Users of the BTS website are entitled to expect that any information gathered as a result of that use will be treated within the terms of the New South Wales government's privacy responsibilities and obligations. The New South Wales government's privacy practices are regulated by the New South Wales Privacy and Personal Information Protection Act 1998.
What information do we collect?
When you look at the pages on the BTS website, the computers on which the site is hosted automatically record information that identifies, for each page accessed:
- IP address, browser settings, visits and pages viewed.
- ASP.NET places session cookies on a users computer in order to track their authenticated session and to track accessibility options, namely increased or decreased font size.
- If a user account is created then we ask for an email address, name and a password.
How do we use the information collected?
- For website analytics and usage reports.
- To track a user’s session.
- A user’s details are necessary to grant secure authenticated access to the website and control password resets.
The BTS will not disclose or publish information that identifies individual machines, or potentially identifies sub-groupings of addresses, without consent or otherwise in accordance with the New South Wales Privacy and Personal Information Protection Act 1998.
What exceptions are there to this rule?
The BTS may collect, use and disclose more extensive information than stated above in the following circumstances:
- Unauthorised attempts to access files which are not published on the BTS website pages
- Unauthorised tampering or interference with files published on the BTS website
- Unauthorised attempts to index the contents of the BTS website by other sites
- Attempts to intercept messages of other users of the BTS website
- Communications which are defamatory, abusive, vilify individuals or groups or which give rise to a suspicion that an offence is being committed
- Attempts to otherwise compromise the security of the web server, breach the laws of the State of New South Wales or Commonwealth of Australia, or interfere with the enjoyment of the BTS website by other users.
The BTS reserves the right to make disclosures to relevant authorities where the use of the BTS website raises a suspicion that an offence is being, or has been, committed.
In the event of an investigation, the BTS will provide access to data to any law enforcement agency that may exercise a warrant to inspect our logs.
Is the information stored securely?
- Yes. Session information is always stored on the server and not exposed to users unless it logically should be as part of the application’s functionality.
- Administration privileges to the website are limited and properly managed. We may maintain one or more role-based user accounts that have access only in order to provide maintenance support.
Who else has access to information within the BTS?
The information is captured on the computers on which the site is hosted. Access to the raw data is restricted to a limited number of officers in the BTS for the purpose of analysis and to report on the success of the BTS website in meeting the BTS communication and access objectives.
Statistical reports prepared from the raw data are circulated among selected officers inside the BTS.
What happens to the email gathered from the website?
Any email sent to the BTS via links from the website is assessed then passed onto the most appropriate officer within the BTS. Replies to emails, including the original message, are treated as official records and are saved and archived.
Will this policy be updated over time?
Due to the developing nature of privacy principles for online communication, this policy may be modified or expanded in light of new developments or issues that may arise from time to time. The amended policy will be posted to this site and will operate from the time it is posted.
This policy was last modified on 15 December 2010.