Crystal IT Privacy Policy
Effective Date: 21 October 2021
Last Updated: 03 July 2026
1. Purpose
The purpose of this Privacy Policy is to provide a clear overview of how Crystal IT handles personal information collected from customers, website visitors, and other external parties. It outlines what information we collect, how it is collected, and how it is used, disclosed, stored, and protected. Crystal IT recognises the importance of protecting your privacy and is committed to handling personal information responsibly, securely, and in accordance with Australian privacy laws.
2. Scope
This Privacy Policy applies to all Crystal IT directors, employees, contractors, and representatives, regardless of their role or employment status. All personnel are expected to comply with this policy where applicable.
The terms "you" and "your" refer to customers, prospective customers, website visitors, suppliers, business contacts, and any other individuals who interact with Crystal IT.
3. Policy Statement
Crystal IT is committed to protecting your privacy and complying with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
We collect, use, disclose, and store personal information only where it is reasonably necessary for our business operations or as required by law. We do not sell or rent your personal information to third parties. Where we engage trusted third-party service providers, they are required to handle your information securely and in accordance with applicable privacy obligations.
We maintain appropriate technical and organisational security measures to protect your personal information from unauthorised access, misuse, loss, alteration, or disclosure.
4. Collection of Personal Information
We may collect personal information including:
-
Name
-
Email address
-
Phone number
-
Business or residential address
-
Company name and job title
-
Payment and billing information
-
Device and website usage information (such as IP address, browser type, and pages visited)
-
Any other information you voluntarily provide when communicating with us or using our services
-
How we collect information
We may collect personal information:
-
Directly from you through our website, online forms, emails, telephone conversations, or face-to-face interactions
-
When you request information or engage our services
-
Through cookies and analytics technologies on our website
-
From third parties where permitted by law
-
By providing your personal information, you consent to its collection, use, and disclosure in accordance with this Privacy Policy.
5. Use of Personal Information
Crystal IT may use your personal information to:
-
Deliver managed IT services and technology solutions
-
Respond to enquiries and provide customer support
-
Process payments and manage customer accounts
-
Improve our website, products, and services
-
Communicate service updates, maintenance notices, newsletters, and marketing communications (where permitted)
-
Meet legal and regulatory obligations
-
Investigate complaints, security incidents, or suspected unlawful activity
If you choose not to provide certain personal information, we may be unable to provide some of our products or services.
6. Disclosure of Personal Information
We may disclose your personal information to:
-
Employees and contractors who require the information to perform their duties
-
Trusted third-party service providers, including cloud hosting providers, software vendors, payment processors, and IT support providers
-
Professional advisers, including accountants, auditors, and legal advisers
-
Government agencies, regulators, or law enforcement where required or authorised by law
-
Successors or purchasers in connection with a business sale, merger, or restructure
We only disclose personal information where appropriate and in accordance with applicable privacy laws.
7. Security of Personal Information
Crystal IT takes reasonable steps to protect personal information against misuse, interference, loss, unauthorised access, modification, or disclosure.
Security measures may include:
-
Secure servers and encrypted communications
-
Access controls and authentication procedures
-
Firewalls and endpoint protection
-
Regular software updates and security monitoring
-
Staff training and internal security procedures
While we take reasonable precautions, no method of transmitting information over the internet or storing electronic data is completely secure.
8. Access and Correction
You may request access to the personal information we hold about you or request that inaccurate, incomplete, or outdated information be corrected.
To make a request, please contact us using the contact details below. We will respond within a reasonable timeframe and in accordance with Australian privacy legislation.
9. Overseas Disclosure
Some of our service providers may store or process personal information outside Australia.
Where personal information is disclosed overseas, we take reasonable steps to ensure the recipient handles the information in a manner consistent with the Australian Privacy Principles.
10. Complaints
If you believe we have breached your privacy or mishandled your personal information, please contact us using the details below.
We will investigate your complaint and respond as soon as reasonably practicable.
If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC).
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes to our business practices or legal obligations.
The current version will always be available on our website at www.crystalit.com.au.
Contact Us
Crystal IT
Website: www.crystalit.com.au
Email: support@crystalit.com.au