Privacy Policy

Effective Date: 18/05/2025

At Koyrel, we are committed to protecting your privacy. This Privacy Policy outlines how we collect, use, store, and disclose your personal information in compliance with the Privacy Act 1988 (Cth).

By providing personal information to us, you consent to its collection, use, and disclosure in accordance with this Privacy Policy and any applicable agreements. We may update this policy from time to time, and we encourage you to review it periodically on our website to stay informed of any changes.

Definitions

In this Privacy Policy:

  • "Services" refer to the consulting, compliance, and risk management services provided by Koyrel &/or Koyrel Consulting, &/or Koyrel Tech.

  • "Koyrel Consulting," "we," "us," or "our" refers to Koyrel Consulting and its related entities.

  • "You" refers to any individual whose personal information is collected by us.

    What personal Information do we collect?

    Personal information includes information or an opinion about an individual that is reasonably identifiable. We may collect a range of personal information in the course of our operations, including:

  • Contact details and organisational roles of current and prospective clients, suppliers, and business partners — such as names, addresses, phone numbers, email addresses, and job titles;

  • Information required to deliver our products and services, which may include financial or credit details when engaged to provide financial or advisory services, or when selling products or services;

  • Personal details of individuals attending events, seminars, or other activities we host, sponsor, or participate in;

  • Information shared through direct communication with us — including via email, online forms, and account registrations;

  • Personal information provided by job applicants or contractors, which may include sensitive data (such as health information) where relevant to the role being applied for or performed;

  • Information collected from employees in the course of their employment, which may also include sensitive data where necessary for the performance of their duties;

  • Information you provide to us through Customer surveys and forms; and/or

  • Any other personal information that may be required in order to facilitate your dealings with us

    How do we collect personal information

    We primarily collect personal information directly from individuals through interactions such as completing forms, attending meetings or events, phone calls, emails, or when using our website and social media channels. We may also retain records of communications and, in some cases, capture photographs or video at events we host, sponsor, or attend.

    If you choose not to provide certain information, we may be unable to deliver specific services or meet particular obligations.

    We also receive personal information from third parties, such as clients or service providers, as part of delivering our services. When this occurs, we rely on those parties having the appropriate authority, including all applicable consents, to share that information with us.

    We may collect the above types of personal information either directly from you or from third parties.

  • We may collect this personal information when you:

    (i)              register or submit information on our website or the Services;

    (ii)             communicate with us through the Services, correspondence, chats, email, or when you share information with us from other social applications, services or websites; and/or

    (iii)           interact with our website, the Services, content and advertising.

  • We may also collect personal information about you from other sources, for example from:

    (i)              our related bodies corporate;

    (ii)             our Customers or prospective Customers; and/or

    (iii)           public databases.

  • In addition, when you apply for a job or position with us we may collect certain information from you (including your name, contact details, working history and relevant records checks) from any recruitment consultant, your previous employers and others who may be able to provide information to us to assist in our decision on whether or not to make you an offer of employment or engage you under a contract. This Privacy Policy does not apply to acts and practices in relation to employee records of our current and former employees, which are exempt from the Privacy Act 1988 (Cth)

    Why Do We Collect Your Personal Information?

    We collect, use, and disclose personal information to:

    • Provide and optimise our Services;

    • Respond to enquiries or feedback;

    • To comply with the terms of our client agreements;

    • Conduct research, analytics, and marketing to improve our offerings;

    • Send service updates, administrative notices, and promotional content (where permitted);

    • Verify identities for security purposes;

    • For quality reviews, training and other quality enhancement initiatives;

    • Comply with legal obligations and resolve disputes;

    • To protect the rights, property or personal safety of any member of the public, a customer of Koyrel or affiliates;

    • Where required or permitted by law, regulation, rule or professional standard;

    • Manage job applications.

    Who Do We Share Personal Information With?

    We may share personal information with:

    • Our related entities;

    • Service providers assisting with our business operations (e.g., IT, legal, and marketing support);

    • Professional advisers and consultants;

    • Third parties as authorised or required by law, such as regulators or law enforcement agencies.

    We do not disclose personal information outside Australia.

    Do We Use Your Personal Information for Marketing?

    We may send you promotional materials about our Services or events. Marketing communications comply with the Spam Act 2003 (Cth). You can opt-out of receiving marketing messages by clicking “unsubscribe” or contacting us directly.

    How We Handle Privacy on Our Websites and Apps

    When you interact with Koyrel online—whether through our website, mobile apps, or digital tools—we may collect personal information you choose to share with us. This includes details submitted through contact forms, registrations, or direct inquiries.

    To keep things running smoothly, we also collect general technical data like browser type and user activity. This information helps us improve how our platforms work but doesn’t personally identify you.

    We use cookies and similar technologies to enhance your experience. Cookies help us understand what’s working and what’s not—so we can make our websites easier to navigate and more relevant to your needs. You can manage or disable cookies in your browser settings at any time.

    If you have a registered account with us, activity linked to your login may be used to improve functionality and resolve any technical issues.

    You may also come across links to third-party websites or embedded tools on our platforms. While we aim to partner with reputable providers, we don’t control the privacy practices of other sites. We recommend checking their privacy policies before sharing your information.

    At Koyrel, we’re committed to protecting your privacy—online and offline.

    No disclosure of personal information outside Australia

    We do not disclose, transfer, or process personal or sensitive data or information outside the borders of Australia for our Australian customers.

How Do We Store and Protect Your Information?

We store personal information securely, either electronically or in hard copy, using systems hosted in Australia. All reasonable security and operational measures are in place to protect it from misuse, interference, and unauthorised access and to ensure confidentiality, integrity, and accessibility.

When no longer required, we destroy or de-identify personal information in accordance with legal obligations.

GDPR

  1. For Clients, Customers, or any other Data Subject located in the United Kingdom and EU, we adhere to the General Data Protection Regulation and the Data Protection Act 2018, ensuring that your personal data is processed in accordance with these regulations.

  2. Koyrel processes certain personal data based on Legitimate Interest and the Performance of a Contract. This means that we process your data to both provide and maintain our services as required under our contractual obligations to you or our customers, ensuring that your rights and privacy are protected.

  3. As a data subject under GDPR, you have specific rights regarding your personal data, including but not limited to:

    1. The right of access

    2. The right to be informed

    3. The right to rectification

    4. The right to erasure

    5. The right to restricted processing

    6. The right of data portability

    7. The right to object

If you are a Customer in the UK or EU, or expecting Respondents from the UK or EU, you have responsibilities under GDPR for the consent of data subjects and lawful basis of any data transfers. Information about our Data Processing Agreement and Standard Contractual Clauses can be provided on request.

Accessing and Correcting Your Personal Information

Under the Australian Privacy Act and also associated laws data subjects also have a number of rights as a data subject including:

  • Access: Request the personal information we hold about you.

  • Correct: Notify us of inaccuracies, and we will take reasonable steps to amend the information.

Requests can be made by contacting us (see below). Verification of identity may be required as well as confirmation of the validity of the data subject access request. We reserve the right to refuse access in circumstances permitted under the Privacy Act 1988 (Cth).

Data Sub-Processors

To provide our services effectively, Koyrel works with trusted service providers and affiliates – acting as data sub-processors – who assist in processing data. Koyrel undertakes due diligence and vendor security assessments on all sub-processors it engages to ensure appropriate security measures are in place and the vendors adhere to all applicable data laws. A list of our Data Sub-Processors is available on request.

Changes

Koyrel reserves the right to modify this privacy policy at any time, so please review it frequently. If material changes are made to this policy, we will notify you here, by email, or by means of a prominent notice on the Koyrel website home page.

Complaints

If you believe we have breached the Privacy Act 1988 (Cth) or mishandled your personal information, please contact us using the details below. Provide your name, contact information, and a detailed description of the issue.

We will acknowledge your complaint and aim to resolve it promptly. If you are dissatisfied with our response, we will provide information about escalating the complaint to the Office of the Australian Information Commissioner (OAIC).

Contact Us

For enquiries about this Privacy Policy or to exercise your rights, contact us at:
August Salus Pty Ltd t/a Koyrel
Email: info@koyrel.com
Phone: +61 (0) 421 833 173