Last Updated: 13th July 2020
At Sunrise Medical we are committed to protecting and respecting your privacy.
1. Who are we?
We are Sunrise Medical Pty Ltd (ABN 42 062 948 305). Together with our affiliates (collectively known as "Sunrise Medical"), we are referred to in this Policy as "us", "we" and "our". Our main business address is 11 Daniel Street, Wetherill Park, New South Wales 2164. You can contact us by post at the above address, by email at firstname.lastname@example.org or by telephone on +61 (02) 9678 6600.
If you wish to contact us about our use of your personal information, you can email us at email@example.com.
2. How do we collect personal information?
We collect and process information about you in the following ways:
Information you give us
This is information about you that you give to us by:
- Requesting product or service information by phone, at a public event such as a trade show or exhibition, or on our website
- Contacting us by filling in forms on our website
- Replying to one of our marketing campaigns (e.g. filling out a response card)
- Enrolling on a STEPS Training course
- Registering for a Sunrise Medical dealer account
- Placing an order for a refurbished product or reserving a demonstration product
- Requesting to receive email newsletters (e.g. subscribing via our website or filling out a form at a trade show event)
- Corresponding with us by phone, email or otherwise
- Participating in one of our surveys, competitions or prize draws.
Depending on the services you use on the Sunrise Medical website, the information you give to us may include your forename, surname, email, address (for example your street, town, city, county or postcode), phone, date of birth, details of medical condition, disability, dependent’s contact and condition information, company name, and company account code.
You may decide to supply other personal information when you contact Sunrise Medical (for example when you send us an email or phone our customer services team). If we require personal information during correspondence with you, we will explain to you why we would like this information and what we do with it at each stage.
If you are providing personal information to us on behalf of someone else, you must ensure that they have been provided and read this Policy before doing so.
If you are under 16 years of age, please do not provide us with any personal information. Our website is not intended for or targeted at children 16 and under, and we do not knowingly or intentionally collect information about children 16 and under. If you believe that we have collected information about a child 16 or under, please contact us using the information found under “Who Are We”, so that we may delete the information.
You can visit the Sunrise Medical website without providing any personal information.
3. What information we collect about you
In addition to the information identified in the above section, when you visit our website, we will automatically collect the following information:
This includes information from or about your computer, phone or other device that you access our website from. Examples of the device information that we collect includes your operating system, IP address, browser type, device type and date and time of your visit.
- Information about your visit
We collect how you use and interact with our website during your visit. This includes the pages you visit, the products or services you enquired about, clickstream to, through and from our website (including the date and time), what you searched for, page response times, how long you visited, advertising identifiers and page interaction information (for example what was clicked). Depending on the consent that you give us, this information may be anonymous or it may be associated with you.
If you have consented to receive email newsletters from us, we will also record information regarding your interaction with it (such as whether you open, click on a link or forward the email message). If you do not want us to collect this information, you can unsubscribe from receiving email newsletters.
We combine personal information that we collect via the Sunrise Medical website with information we receive from other sources (for example if you have consented to receive email newsletters when visiting Sunrise Medical at a trade show, training event, opening an account with us or other similar activities). We will always explain how we intend to use your information before you give consent.
Due to the nature of the services provided by us, some of the information we collect may be sensitive information, including details about your health.
If you do not provide the information requested or automatically collected by us, we may not be able to provide you with the appropriate products or services (including website services) to the same standard or at all.
4. Basis for collecting, processing and disclosing your personal information
This section explains how and why we process your personal information, as well as the legal basis on which we carry out this processing.
- When you opt-in to receive permission-based email newsletters:
- To provide you with the product or service information you request:
Where you ask us to provide product or service information to you by email, it is necessary to process your personal information in this way for the performance of a contract with Sunrise Medical. This involves passing your personal information through our in-house technology to generate the email with the information and send it to you. We need to process your personal information in this way to provide you this service.
- To receive a product demonstration:
Where you ask us to provide a product demonstration, it is necessary to process your personal information in this way for the performance of a contract with Sunrise Medical. This will involve sending you emails concerning your request (such as acknowledgements, reminders and a feedback survey) and contacting you either by phone or email to arrange your demonstration.
Product demonstrations are supplied by one of our third-party product providers (otherwise known as a Sunrise Medical Dealership). When we contact you to arrange your demonstration, we will inform you of the Sunrise Medical Dealership who will handle your product demonstration and request your consent to pass your personal information to them. We disclose only the personal information that is necessary to deliver your product demonstration. Our legal basis for processing your personal information in this way is consent. For more information, please refer to section 8.
- To enrol you on the STEPS training course:
Where you request to attend a STEPS training course, it is necessary to process your personal information in this way for the performance of a contract with Sunrise Medical. Our use of your personal information in this way includes passing your personal information through our in-house technology to administer your booking (for example, generating emails to confirm the enrolment, course reminders and to gather feedback). We need to process your personal information in this way to enrol you on the course.
- To answer your questions and enquiries:
Where you submit an online enquiry or send us an email, we need to process your personal data to respond to you. If appropriate, we will need to pass your personal data to other internal departments or third parties to help with, or reply to your enquiry. These internal departments and third parties are not authorised to use or disclose your personal data except as provided in this Policy. Please remember if you intend to send sensitive information (such as your disability) it is advisable to contact us by telephone rather than by email or via our website. It is necessary to process your personal data in this way for the performance of a contract with Sunrise Medical. Please refer to ‘WILL WE DISCLOSE YOUR PERSONAL DATA TO ANYONE ELSE?’ for current third-party processors.
- To register and manage your online account:
Where you register for a Sunrise Medical online account, we need to process your personal information to create and maintain your account, and to verify that you are an authorised Sunrise Medical Dealership. Our use of your personal information in this way may include providing you with emails about password reminders, notification of website maintenance and account de-activation.
Where you place an order for a refurbished product or reserve a demonstration product through your online account, we will process your personal information to provide these products to you. Our use of your personal information in this way includes passing your personal information through our in-house technology to process your order (for example, notifying Customer Services of your order and emailing you an order acknowledgement). It is necessary to process your personal information in this way for the performance of a contract with Sunrise Medical.
- To enter you into a competition or prize draw:
Where you submit your personal information for the purposes of entering a competition or prize draw, we will need to process your personal information to provide this service to you. Our reason for doing so is for the performance of a contract with Sunrise Medical.
- To personalise your website and email experience:
Our legitimate interest for processing your personal information this way is to provide you with a more tailored experience when you visit our website or receive email communications from us. For example, we may use your personal information to make sure the website or an email communication is displayed in the most effective way for the device you are using, or highlight products that you may have previously shown interest in
- To make our website better:
We use various third-party cookies such as Google Analytics to help us improve our website by gathering information on usage trends and preferences of our website visitors. These cookies collect information in an anonymised form, including anonymising your IP address. Our legitimate interest for processing your personal information this way is to provide you with the best possible website we can.
- To make our website secure:
Our legitimate interest for processing your personal information this way is for the purpose of making our website more secure. This may involve using your IP address to block you from using our website if your actions are disruptive or illegal. We also use it for general website administration and for internal operations including troubleshooting, data analysis, research, testing and statistical purposes.
- To ensure you don’t receive email communications from us when you opt-out:
Where you have opted-out of receiving email communications from us, we will process your personal information to assign you to a suppression list. This involves holding on to limited personal information (such as your email). Our legitimate interest for processing your personal information this way is to ensure email communications are no longer sent after you have withdrawn consent.
- To create anonymised data sets:
We will also process your personal information into an anonymised format where it can be used for reporting purposes (for instance to show the amount of product demonstration requests, measure the success of advertising campaigns or the number of visitors who subscribe to email newsletters). Our legitimate interest for processing your personal information this way is to evaluate the efficiency of marketing campaigns.
- If our business is sold, we will transfer your personal information to a third party:
In the event that we buy or sell any business or assets, in which case we will disclose your personal information to the prospective seller or buyer of such business or assets (at all times in accordance with all applicable data protection laws); or if Sunrise Medical or substantially all of its assets are acquired by a third party, in which case personal information held by Sunrise Medical will be one of the assets transferred to the purchaser. Our legitimate interest for processing your personal information this way is to ensure our business can be continued by a purchaser. If you object to our use of your personal information in this way, the relevant seller or buyer of our business may not be able to provide services to you.
5. What requests can you make in relation to your personal information?
Objection to processing your personal information
You may object to our processing your personal information where we are processing your personal information based on our legitimate interests (as set out above) or you can show that your interests, rights and freedoms regarding your personal information outweigh our interest to process it. If you ask us to stop processing your personal information on this basis, we will stop unless we can demonstrate compelling grounds as to why the processing should continue in accordance with data protection laws.
Right to access
You have the right to receive confirmation as to whether your personal information is being processed by us, as well as various other information relating to our use of your personal information. You also have the right to access your personal information which we are processing. If you wish to access the personal information we hold about you, please contact us using the details provided in section 14.
Right to Rectification
You have the right to require us to rectify any inaccurate personal information we hold about you, and have incomplete personal information that we hold about you completed by providing it to us. If you have registered for a Sunrise Medical Dealer account, you can update your Account information and preferences at any time by accessing your Account settings page on the website. If you wish to access the personal information we hold about you, please contact us using the details provided in section 14.
Restriction to processing your personal information
You may request to restrict our processing of your personal information where:
- The accuracy of the personal information is being contested by you
- The processing by us of your personal information is unlawful (but you do not want the relevant personal information erased)
- We no longer need to process your personal information for the agreed purposes (but you want to preserve your personal information for the establishment, exercise or defence of legal claims)
- We are processing your personal information on the basis of our legitimate interest and you object to our processing on this basis and you want processing of the personal information to be restricted until it can be determined whether our legitimate interest overrides your legitimate interest.
Where you make this request, we will then only process the relevant personal information in accordance with your consent and, in addition, for storage purposes and for the purpose of legal claims.
You may request we erase your personal information which we are processing where at least one of the following grounds applies:
- The processing is no longer necessary in relation to the purposes for which your personal information was collected for
- Our processing of your personal information is based on your consent, you have subsequently withdrawn your consent and there is no other legal ground we can use to process your personal information
- You object to the processing as set out in the “objection to processing your personal information” section of this Policy and we have no overriding legitimate interest for our processing
- The personal information has been unlawfully processed and the erasure is required for compliance with a law to which we are subject.
Withdrawal of consent
If you have given us your consent to use personal information (for example to receive personalised email newsletters), you can withdraw your consent at any time by sending an email to the address provided in section 14. If you do choose to withdraw your consent, this will not mean that our processing of your personal information before you withdrew your consent was unlawful.
Where consent is related to email communications, you can exercise your right to withdraw consent by clicking on the “unsubscribe” link in the email communications we send you. Please remember that if you request to be emailed product information, made a course reservation, made an enquiry or registered for a Dealer account after unsubscribing, you will still receive emails about your request and other administrative messages even if you have opted out of receiving email communications.
Automated Decision Making
Automated decision-making takes place when an electronic system uses personal information to make a decision without human intervention. For more information on how we used automated decision making and profiles, please see section 9.
You have the right to ask Sunrise Medical to:
- Give you information about our processing of your personal information for automated decision making purposes
- Request human intervention or challenge a decision where processing is done solely by automated processes
- Carry out regular checks to make sure that our automated decision making and profiling processes are working as they should.
How to exercise your rights
If you wish to request any of the above options, you can contact us using the details in section 14. Please note that while any changes you make will be reflected in active user databases instantly, we may retain all information you submit for backups, archiving, prevention of fraud and abuse, analytics, suppression, satisfaction of legal obligations, or where we otherwise reasonably believe that we have a legitimate reason to do so.
Please note, some of these options only apply in certain circumstances and we may not be able to fulfil every request.
In order to collect certain information described above, we use cookie technology on our Websites.
Cookies are small pieces of information that websites send to a visitor’s computer and are saved to your device to allow that website to store your interactions and recognise you when you visit. This allows us to provide you with a tailored experience when using the Sunrise Medical website. Cookies are either session-based (they only last until you close your internet browser) or persistent (they remain on your computer for a specific amount of time or until you delete them). For example, Sunrise Medical uses persistent cookies to remember when you return to our website or to track your activities when using our website. We may associate personal information with a cookie in those instances.
7. Targeted Advertising
When you visit the Sunrise Medical website, we ask you to consent to third-party advertising. Third-party advertising is used to manage our advertising on other websites and evaluate their performance. They do this by using cookies and web beacons to collect non-personal information about your activities on this and other websites over time. This information is used to provide you with targeted advertising based on your interests and to help us evaluate the success of our advertising. This information collection takes place on both our website and third-party websites that participate in the ad networks. You can opt out of delivery of targeted advertising to you by visiting: https://www.aboutads.info/choices.
Please note that even if you opt-out, you will continue to receive advertisements on other websites, but they will not be tailored to your specific interests.
8. Will we disclose your personal information to anyone else?
We will only use your personal information within Sunrise Medical for the purposes for which it was obtained. We will not, under any circumstances, share or sell your personal information with any third party for their own marketing purposes, and you will not receive marketing from any other companies or other organisations as a result of giving your details to us.
However, there are some situations where we use trusted providers to help us with administration of the services you have asked us to supply to you for example:
Third-Party Product Providers
We need to share your personal data with third-party product providers. To help us to deliver your product demonstration. These Third-Parties will only act under our instruction and we have a contract in place with them that requires them to keep your information secure and to only use it for the reason it was collected.
- Sunrise Medical Dealerships - We will always provide you the name of the Sunrise Medical Dealership before disclosing your personal data and require your consent either verbally by phone or by email in order to do so.
- Monday.com – Sunrise Medical uses Monday.com as a Contact Relationship Management (CRM) system which allows us to co-ordinate and manage your contact details. The Monday.com Privacy Statement can be found at: https://monday.com/terms/privacy
Other Third Parties
To enable us to maintain a successful business relationship with you, we may disclose your personal information to other third parties including:
- your therapist;
- companies and contractors who we retain to provide services for us, such as IT contractors, Analytics and search engine providers, call centres, stationery printing houses, mail houses, storage facilities, lawyers, accountants and auditors, who will need to have access to your personal information to provide those services;
- people considering acquiring an interest in our business or assets; and
- other individuals or companies authorised by you.
Overseas recipients of personal information
Under some circumstances we may be required to disclose or share your information without your consent, for example if we are required by the police, the courts or for other legal reasons.
We profile personal information to help us to tailor your website experience and provide you with personalised email communications to help prevent unwanted communications from filling up your inbox. You can object to such use of your personal information for profiling at any time by contacting us at the details in section 14.
This section explains how and why we use personal information to understand our visitors and email subscribers and provide a better experience.
We analyse our visitor information to identify common characteristics and preferences. We do this by assessing various types of information including behaviour (for example, products that have been enquired about or are interested in, or demographic information, such as location).
By grouping people together based on common characteristics, we can ensure you see and receive the communications, products and information which are most important to you. This helps to ensure you receive relevant information, and means we aren’t wasting resources on contacting you with, or showing you information which isn’t of interest.
Profiling to help us understand your interest in a product
We profile visitors to our website to assess their interest in a product. For example, we keep track of the products and services you have visited, marketing campaigns you have responded to and the products or services you have enquired about. If, based on the information that you have provided, it appears you might be interested in learning more about a product or service, we may contact you by email or personalise our website pages to promote it to you.
10. How long will we keep your personal information?
We only retain personal information that’s been submitted to our website for the following periods, unless otherwise required by law:
- Where we have built a profile of your interaction with us (such as the products and services you have enquired about or used and the pages you have visited), we will keep your personal information for two years from the last time you used or interacted with our website and its services.
- The personal information you submit to us when requesting product information will be kept for 7 years.
- Personal information you submit to us when enrolling on a STEPS training course will be retained for 1 year after the course date, for auditing and administration purposes.
- Personal information you submit to us when requesting a product demonstration will be retained by Sunrise Medical for 7 years after the scheduled demonstration date to deal with any queries regarding your request.
- Personal data you submit to us when making an enquiry or correspondence via email or web form will be kept up to 7 years from the last date of interaction with us, for administration purposes.
- Personal information you submit to use when entering a competition or prize draw will be kept for 2 years after the closing date.
- If you have a Sunrise Medical website Dealer account, we retain the personal information collected for as long as the account is active.
- If you have subscribed to receive email newsletters, we retain the personal information collected for as long as you are subscribed. If you unsubscribe, we keep your email address recorded on a suppression list to prevent you receiving further personalised email newsletters from us. We will contact you every 2 years to ensure you are happy to continue receiving such newsletters. If you tell us that you no longer wish to receive such newsletters, you will be unsubscribed.
After these periods, your personal information is anonymised for analytical reasons.
In situations where you have consented to receive email newsletters alongside your request (for example if you requested product information and consented to receive email newsletters) we will retain your name, email address and country. All other un-necessary personal information will be anonymised.
If legally required, or if it is reasonably necessary to meet regulatory requirements, resolve disputes, prevent fraud and abuse or enforce our Terms and Conditions, we may also retain some of your personal information for the applicable period during which claims may be raised (the statute of limitations), or for any mandatory retention period, even after you have closed your account or it is no longer needed to provide the services to you.
11. How do we keep your personal information safe?
All personal data you provide to Sunrise Medical is stored on our secure servers in the United Kingdom, Australia, Germany or in the United States. A variety of security techniques are used, including encryption and authentication, to help with the protection and maintain the availability, security and integrity of your personal data.
Please remember that data transmission over the internet is not guaranteed to be secure. Sunrise Medical is committed to protecting your information in accordance with data protection requirements. These include:
- Restricting access to your personal information to only those who need to use it for the relevant purpose
- Transfer your personal information only in encrypted form
- Prevent unauthorised access to IT systems by using firewalls
- Permanent monitoring of IT systems to detect and stop misuse of personal information
If you have a Sunrise Medical website account, you have a username and password which enables you to access certain parts of our website. You are responsible for keeping this username and password confidential. We ask you not to share your username and password with anyone.
12. Changes to our Policy
We may change this Policy from time to time. If we do, a copy of the updated Policy will be available on our website and by hardcopy upon request. If we make changes to this Policy that impact your personal information, we will also inform you by email.
13. Further information and complaints
You may request further information about the way we manage your Personal Data or lodge a complaint by contacting our Privacy Officer using the contact details in the section 14.
We will deal with any complaint by investigating it, and providing a response to you within a reasonable time, provided that we have all necessary information and have completed any investigation required. In some cases, we may need to ask you to put your complaint in writing so that we are sure that we understand it, and may also need to ask you for further information or to verify your identity. In cases where further information, assessment or investigation is required, we will seek to agree an alternative timeframe with you.
If you are dissatisfied with the outcome, please contact us. Alternatively, you may take your complaint to the Privacy Commissioner at the Office of the Australian Information Commissioner (OAIC). The contact details for the OAIC are available from the OAIC’s website at www.oaic.gov.au.
14. Contact details
You can contact us by calling us on +61 (02) 9678 6600 or by writing to:
The Privacy Officer
Sunrise Medical Pty Ltd
11 Daniel Street
WETHERILL PARK NSW 2164