance with this Policy.

We retain information on Your behalf, such as files and messages that You store when using an Account.

If You provide Us feedback or contact Us via email, We will collect any contact information provided in the email, as well as any other content included in the email, in order to send You a reply.

When You post messages or upload any other content on the Website, the information contained in Your post will be stored on Our servers, and other Users to whom You provide access will be able to see such messages and content.

If You contact us via email regarding support for the Website, We may also collect Personal Information regarding Your operating system and version.

We may also collect Personal Information at such other points on the Website where We state that Personal Information will be collected. If You choose not to provide certain information, this may limit the features of the Website which You are able to use.

4.2 Personal Information collected via technology

The information We collect about You via the Website depends on how and why You access the Website. If You visit the Website to read, browse or download information, Our computer system will record information about the visit.

To make the Website more useful to You, Our servers (which may be hosted by a third party service provider) collect information from You including Your browser type, operating system, Internet Protocol (IP) address (a number that is automatically assigned to Your computer when You use the Internet, which may vary from session to session), hardware attributes, and/or a date/time stamp for Your visit.

4.3 Cookies

We use Cookies on the Website to identify You when You return to the Website, to keep track of Your preferences, to direct specific content to You and to store details about Your use of the Website.

If You change the settings on Your internet browser to block or restrict Cookies, You may not be able to make full use of the Website.

4.4 Personal Information collected from other people or entities about You

Other people or entities may provide Personal Information about You to Us (for example, when feedback is received about You, including via the Website). If You are a Contact Person, we will also collect Personal Information about You from the Member.

4.5 Personal Information collected from third parties

We may receive Personal Information about You from third parties who assist Us in providing and maintaining Our services, such as service providers who assist with verifying information provided by You.

  1. Use of Your Personal Information

5.1 How We use Your Personal Information

In general, We use Your Personal Information to respond to requests that You make or to help Us serve You better.

The ways in which We use Your Personal Information include:

(a) to facilitate the creation of and security of an Account and carry out our business (including planning, development, research and analysis);

(b) to identify and authenticate You as a User;

(c) to verify information provided by You (as applicable);

(d) to improve Our administration of the Website and the quality of Your experience, including responding to Your queries and requests for assistance;

(e) to tailor the features, performance and support of the Website for You;

(f) to communicate with You regarding changes or improvements to the services We offer and the Website or changes to any terms, rules, guidelines or policies posted by Us on the Website from time to time;

(g) to communicate with You as part of secondary fraud protection (as applicable) or to solicit Your feedback;

(h) to send You other administrative communications, such as newsletters, updates, invoices and statements, security, support and maintenance communications and a welcome email to verify ownership of the email address provided when an Account was created;

(i) to protect SSAA and other Users;

(j) to comply with any law, order of a court, tribunal or regulator or if SSAA reasonably believes that the use or disclosure of the information is reasonably necessary for enforcement related activities;

(k) to verify Your compliance with Your obligations under any terms, rules, guidelines or policies posted by SSAA on the Website from time to time and to notify You of any breaches;

(l) for credit and risk management purposes, including the development and maintenance of the StorerCheck Database on behalf of Members;

(m) for direct marketing purposes; and

(n) to seek advice from Our professional advisers (for example, Our lawyers).

5.2 Sensitive Information

Before We collect any information from You that is Sensitive Information, We will obtain Your consent. We will not use or disclose Your Sensitive Information for any purpose other than the primary purpose for which Your Sensitive Information was collected, unless You expressly consent for Us to do so.

5.3 Anonymous Data

We may create Anonymous Data records from Personal Information by excluding information that makes the data personally identifiable to You (such as Your name). We may use this Anonymous Data to analyse request and usage patterns so that We can improve the content, performance and navigation of the Website. We reserve the right to use Anonymous Data for any purpose and disclose Anonymous Data to third parties as necessary.

5.4 Selling Your Personal Information

Under no circumstance will We sell Your Personal Information to unrelated third parties..

6. Disclosure of Your Personal Information

6.1 At Your request

We may share Your Personal Information with third parties to whom You request Us to send Personal Information, including other Members.

6.2 Disclosure on the StorerCheck Database

Your Personal Information may be disclosed on and shared with all Members accessing the StorerCheck Database. Some Members reside in New Zealand and so your Personal Information may be disclosed to recipients who are located there.

6.3 Disclosure to third-party service providers

We may share Your Personal Information with third-party service providers to:

(a) provide You with the full use of the Website;

(b) conduct quality assurance testing;

(c) facilitate the creation of Accounts; and

(d) provide technical support.

These third-party service providers are required, by Us, to only use Your Personal Information to provide the services We request. Examples of such third party service providers include companies that process payments from You to Us.

6.4 Direct marketing

Where Personal Information (other than Sensitive Information) is collected by Us, that information may only be used by Us (or disclosed Us SSAA to a third party) for direct marketing purposes if:

(a) the individual has consented to Us using or disclosing that information for that purpose, or the individual would reasonably expect Us to use or disclose the information for that purpose. For example, Our Membership Terms allow Members who hold “Service Memberships” (as described in Our Membership Terms) to provide direct marketing communications to other Members and Contact Persons, in certain circumstances;

(b) We (or the third party) provide a simple means by which the recipient can unsubscribe from direct marking communications; and

(c) the individual has not opted out of receiving direct marketing communications from Us (or the third party).

6.5 Affiliates and acquisitions

We may share some or all of Your Personal Information with Our Affiliates, in which case We will require Our Affiliates to honour this Policy.

 

If another company acquires the shares in SSAA, the business, or Our assets, that company will, directly or indirectly, possess the Personal Information collected by Us.

6.6 Other disclosures

Regardless of any choices You make under this Policy regarding the use of Your Personal Information, SSAA may disclose Personal Information if We believe in good faith that such disclosure is necessary:

(a) in connection with any legal investigation;

(b) to comply with relevant laws, or to respond to subpoenas or warrants served on Us;

(c) to lessen or prevent a serious threat to the life, health or safety of an individual or to public safety;

(d) to investigate or assist in preventing any violation or potential violation of the law;

(e) where another “permitted general situation” (as defined in the Privacy Legislation) applies; or

(f) where disclosure is reasonably necessary for a law enforcement related activity.

  1. Third party data collection

7.1 Website links

The Website may contain links to other websites that are not owned or controlled by Us. We have no control over, do not review and are not responsible for the privacy policies of, or the content displayed on, such other websites. When You click on a link to any other website or location, You will leave the Website and go to another website where a third party may collect Personal Information or Anonymous Data from You.

7.2 Third-party advertising companies

We may use third-party advertising companies to serve ads when You visit the Website. These companies may collect and use information (not including Your name, address, email address, or telephone number) about Your visits to the Website and other websites in order to provide advertisements about their goods and services to You.

7.3 Application of this Policy

This Policy only addresses Our use and disclosure of Your Personal Information. If You disclose Personal Information to a third party, the use and disclosure restrictions contained in this Policy will not apply to those third parties.

  1. Your choices regarding your Personal Information

8.1 Direct marketing

On creation of an Account, We may periodically send You Marketing Material. You may opt-out of receiving Marketing Material at any time by either following the unsubscribe instructions in the Marketing Material or by contacting Us directly.

Our electronic marketing activities will comply with the requirements of the Spam Act 2003 (Cth) and the Unsolicited Electronic Messages Act 2007 (NZ) (as applicable).

Notwithstanding any other provision of this Policy or any election by You to unsubscribe from Marketing Materials, We may continue to send You notices of any updates to any terms, rules, guidelines or policies posted by Us on the Website from time to time.

8.2 Correction of Your Personal Information

You may update, change or delete any Personal Information or other information We hold about You in relation to an Account by editing the Account profile or by written communication to Us requesting Us to do so.

8.3 Retention and deletion of Your Personal Information

You may request deletion of Your Personal Information by Us at any time. However, We may be required under the Privacy Legislation to keep this information and not delete it (or to keep this information for a certain time), in which case We will comply with Your deletion request only after We have fulfilled such requirements.

Once We are no longer required to keep Your Personal Information and the primary purpose for which Your Personal Information is no longer relevant (i.e. You are no longer a Member), We will take reasonable steps to destroy or permanently de-identify the information as appropriate.

When We delete any information, it will be deleted from the active StorerCheck Database, but may remain in Our archives. We may retain Your information for fraud or similar purposes if this is permitted or required under the Privacy Legislation. However, if We have already disclosed some of Your Personal Information to third parties, We cannot access that Personal Information any longer and cannot force the deletion or modification of any such information by the parties to whom We have made those disclosures. In that situation You would need to approach such third parties directly.

9. Securing Your Personal Information

9.1 Security

SSAA is committed to protecting the security of Your Personal Information. We use a variety of industry-standard security technologies and procedures to help protect Your Personal Information from unauthorised access, use, or disclosure.

No method of transmission over the internet, or method of electronic storage, is 100% secure. While SSAA uses reasonable efforts to protect Your Personal Information, We cannot guarantee absolute security.

9.2 Our employees and contractors

Our employees and contractors who provide services related to Our information systems are obliged to respect the confidentiality and privacy of any Personal Information held by SSAA. However, We will not be held responsible for events arising from unauthorised access to Your Personal Information.

9.3 Your Account responsibilities

You are responsible for maintaining the security of any passwords for Your Account or any Account for which you are a Contact Person. Please notify Us immediately if You become aware of any unauthorised use of or any breach of security relating to such Account.

10. Requests for access

You can request access to Your Personal Information, or request that We amend Your Personal Information, by sending a request to Us.

Upon receipt of such a request, We will give You access unless specific limitations or restrictions apply (i.e. We reasonably determine that the request is frivolous or vexatious or if providing such access would be unlawful). We reserve the right to charge any reasonable costs incurred in providing such access to You

We will respond to a request for access to Personal Information within a reasonable period after the request is made and give access in the manner requested if it is reasonable and practical to do so.

If We do not agree to provide with access to Your Personal Information or We do not agree to amend Your Personal Information as requested, We will, where appropriate, provide You with the reasons for Our decision and directions as to how to complain about Our refusal.

11. Notifiable Data Breach Scheme and Eligible Data Breaches

Under the Notifiable Data Breach Scheme, We are required to notify particular individuals and the OAIC about Eligible Data Breaches.

Not all data breaches are eligible (for example, if We act quickly to remediate a data breach, and as a result of this action the data breach is not likely to result in serious harm, there is no requirement to notify any individuals or the OAIC).

Whether a data breach is likely to result in serious harm (which is one of the criteria of an Eligible Data Breach) requires an objective assessment, determined from the viewpoint of a reasonable person in Our position.

12. Feedback and Complaints

12.1 Feedback

SSAA welcomes ideas and feedback about all aspects of Our Services and/or the Website. SSAA stores all feedback provided by Users and uses this feedback to administer and refine Our services and/or the Website. Any feedback shared with SSAA’s partners or service providers will only be shared in aggregate form or with identifying characteristics removed.

12.2 Complaints

If You have any complaints about dealings with Your Personal Information (including any breach of the Australian Privacy Principles by Us), You may lodge Your complaint using the contact information provided in this Policy.

Any complaints received by Us will investigated by Our compliance team and a written response will be provided to You within a reasonable time. We may seek further information from You in order to provide You with a complete response. If You are not satisfied with Our response and you are an Australian Member, You may refer Your complaint to the OAIC.

The OAIC can be contacted via the details below:

Street address Level 3, 175 Pitt Street

Sydney NSW 2000

Web www.oaic.gov.au
Email [email protected]
Telephone
(within Australia)
1300 363 992
Telephone
(outside Australia)
+61 2 9284 9749

 

13. Contact Us

Please email our Privacy Officer at [email protected] if you:

(a) would like to know what personal information We hold about You;

(b) wish to access or correct the personal information that We hold about You; or

(c) have a question or feedback for Us about this Policy.

Postal address Self Storage Association of Australasia
Unit 4, 2 Enterprise Drive
Bundoora VIC 3083
Australia
Web www.selfstorage.org.au
Email [email protected]
Telephone
(within Australia)
03 9466 9699
Telephone
(outside Australia)
+61 3 9466 9699