Towards Best Practice for Licensed Venues - Office of Liquor ...
Towards Best Practice for Licensed Venues - Office of Liquor ...
Towards Best Practice for Licensed Venues - Office of Liquor ...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Implementation<br />
A privacy policy should include:<br />
• your organisation’s name<br />
• position title and direct contact details <strong>for</strong> inquiries or complaints<br />
• your primary purpose <strong>for</strong> collecting the in<strong>for</strong>mation<br />
• to whom access to the personal in<strong>for</strong>mation will be given<br />
• assurance the in<strong>for</strong>mation will be kept confidential and secure from misuse<br />
• assurance the in<strong>for</strong>mation will be retained only <strong>for</strong> as long as necessary<br />
• assurance the in<strong>for</strong>mation will be accessible to the individual upon request.<br />
Management<br />
• Nominate a person to be the privacy contact <strong>for</strong> the venue.<br />
• Regularly review the implementation <strong>of</strong> the privacy policy and ensure:<br />
– there is limited access to the secured area where the in<strong>for</strong>mation is stored<br />
– the personal details are not being used <strong>for</strong> anything other than their primary purpose, unless the patron<br />
has consented otherwise<br />
– ID scanner operations are password protected and CCTV system operations are secure<br />
– redundant in<strong>for</strong>mation is destroyed.<br />
Staff<br />
• Staff induction and training sessions should include in<strong>for</strong>mation on the privacy policy and their obligations<br />
in dealing with confidential personal in<strong>for</strong>mation.<br />
Patron in<strong>for</strong>mation and inquiries<br />
• Display privacy policy or a summary <strong>of</strong> this policy at each entry point.<br />
• Signage should include contact details <strong>for</strong> the privacy manager.<br />
• Promote the privacy policy on the venue website.<br />
• Ensure staff at entry points are in<strong>for</strong>med and able to handle basic questions about the venue’s<br />
privacy policy.<br />
• Set a timeframe and a process to ensure that specific privacy concerns, including access to or the correction<br />
or destruction <strong>of</strong> in<strong>for</strong>mation, are handled promptly.<br />
<strong>Towards</strong> best practice <strong>for</strong> safety in licensed venues<br />
21