Community Music - Privacy Policy

Last Update: 30 August 2024

Here at UNIFIED Recorded Music Pty Ltd (ACN 668 630 304) atf URM Trust t/a Community Music, we take your privacy seriously. This privacy policy is designed to help you understand how Community Music and its related companies (we, our, us) may collect, use and disclose your Personal Information and what we do to comply with the Privacy Act 1988 (Cth) and other applicable privacy laws (Privacy Laws).

We may review this policy from time to time. If we update this privacy policy, we will make the most up-to-date version of it available via our primary website (https://www.communitymusic.net) and any relevant secondary websites (individually and collectively, our Websites). Please contact our Privacy Officer (using the details in section 7 below) if you have any questions about this document.

IF YOU DO NOT AGREE WITH ANY PART OF THIS POLICY, PLEASE DO NOT BROWSE, ACCESS OR USE ANY WEBSITE OPERATED BY US, OR, APPLY TO ACCESS, USE OR OTHERWISE ENGAGE WITH OUR SERVICES.

1. Types of information that we collect and purpose of collection

At a high level, ‘Personal information’ means information or an opinion about an identified individual, or an individual who is reasonably identifiable. It may include your name, age, address and, in some circumstances, financial information.

The kinds of Personal Information we collect and hold about you will depend on the circumstances of collection. For example:

    If you are a mailing list subscriber, we may collect contact details from you such as your full name, email address, country, postcode and year of birth.
    If you apply for access to our services, we may collect your full name and email address.
    If you enter a competition or giveaway organised by us, we may collect your full name, email address, social media account name handles and further information depending on the competition.
    For recruitment purposes, we may collect and hold Personal Information about prospective employees, such as your tax file number, date of birth, driver’s licence number and employment history. We may also need to collect sensitive information about you such as your membership in professional or trade associations and certifications from police checks. Unless the collection of sensitive information is permitted the Privacy Laws, we will only collect sensitive information with your consent where that information is reasonably necessary for our business.

2. How we collect your Personal Information

We collect your Personal Information when you interact with us directly via our Websites and social media accounts. We also collect your Personal Information when you join competitions or giveaways organised by us, when you apply for a job with us, or when you otherwise request or access our services.

Collection through social media platforms

When you interact with us using social media platforms, you may provide Personal Information to the operators of these social media platforms. Such information is subject to those operators’ privacy policies. We are not responsible for the privacy practices and policies of these operators even if you accessed these platforms from our Websites. We encourage you to read and understand these operators’ privacy policies before providing them with your Personal Information.

Collecting Personal Information from other sources

Sometimes we collect Personal Information about you from other sources where you have consented to the collection, where we are authorised by law to collect information, or where it is unreasonable or impracticable to collect that information from you personally.

If you apply for services, we may collect your Personal Information available via third-parties such as social media profiles or digital service providers (DSP) profiles/accounts.

If you apply for a position with us, we may collect your Personal Information from third parties such as recruitment service providers, referees, former employers, educational institutions and, if appropriate, health providers and police.

If we receive unsolicited Personal Information about you from a third party and it is clear to us that we should not have received that information, we will destroy or securely delete that information (if it is lawful and reasonable for us to do so).

Notification of collection of Personal Information from third parties

If we collect your Personal Information from third parties in circumstances where you may not be aware that we have collected your Personal Information, we will take reasonable steps to notify you of the collection and the circumstances that surround the collection.

Use of tracking tools

We may use cookies, Google Analytics, Hotjar and other similar tracking tools on our Websites to collect information about how you use our Websites. In particular:

    Cookies are text files placed in your computer’s browser to store your preferences. These cookies collect information on how you and other visitors use our Websites.
    Google Analytics is a service which transmits website traffic data. It will not identify individual users and IP addresses with any other data held by Google.
    Hotjar is a combination of various online tools that we use to track the behaviour of the people who use and visit our Websites.

We use tracking tools to maintain our site, identify and analyse trends, and to obtain broad demographic information. We may transfer the information collected via tracking tools to third-party platforms (such as Meta and TikTok) for the purposes of targeted marketing in relation to our products and services (Third-Party Platform Marketing).

Most browsers are initially set to accept cookies or other tracking tools. If you prefer, you can set your browser to refuse these by selecting the appropriate settings or blockings, or deleting or disabling them in your browser or device permits. If you disable cookies, we cannot guarantee that our Websites will be fully functional but we will still be able to collect data from your server to use in Third-Party Platform Marketing.

3. Use and disclosure

Use and disclosure of Personal Information

We use Personal Information for a variety of purposes to conduct our business, including:

    to supply services and products to you (including merchandise and tickets to our events);
    to provide you with access to the Websites;
    to contact and communicate with you and engage in marketing campaigns (including in relation to your purchases, our competitions, and to provide you with information about our products and services);
    to run our competitions and promotions;
    to conduct market research and website development;
    for internal record keeping;
    to consider applications for current and future employment; and
    to comply with legal and regulatory requirements (including, without limitation, providing Personal Information to law enforcement and relevant State and Territory authorities, when required to do so).

We will not use or disclose Personal Information we hold about you that was collected for a particular purpose for another purpose, unless:

    you have consented to the use or disclosure of the information for another purpose; or
    the use or disclosure is otherwise permitted under applicable Privacy Laws.

If we collect any sensitive information (for example, financial account information), you may direct us to only use that information for limited purposes.

Direct Marketing

Direct marketing involves communicating directly with you for the purpose of promoting our events, merchandise and other goods or services. Direct marketing can be delivered by a range of methods including email, SMS or social media.

We (and our affiliates, contractors, service providers and business partners) may carry out direct marketing activities from time to time. You have a right under the Spam Act 2003 (Cth) to opt out from direct marketing and you can opt out at any time by emailing our Privacy Officer at legal@unifiedmusicgroup.com or by clicking the ‘unsubscribe’ link on any direct marketing communications.

Disclosure to third parties

We may disclose Personal Information about you to third parties in connection with the purposes described above (including for direct marketing purposes). This may involve disclosing Personal Information to entities including:

    our related entities (including UNIFIED Recording IP Pty Ltd atf UNIFIED Recording IP Trust and UNIFIED Music Group Pty Ltd);
    our business partners or joint venture entities in the music, entertainment and marketing industries;
    our service providers (including RightsHub, FUGA, The Annex Creative and Rareform);
    our artists (and their label and representatives) if you purchase their products;
    our external service providers, including mail houses, couriers, payment processors or payment gateway providers and e-commerce website providers;
    our professional advisers, such as auditors, insurers and lawyers;
    debt collection agencies and credit reporting bodies;
    law enforcement, government agencies and regulatory authorities (as required or authorised by law or a court/tribunal order); and
    any other person where you have given your consent.

We take reasonable steps to ensure that these third parties are bound by privacy obligations in relation to your Personal Information.

We will not sell, gift, rent or trade your Personal Information to anyone.

Disclosure overseas

In some circumstances, we may need to disclose your Personal Information to third party suppliers and service providers located overseas including FUGA and RightsHub. The locations of these overseas entities include the United States, Canada, the United Kingdom and Europe. We take reasonable steps to ensure overseas recipients of your Personal Information do not breach Privacy Laws.

Our Websites may contain features or links to websites and services provided by third parties such as social media platforms, e-commerce platforms, online streaming services and external payment gateways. Any such third-party service providers have their own privacy policies and may disclose your Personal Information to overseas recipients.

4. Protecting Personal Information

Storing Personal Information

We store your Personal Information in different ways, including in physical and electronic form on site and with third party storage providers.

We maintain physical, electronic and procedural security measures designed to safeguard your Personal Information and protect it from misuse and unauthorised access, disclosure or interference. For example, we may implement:

    physical security measures for access to systems, including restricting access to authorised personnel only, control of access to buildings and use of user identifiers and passwords;
    electronic security systems such as firewalls and data encryption, backup and recovery of systems, staff management and finance software, use of secure payment portals; and
    procedural security measures, including imposing confidentiality obligations on employees, consultants and contractors, requiring them to comply with strict privacy and security policies and procedures including account decommissioning for exiting staff.

Security Breach

Although we take care with your Personal Information, we cannot 100% guarantee that there will not be any security breaches.

To the extent permitted by law, we accept no liability for any breach of security or direct hacking of our security or any unintentional disclosure, loss or misuse of any information or data or for the actions of any third parties that may obtain any information or data.

What happens if we no longer need your Personal Information?

If we no longer need your Personal Information for any purpose, we will take reasonable steps to destroy or permanently de-identify the information, unless the information is contained in a Commonwealth record or we are required by law, or a court/tribunal order, to retain the information.

5. Access to, and correction of, Personal Information

Access to Personal Information

You may request access to Personal Information we hold about you by contacting our Privacy Officer in accordance with the contact details set out at the end of this policy.

We will respond to a request for access within a reasonable time, and give you access in the manner you request, if it is reasonable and practicable to do so, unless an exception in the applicable Privacy Laws or other applicable privacy law applies. For example, if providing this access may disclose information about another person and have an unreasonable impact on their privacy, we may need to refuse to grant you access.

We may need to verify your identity before we give you access to your Personal Information. Depending on the nature of the request, we may charge you a small fee to access that information.

Correct Information

It is your responsibility to maintain the accuracy and completeness of your Personal Information and that your failure to do so may impact our ability to undertake our various business functions, including delivering services.

You may request that we correct any information about you which you think is inaccurate, incomplete or out of date. We will respond to a correction request within a reasonable time.

If we correct your Personal Information that we have previously disclosed to another entity, and you ask us to tell the other entity about the correction, we will take reasonable steps to tell the other entity about the correction, unless it is impractical or unlawful to do so.

Refusal to allow access to, or correction of, Personal Information

If we refuse to allow you access to your Personal Information or to correct that information, then we will provide you with the reasons for our decision and will inform you of mechanisms available to complain about the refusal.

6. Anonymity

You have the option to remain anonymous, or to use a pseudonym when dealing with us where it is lawful and practical to do so. However, without your Personal Information we may not be able to provide you with our products and services.

7. Contact

Privacy Officer

If you have any questions in relation to our Privacy Policy or complaints about our privacy practices, or if you would like further information, please contact our Privacy Officer:

Privacy Officer

Telephone: 0414 422 354

Mail: 51 Wangaratta St, Richmond VIC 3121 Australia

Email: legal@unifiedmusicgroup.com

When contacting us please provide as much detail as possible in relation to your question, comment or complaint. We will take any privacy complaint seriously and any complaint will be assessed with the aim of resolving any issue in a timely and efficient manner.

External complaint mechanism (AU)

If you are a resident of Australia and you are not happy with the outcome of the Privacy Officer’s investigation or we have not replied to you within 30 days, then you can raise your concern with:

The Office of the Australian Information Commissioner

Telephone: 1300 363 992

Mail: Office of the Australian Information Commissioner

GPO Box 5218 Sydney NSW 2001

Online: https://www.oaic.gov.au/privacy/privacy-complaints/