Privacy Policy
Lotsearch Privacy Policy
Last updated: 23 June 2026
1. Purpose of this policy
Lotsearch Pty Ltd ABN 89 600 168 018 (Lotsearch, we, us or our) is committed to protecting your privacy and complying with the Privacy Act 1988 (Cth) (the Act) and the Australian Privacy Principles (APPs).
This policy explains how we collect, hold, use and disclose personal information, including information collected through our website at www.lotsearch.com.au (the Website). We will only handle your personal information in accordance with the Act and this policy. Your use of the Website is also subject to the Website Terms of Use.
2. The information we collect
The personal information we collect depends on how you deal with us, as set out below.
Customers and enquirers
When you order, or enquire about, our products and services, we collect your name, email address and telephone number. If you order on your own behalf, we also collect your address. If you act for an organisation, we will collect the organisation’s name and address and your job title. This includes information you give us when you contact us by telephone, email or online, for example to discuss a report we have provided or to ask to be referred to a third party adviser.
Contractors, suppliers, service providers and job applicants
For contractors, suppliers, service providers and job applicants, we may collect:
-
name and contact details;
-
information contained in resumes;
-
educational details, academic and other transcripts, employment history, skills and background checks;
-
references from past employers and referees;
-
information collected during the interview or assessment process;
-
details of your performance under any contract; and
-
information required to make payments, such as bank account and credit card details.
We may also collect sensitive information, such as membership of a political, professional or trade association or trade union, criminal record and health information. We collect sensitive information only with your consent or where the collection is otherwise permitted or required by law.
Our services are directed at persons over the age of 18. If we become aware that anyone under 18 has provided us with personal data we will delete that information as soon as possible. If you are the parent or guardian of a child and you believe they have provided us with personal information without your consent please contact us.
Website visitors, social media and online contacts
Generally, the only personal information we collect when you use the Website or contact us online is what you choose to tell us — for example when you subscribe to our newsletter, complete a form, accept an invitation to a seminar or event, send us an email, or contact us through our social media channels. This may include your name, contact details, employer and job title, and (when we organise seminars or functions) sensitive information such as dietary requirements or religious affiliations affecting dietary requirements, which we collect only with your consent or where the collection is otherwise permitted or required by law.
Our Website uses Google Analytics, a service provided by Google, to understand how visitors use the site. Google Analytics uses cookies to collect information such as the number of visitors, the pages viewed, how long visitors spend on the site, and the website or source they clicked through from. This information is generally aggregated and does not identify you, although Google Analytics collects your IP address, which Google may store on servers located overseas. You can opt out by adjusting your browser’s cookie settings or by installing Google’s opt-out browser add-on. For more information, see Google’s privacy policy.
In person and by telephone
We collect personal information when you deal with us in person — for example when you give a representative your business card or contact details — and when you telephone us for reasons other than placing or discussing an order, such as to discuss the scope of our products and services or potential business opportunities.
3. How and from whom we collect information
In most cases we collect personal information directly from you, or from the organisation of which you are an employee, director or principal. We may also collect it from third parties, including our clients; service providers; parties to whom you refer us (such as previous employers and referees); recruitment agencies; online searches; and social media such as LinkedIn and Facebook.
If we collect information from a third party to whom you refer us, we assume — and you must ensure — that you have made that person aware of the referral and of the purposes for which the information will be collected, used and disclosed. If you give us personal information about another individual, you should refer that person to this policy.
4. Why we collect, hold, use and disclose information
We collect, hold, use and disclose personal information for the purposes for which it was collected, and for related secondary purposes you would reasonably expect. These purposes include:
-
providing the products and services our customers request;
-
maintaining, managing and developing our relationships with customers and potential customers;
-
product, service and business analysis, development and improvement;
-
security and risk management;
-
marketing our products and services;
-
administering our online subscriptions and providing information you have requested;
-
organising seminars and other events;
-
assessing applications from prospective employees, contractors and service providers, and managing those relationships;
-
taking out and managing our insurances; and
-
complying with our legal and regulatory obligations, including where use or disclosure is authorised or required by Australian law or a court or tribunal order.
If you ask us to refer you to a specialist third party adviser to obtain advice about a report, product or service we have provided, you agree that we may disclose to that adviser the personal information we consider necessary for them to contact you about it.
5. Artificial Intelligence
We may use artificial intelligence (AI) tools to help us analyse sales data and improve customer service. Your information may be accessed and processed using these tools. We take reasonable steps to protect that information, including by using enterprise, privacy or data-control settings designed to prevent personal information from being used to train, fine-tune or improve the AI provider’s public or general-purpose AI models.
Lotsearch does not knowingly submit personal information to publicly available AI tools for model training purposes.
If we use automated processes to make a decision that significantly affects you, we will tell you that this occurs and the kinds of personal information used to make the decision.
6. Direct marketing
If you are a customer or have provided your contact details and expressed interest, we may send you information about developments in our products, services and business, and invitations to seminars and other events.
We may use an email management system that inserts tracking codes in our emails. This lets us see, for example, whether an email was received and opened and whether you clicked through to our website, so that we can confirm your address is current, tailor content to your interests, and review the effectiveness of our communications.
You can opt out at any time, at no charge, by clicking ‘Unsubscribe’ in any of our marketing emails, by using the ‘Contact Us’ button, or by contacting our Privacy Officer using the details below. You may also ask us to tell you the source of the contact details we hold about you.
7. Dealing with us anonymously
You have the option of dealing with us anonymously or under a pseudonym, unless it is impracticable for us to deal with you that way, or we are required or authorised by law to deal with individuals who have identified themselves. For most of our products and services we need to know who you are, and we may be unable to provide them, or to respond to your enquiry, if you do not identify yourself.
8. Disclosure of information overseas
We may disclose personal information to recipients located outside Australia, including service providers that host our data or provide marketing or analytics services (such as Google Analytics). Some recipients are located in the United States and Europe. Before disclosing personal information overseas, we take reasonable steps to ensure the recipient handles it in a way consistent with the APPs.
If you apply to us for employment and have lived or worked overseas, we may disclose your personal information to overseas recipients to help assess your application. If you have previously worked for us and give our details to a prospective employer or recruitment agency overseas, we may disclose your personal information to that entity to assist with their assessment.
9. Access and correction
You have the following rights regarding your personal information:
-
You have the right to request a copy of the personal data we hold about you.
-
You have the right to request that any incomplete or inaccurate data we hold about you is corrected.
-
You can ask us to delete your personal data where there is no good reason for us to continue to process it.
-
You have the right to request a copy of your personal data in a structured, commonly used, machine-readable format to transmit to another organisation.
-
You have the right to object to the processing of your personal data for direct marketing purposes, or where the processing is based on our legitimate interests.
-
Where we are relying on your consent to process your personal data, you have the right to withdraw that consent at any time.
You may request access to the personal information we hold about you and ask us to correct it if it is inaccurate, out of date, incomplete, irrelevant or misleading. To make a request, contact our Privacy Officer using the details set out in clause 12 below. We will respond to a request for access within 30 days, as required by the Act, and to a request for correction within a reasonable period. In some cases, and in accordance with the Act, we may charge a reasonable fee for access, or may decline access or correction, in which case we will give you reasons
10. Storage, security and retention
We hold personal information in hard copy and electronically in our IT systems, which may include cloud servers or the servers of third parties. We take reasonable steps to protect personal information from misuse, interference and loss and from unauthorised access, modification or disclosure, including physical and electronic measures and access controls that limit access on a need-to-know basis. Our third party storage providers are required to protect personal information in accordance with applicable laws and to take appropriate technical and organisational measures against unauthorised use, loss, destruction or damage.
Financial data may be processed by third party payment providers (including PayPal) for the purpose of processing payment. Such third party payment processor acts as an independent data controller regarding the information they collect to process your payment. You can access PayPal’s privacy statement from the following link to understand how your data is handled: https://www.paypal.com/au/legalhub/paypal/privacy-full.
We will only collect and process personal information that is adequate, relevant, and limited to what is necessary for the purposes for which it is processed. We retain personal information only for as long as it is needed for the purposes described in this policy or as required by law. When it is no longer needed, we take reasonable steps to destroy it or to de-identify it.
No method of transmission or storage is completely secure, and we cannot guarantee absolute security. To the extent permitted by law, we are not liable for unauthorised access to, or loss of, personal information that occurs despite us taking reasonable steps. Nothing in this policy limits any rights you have under the Act. Please notify us immediately if you become aware of any breach of security.
11. Notifiable data breaches
If we become aware of an eligible data breach — that is, unauthorised access to, unauthorised disclosure of, or loss of, personal information that is likely to result in serious harm — we will assess it and, where required, notify you and the Office of the Australian Information Commissioner as soon as practicable, in accordance with the Notifiable Data Breaches scheme under the Act.
12. Complaints
If you have any questions or concerns about how we handle personal information, or you believe we have not complied with this policy or the Act, please contact us using the details below, providing as much detail as possible. Our Privacy Officer will investigate and determine whether a breach has occurred and what action, if any, we will take.
We take privacy complaints seriously and aim to resolve them promptly, with a target response time of 30 days. We may ask for your cooperation during this process. If you are dissatisfied with the outcome, you may complain to the Office of the Australian Information Commissioner, the regulator responsible for privacy in Australia:
-
Phone: 1300 363 992
-
Mail: Director of Compliance, Office of the Australian Information Commissioner, GPO Box 5218, Sydney NSW 2001
13. Changes to this policy
We may update this policy from time to time. The current version will always be available on our Website, and the date at the top shows when it was last updated. We encourage you to review it periodically so you are familiar with how we handle your personal information.
14. Contact us
Please direct any questions about this policy or about how we collect or handle personal information to our Privacy Officer at support@lotsearch.com.au.