At Winja Group Pty Ltd ACN 606 186 047 and its related entities (‘Winja’ / ‘we’ / ‘us’ / ‘our’) it is important to us that we manage your personal information securely and consistently with relevant legislation, including the Privacy Act 1988 (Cth) (‘Privacy Act’) as well as the Credit Reporting Privacy Code (where applicable). This Policy outlines how we collect, disclose, use, store or otherwise handle personal information.

This Policy explains:

This Policy is not limited to current customers but to all individuals and Business Users who deal with us.

    1. Winja is a website created for resolution between an individual and a Business User. It is a website in which reviews (‘Winjs’) can be posted about a business. We create universal empowerment for individuals who want to be heard, and for businesses that need to respond.
    2. We are governed by the Australian Privacy Principles (‘APPs’) under the Privacy Act 1988 (‘the Privacy Act’). In our interactions with you, we also comply with Credit Reporting Privacy Code requirements. These set out the way organisations and government agencies can collect and use, disclose and provide access to personal and sensitive information.
      1. Personal information is information that identifies or could identify a person, whether it is true or not. It may include, for example, your name, age, gender, profile picture, contact details, credit card details and financial information.
      2. Sensitive information as defined by the Privacy Act (as amended) is also personal information but relates to your opinions, views, racial or ethnic origin, political options or affiliations, religious beliefs, philosophical beliefs, membership of a professional or trade association, membership of a trade union, sexual preferences or practices or criminal record or health, genetic, biometric information or biometric templates.
      3. Credit Information as defined in the Privacy Act is personal information about an individual (other than sensitive information) relating primarily to your credit-related dealings which can be disclosed to Credit Reporting Bodies (‘CRBs’) that report on consumer credit worthiness and includes:
        1. identification information about the individual; or
        2. consumer credit liability information about the individual; or
        3. repayment history information about the individual; or
        4. a statement that an information request has been made in relation to the individual by a credit provider, mortgage insurer or trade insurer; or
        5. the type of consumer credit or commercial credit, and the amount of credit, sought in an application:
          1. that has been made by the individual to a credit provider; and
          2. in connection with which the provider has made an information request in relation to the individual; or
        6. default information about the individual; or
        7. payment information about the individual; or
        8. new arrangement information about the individual; or
        9. court proceedings information about the individual; or
        10. personal insolvency information about the individual; or
        11. publicly available information about the individual:
          1. that relates to the individual’s activities in Australia or the external Territories and the individual’s credit worthiness; and
          2. that is not court proceedings information about the individual or information about the individual that is entered or recorded on the National Personal Insolvency Index; or
        12. the opinion of a credit provider that the individual has committed, in circumstances specified by the provider, a serious credit infringement in relation to consumer credit provided by the provider to the individual.
      4. Credit Eligibility Information provided to us by CRBs, so it may also include information about your credit related dealings with other credit providers. CEI also includes any credit worthiness information that we derive from the data from a credit reporting body, for example credit ratings, scores and evaluations about you and your credit worthiness.
    3. We respect your personal information, and this Privacy Policy explains how we manage it. This Privacy Policy covers Winja and all of its related companies.
    4. Notwithstanding any references or specific examples in this Privacy Policy, those examples are not to be taken as an exhaustive list of personal information collected by us.
    1. We provide an avenue for consumers and businesses to voice their opinions and concerns with a view to reach a resolution. Upon registration of a User Account, our users can post reviews and responses on both our website and app.
    2. Examples of our current services where we might collect personal or sensitive information include:
      1. Through accessing and using our website, including metadata;
      2. Creating an account with us online;
      3. Your credit card information to facilitate payment;
      4. Internet service provider or mobile network you use to connect to our services;
      5. Processing any content you post to Winja;
      6. Considering your eligibility for our services;
      7. Any user content you post to Winja, this include both a text or image nature;
      8. If you connect with us via a social network;
      9. When you complete a customer survey or send us feedback;
      10. During conversations between you and our representatives;
      11. Any communications between you and Winja including, but not limited to updates to our service, account verification, password, location change and technical notices;
      12. Administering your account including requests and the provision of our services.
    1. At Winja we take your personal privacy seriously. We may collect personal information about you:
      1. because you have provided it directly to us, for instance contact details, date of birth, and credit card numbers or bank account details;
      2. to process your application to Winja and/or request for services;
      3. to provide you with the most appropriate services for your needs;
      4. to improve our services, for instance, through the collection and analysis of statistical and research data and use of cookies;
      5. because you work for us;
      6. for purposes directly related to any of the above and any of our services;
      7. to provide follow-up on information regarding Winja, including responding to comments or questions or providing our services to you;
      8. to meet any requirements of government funding for programs including receiving, collecting and collating de-identified statistical information;
      9. to monitor and evaluate existing services and plan for future services; and
      10. if we are required to share your information with government or regulatory bodies, as required or authorised by law.
    2. We only use your personal and sensitive information for purposes which are directly related to the reason you provided us with your information in the first place and where you would reasonably expect us to use your information. This may include sharing your personal or sensitive information with Service Providers.
    3. We may share your information with government or regulatory bodies (such as the Australian Tax Office and ASIC) as required or authorised by law. These agencies may also share this information with organisations or agencies outside Australia.
    1. Whenever possible, we will collect personal information directly from you unless unreasonable or impractical for us to do so. Winja may also collect personal information in a variety of ways, including but not limited to when you:
      1. use our website;
      2. connect with us via social network;
      3. phone us;
      4. write to us;
      5. email us;
      6. visit us in person;
      7. through the use of our services; and
      8. provide feedback to us.
    2. There are certain instances in which we will collect information about you from third parties where it is unreasonable or impracticable to collect it directly from you. For example, we may collect information about you from a business which provides information about commercial credit worthiness for the purpose of assessing your application.
    1. Disclosure of personal information to third parties
      We will not disclose your personal information to another person unless you have given consent or if one of the exceptions under the Privacy Act applies.
      Where possible, the information that could reasonably identify you as an individual is first removed.
    2. Exceptions
      Except as set out above, Winja will not disclose your information to a third party unless one or more of the following applies:
      1. you have given your consent for us to do so;
      2. you would reasonably expect us to use or give that information for another purpose related to the purpose for which it was collected (or in the case of sensitive information – directly related to the purpose for which it was collected);
      3. it is otherwise required or authorised by law;
      4. it will prevent or lessen a serious threat to somebody’s life, health or safety or to public health or safety;
      5. it is reasonably necessary for us to take appropriate action in relation to suspected unlawful activity, or misconduct of a serious nature that relates to our functions or activities;
      6. it is reasonably necessary for the enforcement of a law conducted by an enforcement body.
    3. Examples of disclosure
      1. User Records
        Winja maintains records of all our users including financial information which may need to be shared with financial institutions, government or regulatory bodies from time to time.
      2. Credit Reporting
        We may disclose personal information about you to a CRB in relation to any credit-related dealings with us. That information may be included in reports by the CRB to other credit providers or to another CRB to help them assess applications by you for credit.
    1. We may disclose personal information to overseas based organisations or agencies in the provision and/or administration of your account. We undertake to protect your personal information by ensuring the country of the overseas based organisation or agency has similar protections in relation to privacy, or that we enter into contractual arrangements with the organisation or agency to ensure the protection of your privacy. Winja regularly shares information with related organisations in Europe and the United States.
    1. It is your choice to provide information to us. Wherever it is lawful and practicable, you have the option not to identify yourself or to use a fictional name when interacting with us. You can remain anonymous when using some parts of our website, or sites administered by us.
    2. It may be necessary for us to collect your personal or sensitive information if you would like certain services. If you choose to withhold the information we require, we may not be able to provide you the services you have requested.
    1. We store your information in a number of ways including physically (such as in paper form) or electronically with third party data storage providers. Your privacy and the security of your information is very important to us so where we store your information with third party providers, we will enter into contractual arrangements with those providers to ensure they take appropriate measures to protect your information.
    2. We take appropriate steps to protect your personal and sensitive information held by us from misuse, interference, unauthorised access, modification, loss or disclosure. This includes during storage, collection, processing and transfer and destruction of the information. These steps include but are not limited to:
      1. ensuring our computer systems and websites have security systems in place such as up to date firewall and data encryption;
      2. maintaining security systems and monitoring of our premises;
      3. implementing confidentiality agreements with our employees and contractors, sub-contractors ,service providers and their agents;
      4. requiring all employees and contractors who handle, deal or work with personal or sensitive information in the course of their duties with us to undergo training on our Privacy Policy and procedures and information and data storage management, before undertaking those duties
      5. maintaining document storage security policies and procedures; and
      6. implementing verification procedures for all inquiries/transactions to ensure only authorised people can access personal information.
    3. Our website may contain links to external websites. We recommend that you review the privacy policies of those external websites as we are not responsible for their privacy practices.
    1. We will take reasonable steps to ensure that all personal information we collect, use or disclose is accurate, up-to-date, complete, relevant, and not misleading.
    2. We will correct any personal information that we believe to be incorrect, out-of-date, incomplete, irrelevant or misleading. This may include taking reasonable steps to notify any organisation or government agency to which information was disclosed about the correction. You may request to access or correct your personal information at any time by contacting the Privacy Officer using the contact details below. We will give you access to your information unless one of the exceptions under the Privacy Act applies. For example, if providing access would be unlawful or denying access is authorised by law.
    3. If you request to access or correct your information, we will respond within a reasonable time (usually within 30 days). If your request is refused, we will give you a written notice that sets out the reasons for refusal and how to complain about the decision.
    1. From time to time, we may send out promotional materials and information from government departments or other third parties.
    2. If you do not wish to receive these communications, please contact us to unsubscribe from that mailing list.
    3. Your information may also be used by us to provide you with details of other organisation’s services where permitted by the Privacy Act or where you have consented to the use or disclosure of your personal information for direct communications and promotional materials.
    4. It is our policy that any direct communications or promotional material will include a statement advising that you can request to not receive further material from us by contacting us using the details provided. Please note that if you choose this option this will also prevent you receiving offers of discounts and notices of upcoming sales as well as all promotional and informational materials.
    1. The Winja website and sites administered by us use software known as ‘cookies’ to record your visit to the website and collect some statistical information. We use this information to help administer and improve our websites. We do not use this information to personally identify you. Information we may collect includes:
      1. your computer’s IP address;
      2. your domain name;
      3. the date and time or access to the website;
      4. pages accessed and documents downloaded;
      5. the previous site visited;
      6. if you have visited the website before;
      7. the type of browser software in use;
      8. your mobile carrier; and
      9. device information including device and application ID.
    2. You may set your browser to disable cookies when visiting our websites. However, some website functions may be unavailable if you choose to do so.
    1. Metadata is technical data that is associated with user content. For example, metadata can describe how, when and by whom a piece of user content was collected and how that content is formatted. Data we may collect includes:
      1. a hashtag to mark keywords when you post a photo;
      2. a geotag to mark the location to a photo;
      3. the device that sent or made the communication;
      4. the times at which the message was made and sent;
      5. information relating to the sender; and
      6. any other comments and data.
    1. Your access to and use of the Services is at your own risk.
    2. You agree and acknowledge the Services are provided on an ‘as is’ and ‘as available’ basis without warranty of any kind, and any and all warranties of accuracy are specifically disclaimed.
    3. You acknowledge we have no control over, and no duty to take any action regarding, any Content published using our Service, including but not limited to Content making reference to you, your agents, employees, or their or your related parties. You acknowledge and agree we have no duty or responsibility in respect of the effect any Content may have on you, how anyone else may interpret the Content, or what actions you may decide to take as a result of the Content.
    We will update our Privacy Policy from time to time. Our website will have the most current Privacy Policy.
    1. We are committed to the protection of your privacy. If you have any questions about how we handle personal information, would like to complain about how we have handled your information, or would like further information about our Privacy Policy, please submit a written query or complaint to ‘’. Our Privacy Officer will assess any complaints and liaise with you to resolve any issues within a reasonable time.
    2. If you consider your privacy concerns have not been resolved satisfactorily by us, or you wish to obtain more information on privacy requirements, you can contact The Office of the Australian Information Commissioner on 1300 363 992 or visit their website at
    1. Online    
    2. By Email
    3.  By Post    
      Attn: Privacy Officer
      Winja Group Pty Ltd
      Unit 2/34 Florence Street
      Teneriffe QLD 4005