OFFROAD ADVENTURES FIJI is committed to providing quality s

Privacy Policy 

OFFROAD ADVENTURES FIJI is committed to providing quality services to you and  this policy outlines our ongoing obligations to you in respect of how we manage your  personal information. 

Privacy Act 1988  

OFFROAD ADVENTURES FIJI is bound by the Information Act (2018) (the Act).  OFFROAD ADENTURES FIJI business is Fiji entity as defined in s 20(n) of the Act.  

WHAT IS PERSONAL INFORMATION? 

Personal Information is information or an opinion that identifies an individual.  

We collect and hold personal information relating to our clients and to other people  and entities associated with our clients as may be provided or disclosed to us in the  course of business. Such personal information may include, but is not limited to,  names, tax file numbers, addresses, telephone numbers, social media details, email  addresses, occupations, wage records, bank account details, asset and investment  details, financial planning records, taxation records, medical records, and relationship details.  

Personal information is collected from our clients in the following ways:  

− by providing it to us directly: 

− by authorizing third parties to provide it to us;  

− by other parties providing it to us either voluntarily or pursuant to compulsory  processes we conduct on our client’s behalf.  

HOW IS PERSONAL INFORMATION RECEIVED AND HELD?  

Personal information may be received and held either as a hard copy, paper, or a  soft copy being electronic data, in any available form. We collect information during  booking, through website interactions (its called cookies). In either case, we take the  security of personal information very seriously. We secure hard copy documents  carefully in and out of our office. We use cyber-security systems to protect soft copy  documents. We never ask for bank details or other sensitive information by email.  

FOR WHAT PURPOSE IS PERSONAL INFORMATION COLLECTED, HELD, USE  AND DISCLOSED? 

We collect personal information for the primary purpose of providing our services to  you, providing information to our clients and marketing. We may also use your 

personal information for secondary purposes closely related to the primary purpose,  in circumstances where you would reasonably expect such use or disclosure. You  may unsubscribe from our mailing/marketing lists at any time by contacting us in  writing. 

All data is processed by the business on a lawful basis. The purposes for which we  collect, hold, use and disclose personal information are:  

− to offer our products and services to our clients. In doing so we may disclose  personal information to other people or entities involved in the provision of the  product or service, such as government departments and individuals. Unless  compelled by law, we will never disclose personal information without the  client’s knowledge and consent;  

− to facilitate our internal and external administrative processes including  financial and business operations and reporting requirements;  

− to obtain, maintain and comply with the terms of our professional indemnity and  other insurance policies; and  

− to comply with applicable laws.  

HOW CAN PERSONAL INFORMATION BE ACCESSED OR CORRECTED?  

You may access the personal information we hold about you and to update and/or  correct it, subject to certain exceptions. If you wish to access your personal  information, please contact us in writing. 

OFFROAD ADVENTURES FIJI will not charge any fee for your access request but  may charge an administrative fee for providing a copy of your personal information. 

In order to protect your personal information, we may require identification from you  before releasing the requested or amending personal information. 

SECURITY OF PERSONAL INFORMATION  

Your Personal Information is stored in a manner that reasonably protects it from  misuse and loss and from unauthorized access, modification, or disclosure. 

When your Personal Information is no longer needed for the purpose for which it was  obtained, we will take reasonable steps to destroy or permanently de-identify your  personal information. However, most of the personal information is or will be stored  in client files which will be kept by us for a minimum of 7 years. 

Different types of data might be held for varying periods depending on their use and  legal requirement. While data may sometimes be held with third parties and us, our  IT software is able to preamp when the 7 years is finishing and they can set up  Deletion Request Rights.

SENSITIVE INFORMATION  

Sensitive information is defined in the Privacy Act to include information or opinion  about such things as an individual’s racial or ethnic origin, political opinions,  membership of a political association, religious or philosophical beliefs, membership  of a trade union or other professional body, criminal record or health information. 

Sensitive information will be used by us only: 

• For the primary purpose for which it was obtained 
• For a secondary purpose that is directly related to the primary purpose 
• With your consent, or where required or authorized by law. 

THIRD PARTIES  

Where reasonable and practicable to do so, we will collect your personal information  only from you. However, in some circumstances we may be provided with  information by third parties. In other words, we use third-party service providers such  as google analytics for us to understand how our customer use our site or Stripe for  processing bookings or payments. In such a case we will take reasonable steps to  ensure that you are made aware of the information provided to us by the third party. We adhere to Privacy Policies of our organization and laws of Fiji to ensure that all  information collected from clients is securely managed. Our IT team use firewalls to  protect your information. 

DISCLOSURE OF PERSONAL INFORMATION  

Your personal information may be disclosed in a number of circumstances including  the following: 

• Third parties where you consent to the use or disclosure; and 
• Where required or authorized by law. 

MAINTATING THE QUALITY OF YOUR PERSONAL INFORMATION 

It is an important to us that your personal information is up to date. We will take  reasonable steps to make sure that your personal information is accurate, complete,  and up to date. If you find that the information we have is not up to date or is  inaccurate, please advise us as soon as practicable so we can update our records  and ensure we can continue to provide quality services to you. 

SECURE CARHOLDER ACCCOUNT DATA 

• OFFROAD ADVENTURES FIJI implements strong access control  measures. 
• Restrict access to cardholder data by business need-to-know. 
• Assign a unique ID to each person with computer access.
• Restrict physical access to cardholder data protect cardholder data. 
• Protect stored cardholder data. 
• Encrypt transmission cardholder data across open, public networks  regularly monitor and test networks. 
• Track and monitor all access to network resources and cardholder data. 
• Regularly test security systems and processes maintain vulnerability  management program. 
• Use and regularly update antivirus software. 
• Develop and maintain secure systems and applications maintain an  information security policy. 
• Maintain a policy that addresses information security. 

DATA BREACHES  

We have implemented measures designed to secure the clients information from  accidental loss and from unauthorized access, use, alteration, or disclosure. Also  note that safety and security of your personal information also depends on you. 

All staff are trained to protect the confidentiality of client information and business information. However, despite the above Data breaches can occur as a result of  spams etc. 

Please notify our customer team as soon as possible if you believe there are any  data breaches or suspected data breaches.  

Transmission of information via the internet is not completely secure. Despite all  efforts to protect their information, we cannot guarantee the security of their  information transmitted to the site. Any transmission of personal info is at your own  risk. We are not responsible for circumvention of any privacy settings or security  measures contained on the Site. 

IF THERE IS A SUSPICION OF A BREACH 

If we suspect that there has been an eligible data breach, a reasonable and  expeditious assessment will be conducted within 30 days.  

If we believe or have reasonable grounds to believe there has been a breach, then a  statement will be prepared setting out: 

− the business’s details;  

− a description of the breach;

− the kind or kinds of information concerned; and 

− recommendations about the steps that we will take in response to it.  

If practicable, we will advise the contents of the statement to each of the affected  clients who may be at risk from the breach. Communications with individuals will be  via their preferred communication method.  

The statement will be submitted to the Privacy Commissioner. 

COMPLAINTS PROCESS RELATING TO PERSONAL INFORMATION  

If there is a breach of this privacy policy, either of the Act or the Australian Privacy  Principles (APP), a complaint may be made by the client to:  

− our customer services team; or 

− the Office of the Australian Privacy Commissioner.  

EXCEPTION TO REPORTING  

Mandatory notification requirements are waived if remedial action can be taken that  results in a reasonable person concluding that the access or disclosure is not likely  to result in serious harm to any of those individuals. 

POLICY UPDATES  

This Policy may change from time to time and is available on our website.

PRIVACY POLICY COMPLAINTS AND ENQUIRIES  

If you have any queries or complaints about our Privacy Policy, please contact us at: 

Address: Nausori Highland Junction, Corner of
Nadi backroad, Nadi FIJI.

Email: [email protected] 

Phone +679 9760088